$ rpki-client -vvf rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft File: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft (raw, json) Hash identifier: n/+90HS17NHabwC109G1ZWUFZ1mOs36t490cZjeacqQ= Subject key identifier: 2C:08:62:4B:0E:12:CF:40:17:7B:82:37:41:60:02:87:4D:A8:1C:07 Authority key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 Certificate issuer: /CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Certificate serial: 0513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft Manifest number: 050E Signing time: Thu 24 Apr 2025 23:24:33 +0000 Manifest this update: Thu 24 Apr 2025 23:24:32 +0000 Manifest next update: Thu 01 May 2025 23:24:32 +0000 Files and hashes: 1: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl (hash: 3SCTPfXB/T+KdPU/KnI3qLetDBwBLCPF7Zxq5J8cslM=) 2: 7C05ACEE75B311EF83EC6F78C4F9AE02.roa (hash: 4HbuRwfGRyDZiXaifrjrnY5mPijGwg/rzxNxMS6Fugs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D795B, serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Validity Not Before: Apr 24 23:24:32 2025 GMT Not After : May 1 23:24:32 2025 GMT Subject: CN=680ac830-d3c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:25:32:09:1d:ca:a8:fe:1b:58:83:20:99:00: 13:ec:a0:10:66:a8:5f:37:46:08:fb:84:2d:fb:f5: 0e:94:33:c2:5a:d2:66:4c:0f:17:ce:d1:32:27:9b: 95:5b:fb:21:cb:16:dd:8e:e3:9f:ac:1c:1d:69:e6: f8:98:a6:f9:b5:91:c6:27:fd:33:a6:a7:ef:49:67: 7c:a6:69:0b:df:9a:f8:84:fe:2a:26:df:21:06:1b: 37:a7:34:d4:33:78:3b:74:e4:98:26:8f:1b:ee:f4: 60:ec:33:e2:0c:77:7e:0e:b4:9a:87:06:ca:76:81: 36:a2:58:e1:40:6a:50:4a:b6:51:cf:9e:90:1f:bd: d4:25:b0:45:ae:82:f2:be:8e:25:29:07:51:4b:fa: f0:65:8f:b4:40:1f:65:c0:61:9f:0f:11:11:06:d2: 5c:60:a5:35:0e:59:57:92:2f:07:15:fa:80:d2:6f: 40:36:74:d1:7c:34:30:de:cd:d1:2c:6a:8f:c0:52: 32:95:89:ae:00:ea:25:9d:26:51:79:9d:cd:ba:41: 7e:53:d7:87:09:1b:1f:94:b7:96:24:61:04:f9:a4: 3b:f0:4f:d1:fa:06:45:ba:98:69:29:e9:0d:3d:e6: ac:7b:f7:62:b4:5e:59:aa:44:69:24:16:00:71:a6: 2a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:08:62:4B:0E:12:CF:40:17:7B:82:37:41:60:02:87:4D:A8:1C:07 X509v3 Authority Key Identifier: keyid:05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:72:37:e3:0b:dc:87:e0:9a:db:fb:98:da:05:4f:4d:ed:1b: 8a:a0:80:1d:2e:5a:52:3a:ec:16:2d:dc:72:10:e9:21:92:57: f2:aa:02:01:9f:b6:bb:b1:af:b8:93:bc:b5:60:43:ea:d8:cf: 13:ba:7d:a3:fe:25:82:ec:b4:2b:43:c1:1b:98:f9:f7:48:c6: e8:b6:f2:bd:e4:63:e4:b8:8e:91:fa:36:30:f9:4f:08:b7:75: 43:8f:81:4a:d2:31:3a:e9:33:70:c0:3c:9d:4f:1f:32:66:4b: 2e:4d:9c:d5:99:71:08:8c:db:61:cc:ef:ce:23:70:d9:c8:97: 35:40:6a:66:3f:5e:5b:16:72:b7:fa:17:c9:eb:10:00:d7:3c: 94:85:3d:16:01:4c:8e:5a:3c:5c:a3:1b:c2:12:95:15:73:42: c0:98:7b:b5:a0:7a:8d:72:d1:7d:a3:f5:8a:d7:9e:b5:31:92: 11:61:80:47:43:63:b1:93:7e:ae:ff:0f:0c:29:35:ab:3f:70: b8:b5:ca:62:74:3e:61:fe:d2:2a:08:32:ca:5d:15:17:79:6f: 01:8b:5a:3a:cc:67:ff:2f:76:60:e2:19:54:6b:db:9b:d9:8c: 90:7c:a2:16:e6:46:41:03:30:4b:89:b6:18:a9:6b:84:09:bc: f2:bd:71:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2M0YyQTY5MDc4 Njc3OTVFRjcwHhcNMjUwNDI0MjMyNDMyWhcNMjUwNTAxMjMyNDMyWjAYMRYwFAYD VQQDEw02ODBhYzgzMC1kM2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSUyCR3KqP4bWIMgmQAT7KAQZqhfN0YI+4Qt+/UOlDPCWtJmTA8XztEyJ5uV W/shyxbdjuOfrBwdaeb4mKb5tZHGJ/0zpqfvSWd8pmkL35r4hP4qJt8hBhs3pzTU M3g7dOSYJo8b7vRg7DPiDHd+DrSahwbKdoE2oljhQGpQSrZRz56QH73UJbBFroLy vo4lKQdRS/rwZY+0QB9lwGGfDxERBtJcYKU1DllXki8HFfqA0m9ANnTRfDQw3s3R LGqPwFIylYmuAOolnSZReZ3NukF+U9eHCRsflLeWJGEE+aQ78E/R+gZFuphpKekN Pease/ditF5ZqkRpJBYAcaYqOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwIYksO Es9AF3uCN0FgAodNqBwHMB8GA1UdIwQYMBaAFAW+87dkY1bOQJ/FY/KmkHhneV73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzk1Qi9BODhGQjNFMjAw QzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZzNUFuOFZqOHFhUWVHZDVY dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JiN3p0MlJqVnM1QW44Vmo4cWFRZUdkNVh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Nzk1Qi9BODhGQjNFMjAwQzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZz NUFuOFZqOHFhUWVHZDVYdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWcjfjC9yH4Jrb+5jaBU9N7RuKoIAdLlpSOuwWLdxyEOkhklfyqgIB n7a7sa+4k7y1YEPq2M8Tun2j/iWC7LQrQ8EbmPn3SMbotvK95GPkuI6R+jYw+U8I t3VDj4FK0jE66TNwwDydTx8yZksuTZzVmXEIjNthzO/OI3DZyJc1QGpmP15bFnK3 +hfJ6xAA1zyUhT0WAUyOWjxcoxvCEpUVc0LAmHu1oHqNctF9o/WK1561MZIRYYBH Q2Oxk36u/w8MKTWrP3C4tcpidD5h/tIqCDLKXRUXeW8Bi1o6zGf/L3Zg4hlUa9ub 2YyQfKIW5kZBAzBLibYYqWuECbzyvXFV -----END CERTIFICATE-----Generated at Sat Apr 26 12:55:31 2025 by rpki-client