$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft File: L-aHDoJAvxJ46pnCMRal4KjSCZA.mft (raw, json) Hash identifier: Qwd/tkstVKioEgiybOpUhoI2LGJDuJGwXFDgAlpfMZM= Subject key identifier: 26:38:3E:17:E8:91:4E:BC:C4:03:5E:38:A9:02:AA:48:3E:9F:9D:21 Authority key identifier: 2F:E6:87:0E:82:40:BF:12:78:EA:99:C2:31:16:A5:E0:A8:D2:09:90 Certificate issuer: /CN=A91D8B2B/serialNumber=2FE6870E8240BF1278EA99C23116A5E0A8D20990 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-aHDoJAvxJ46pnCMRal4KjSCZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft Manifest number: DB Signing time: Fri 25 Apr 2025 04:34:31 +0000 Manifest this update: Fri 25 Apr 2025 04:34:30 +0000 Manifest next update: Fri 02 May 2025 04:34:30 +0000 Files and hashes: 1: L-aHDoJAvxJ46pnCMRal4KjSCZA.crl (hash: eEVAjoSkF70NJPk8VH9M05SZURSdHBF4cmTsSfwS34g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.crl rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-aHDoJAvxJ46pnCMRal4KjSCZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B2B, serialNumber=2FE6870E8240BF1278EA99C23116A5E0A8D20990 Validity Not Before: Apr 25 04:34:30 2025 GMT Not After : May 2 04:34:30 2025 GMT Subject: CN=680b10d7-0e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d3:4c:a3:13:73:49:09:e9:8b:ea:d1:da:7b: 3c:17:4a:92:78:9f:65:fd:f3:00:8d:8b:12:0f:fc: 54:22:d6:42:a2:db:7b:38:53:52:29:d1:e4:35:ee: 1a:6f:28:51:11:e8:57:31:1a:62:68:15:01:31:61: eb:af:14:9e:e1:df:e1:4d:cc:89:13:73:c7:a0:e3: 10:14:b7:79:ab:4e:fd:71:ba:51:62:b4:12:b8:08: e2:35:5e:5d:af:1c:c5:1c:6e:b0:04:82:18:03:7f: 0d:0b:8c:1e:f2:86:b7:2d:28:79:79:82:e5:16:4a: 3f:54:e1:0d:7f:aa:0e:3a:41:8d:d7:85:07:76:cc: 5c:bd:47:84:82:8f:86:98:da:7b:f2:33:0d:30:27: 7e:eb:04:d0:47:d0:5c:a8:54:55:b2:da:55:00:28: 9c:15:fe:3c:75:87:21:df:aa:dd:99:f3:6d:f6:a5: cc:cf:69:c4:ae:dc:10:7c:e8:58:37:c2:6d:d2:0e: fe:72:86:5a:07:6e:f0:10:49:aa:0a:42:b6:58:fb: 29:cb:05:a7:9c:77:7b:88:82:8f:28:07:0c:dd:38: 18:fa:17:80:3f:4f:88:3b:1a:b3:7d:21:8b:71:89: a2:ec:f1:68:b7:e1:e6:b1:82:24:71:2b:55:a9:52: 95:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:38:3E:17:E8:91:4E:BC:C4:03:5E:38:A9:02:AA:48:3E:9F:9D:21 X509v3 Authority Key Identifier: keyid:2F:E6:87:0E:82:40:BF:12:78:EA:99:C2:31:16:A5:E0:A8:D2:09:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-aHDoJAvxJ46pnCMRal4KjSCZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a4:ef:d4:72:62:b8:20:50:1e:4f:f5:e3:ee:ec:8c:95:4c: 47:1d:d7:7a:9c:23:ba:11:73:26:5b:23:36:72:92:ad:22:cd: de:77:bf:09:e7:4f:75:ff:d0:4c:43:dd:7b:fa:78:49:2c:9e: d0:34:b2:db:6d:74:b6:03:8d:07:36:ea:7a:e0:d5:b9:43:dd: 14:3b:12:14:56:b3:77:b5:d6:3a:25:15:71:d9:ae:b6:05:2b: 03:c0:2a:34:06:c1:a9:8d:a7:cd:64:84:81:33:91:74:da:1d: 15:d7:81:86:33:54:a2:26:d8:71:cc:46:c8:58:f0:ee:28:05: a2:bd:1c:3c:d8:c1:f4:e2:2a:4c:33:5a:9a:a5:28:3f:41:d0: b0:6e:01:e1:8a:20:68:f5:04:b7:c4:e1:45:2a:4e:b3:76:8d: a8:95:62:57:d5:7c:35:ff:be:58:f3:4b:e2:42:86:36:b1:cd: 10:37:eb:8a:b4:8e:b7:e2:d0:b7:81:47:54:80:ca:bb:c9:80: 7e:72:a5:62:6f:42:48:a0:63:ae:20:4b:50:0b:3d:6a:eb:eb: f3:71:37:df:b5:ed:4a:6d:f0:48:14:45:d7:40:b2:47:fa:b4: 66:89:49:ab:94:20:52:3f:8c:c4:3f:8e:22:d1:1e:bd:46:f8: 9a:c4:48:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCMkIxMTAvBgNVBAUTKDJGRTY4NzBFODI0MEJGMTI3OEVBOTlDMjMxMTZBNUUw QThEMjA5OTAwHhcNMjUwNDI1MDQzNDMwWhcNMjUwNTAyMDQzNDMwWjAYMRYwFAYD VQQDEw02ODBiMTBkNy0wZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNNMoxNzSQnpi+rR2ns8F0qSeJ9l/fMAjYsSD/xUItZCott7OFNSKdHkNe4a byhREehXMRpiaBUBMWHrrxSe4d/hTcyJE3PHoOMQFLd5q079cbpRYrQSuAjiNV5d rxzFHG6wBIIYA38NC4we8oa3LSh5eYLlFko/VOENf6oOOkGN14UHdsxcvUeEgo+G mNp78jMNMCd+6wTQR9BcqFRVstpVACicFf48dYch36rdmfNt9qXMz2nErtwQfOhY N8Jt0g7+coZaB27wEEmqCkK2WPspywWnnHd7iIKPKAcM3TgY+heAP0+IOxqzfSGL cYmi7PFot+HmsYIkcStVqVKVXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCY4Phfo kU68xANeOKkCqkg+n50hMB8GA1UdIwQYMBaAFC/mhw6CQL8SeOqZwjEWpeCo0gmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEIyQi9BNDY1QTQ5QUNG OUMxMUVFQUYzNDQ2NUZDNEY5QUUwMi9MLWFIRG9KQXZ4SjQ2cG5DTVJhbDRLalND WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wtYUhEb0pBdnhKNDZwbkNNUmFsNEtqU0NaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEIyQi9BNDY1QTQ5QUNGOUMxMUVFQUYzNDQ2NUZDNEY5QUUwMi9MLWFIRG9KQXZ4 SjQ2cG5DTVJhbDRLalNDWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpO/UcmK4IFAeT/Xj7uyMlUxHHdd6nCO6EXMmWyM2cpKtIs3ed78J 5091/9BMQ917+nhJLJ7QNLLbbXS2A40HNup64NW5Q90UOxIUVrN3tdY6JRVx2a62 BSsDwCo0BsGpjafNZISBM5F02h0V14GGM1SiJthxzEbIWPDuKAWivRw82MH04ipM M1qapSg/QdCwbgHhiiBo9QS3xOFFKk6zdo2olWJX1Xw1/75Y80viQoY2sc0QN+uK tI634tC3gUdUgMq7yYB+cqVib0JIoGOuIEtQCz1q6+vzcTffte1KbfBIFEXXQLJH +rRmiUmrlCBSP4zEP44i0R69RviaxEjU -----END CERTIFICATE-----Generated at Sat Apr 26 04:53:46 2025 by rpki-client