$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft File: 7DavWXkJHGv6WA6juiJXeTV1cNc.mft (raw, json) Hash identifier: Kytrq2P3bLpXG2s1Xhl+6G+WLKvfdp4M9M3H2uzhWqU= Subject key identifier: E3:03:02:35:B9:F0:E1:DA:51:23:A5:27:65:43:C2:33:3F:6A:03:53 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 05E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft Manifest number: 05D8 Signing time: Thu 24 Apr 2025 22:52:27 +0000 Manifest this update: Thu 24 Apr 2025 22:52:26 +0000 Manifest next update: Thu 01 May 2025 22:52:26 +0000 Files and hashes: 1: 7DavWXkJHGv6WA6juiJXeTV1cNc.crl (hash: jZfot24+8mufLVKOId7XCyBHVRaV/RSwpn0xnN2k+2o=) 2: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (hash: okKowtfia94t5qx7MGTZQGLAEYnC4fX+ZpQbsyMhCVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Apr 24 22:52:26 2025 GMT Not After : May 1 22:52:26 2025 GMT Subject: CN=680ac0aa-5e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:64:1d:7e:51:63:aa:b4:dd:19:6c:30:25:ac: 4f:28:08:f7:e0:43:0c:57:d1:8b:ad:14:69:7b:6f: ec:57:2d:8b:3f:22:6b:ed:74:53:5d:30:98:4b:f3: 22:71:f4:d8:3c:7b:92:54:0a:8e:aa:41:a7:7d:45: 1d:99:be:f9:d2:cb:61:5b:93:0d:b0:b8:a5:01:a3: 7a:2a:fb:2d:c5:95:fe:3c:9f:69:eb:89:b1:6c:8e: 87:cd:6d:59:a4:e0:79:32:94:cf:0a:2e:3d:37:0d: 33:02:14:58:97:e8:6e:bd:b7:28:85:a6:4a:43:9d: c3:74:9d:bb:e1:26:67:7f:98:ae:1d:40:b6:b0:61: 5b:b6:b1:57:b4:77:94:36:f7:f9:0c:94:b0:ff:7a: 5c:f7:da:d5:6f:ea:e9:e6:82:12:f0:06:81:7e:11: 95:d4:31:a7:d4:dc:bc:24:d7:a2:ba:e3:33:79:74: 8e:c0:3d:8e:18:30:e3:cf:5d:d0:95:9d:af:11:56: 15:a2:ff:d1:29:86:02:c1:16:bc:c3:2c:93:37:49: 5f:05:65:57:4e:fa:83:e7:c0:b8:ab:c7:38:91:30: 26:3a:e9:22:b5:58:0a:8c:86:e6:6c:52:47:40:71: 76:77:33:52:e4:e5:6a:f7:08:b2:bf:79:a5:cc:de: ab:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:03:02:35:B9:F0:E1:DA:51:23:A5:27:65:43:C2:33:3F:6A:03:53 X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:4c:7e:13:bf:dc:f3:05:e3:33:11:1d:c7:77:4c:e6:06:27: 6b:fb:4a:9b:7c:f3:4e:31:be:d6:04:91:18:2f:d9:da:b9:d5: 22:09:52:7b:44:14:d3:f2:dc:3f:d1:f8:20:18:77:d3:c9:ba: 2c:75:c7:32:f5:77:92:8e:a1:ab:88:b6:3e:93:d1:8e:43:cf: 1a:92:04:ee:5b:00:49:22:14:81:d8:b8:0a:e2:e2:0c:88:a9: 72:6a:b9:d9:67:a3:ff:02:0e:c2:49:ff:dc:4b:22:c0:7a:5b: 1e:13:09:6d:db:c2:94:a3:75:d0:1b:5e:f5:43:a7:3a:c7:c1: d0:5b:4b:ad:72:a7:2b:4c:85:3f:35:9b:21:3f:c3:55:01:2f: bd:a3:4a:b4:06:49:c4:f2:bd:53:eb:08:2a:30:eb:1e:e1:34: 87:4d:aa:e6:c1:e9:18:10:27:fa:4c:45:96:0d:e0:13:ab:6e: ec:62:ce:8b:ec:53:1b:1d:99:bf:fe:fb:b8:59:9b:56:a6:6e: 23:de:7d:1c:8a:a5:f4:3f:96:e1:5b:5d:90:f3:10:bd:eb:65: 65:3f:32:38:a4:65:ed:fd:1c:e3:36:9b:fd:aa:41:8e:e2:eb: 00:84:4e:5f:64:ef:6d:eb:bc:a8:ca:a2:54:cb:be:04:7f:cb: 95:ec:31:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjUwNDI0MjI1MjI2WhcNMjUwNTAxMjI1MjI2WjAYMRYwFAYD VQQDEw02ODBhYzBhYS01ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02QdflFjqrTdGWwwJaxPKAj34EMMV9GLrRRpe2/sVy2LPyJr7XRTXTCYS/Mi cfTYPHuSVAqOqkGnfUUdmb750sthW5MNsLilAaN6KvstxZX+PJ9p64mxbI6HzW1Z pOB5MpTPCi49Nw0zAhRYl+huvbcohaZKQ53DdJ274SZnf5iuHUC2sGFbtrFXtHeU Nvf5DJSw/3pc99rVb+rp5oIS8AaBfhGV1DGn1Ny8JNeiuuMzeXSOwD2OGDDjz13Q lZ2vEVYVov/RKYYCwRa8wyyTN0lfBWVXTvqD58C4q8c4kTAmOukitVgKjIbmbFJH QHF2dzNS5OVq9wiyv3mlzN6rGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMDAjW5 8OHaUSOlJ2VDwjM/agNTMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzU3OC9EM0MwMTkwQ0JCOUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhH djZXQTZqdWlKWGVUVjFjTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxTH4Tv9zzBeMzER3Hd0zmBidr+0qbfPNOMb7WBJEYL9naudUiCVJ7 RBTT8tw/0fggGHfTybosdccy9XeSjqGriLY+k9GOQ88akgTuWwBJIhSB2LgK4uIM iKlyarnZZ6P/Ag7CSf/cSyLAelseEwlt28KUo3XQG171Q6c6x8HQW0utcqcrTIU/ NZshP8NVAS+9o0q0BknE8r1T6wgqMOse4TSHTarmwekYECf6TEWWDeATq27sYs6L 7FMbHZm//vu4WZtWpm4j3n0ciqX0P5bhW12Q8xC962VlPzI4pGXt/RzjNpv9qkGO 4usAhE5fZO9t67yoyqJUy74Ef8uV7DEs -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:44 2025 by rpki-client