$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: DTdlEkYbD2q2KRyj7doac+zlqeZMk2jgJHespuL0udI= Subject key identifier: AD:3C:69:A5:8D:FD:E3:C5:5F:00:46:4B:28:D1:0E:F9:3F:3E:8E:EA Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 0132 Signing time: Fri 25 Apr 2025 03:37:55 +0000 Manifest this update: Fri 25 Apr 2025 03:37:54 +0000 Manifest next update: Fri 02 May 2025 03:37:54 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: vjgu/3jU2wO57gvIHo8Jdqbh2TcUVq8S53dnbM9LUyg=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: jAD/7lg+++i+O4y1RlntCcfLaxTpo5Pzuq6OqBjjXF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Apr 25 03:37:54 2025 GMT Not After : May 2 03:37:54 2025 GMT Subject: CN=680b0392-a9de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4e:30:0b:93:93:7e:71:bb:11:16:40:cc:48: a4:8d:ac:f0:54:3a:a0:89:c1:fb:1f:20:93:4a:41: f7:5e:47:32:11:6a:bd:17:68:64:a6:9f:c8:98:25: 28:7e:e5:bf:77:91:d4:97:41:06:5b:22:b4:c3:4c: 3c:8b:fb:9d:cf:8f:d6:f2:cf:a7:c0:0d:14:e1:95: 07:c8:95:76:e1:d8:70:0e:73:1d:93:ec:d1:7b:77: 33:d9:ef:6d:5e:e9:a5:55:60:20:11:65:57:1f:91: 47:1e:46:77:af:6e:4f:0d:af:ac:c0:38:09:2a:8b: 13:27:56:81:5f:16:69:70:7c:7f:fe:3c:a3:d1:3f: 20:88:2e:bb:84:19:04:01:c7:0d:be:6b:8d:2d:12: cc:9d:b3:36:02:1c:af:e3:dc:af:c7:bc:30:00:42: 3d:a4:12:ac:d7:5d:bf:71:7c:19:8c:79:93:78:50: 6c:c4:44:69:c3:45:20:d9:3d:b9:e7:53:99:f5:21: 86:d8:fe:47:d8:e9:6e:7d:6f:c0:cb:3c:1c:0f:b3: 0c:eb:2b:51:42:4e:2a:50:7a:7d:93:f0:c1:bf:b3: 04:ee:8f:ec:3c:25:5e:c4:98:01:49:9f:54:7f:39: 8c:46:9a:83:c7:e1:ac:df:fa:6b:4b:8b:1d:43:de: e1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3C:69:A5:8D:FD:E3:C5:5F:00:46:4B:28:D1:0E:F9:3F:3E:8E:EA X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a3:95:d8:7a:7c:3f:52:b4:ba:34:b9:67:2d:c7:cb:83:24: 1b:5e:52:84:cc:55:be:d1:bd:4b:e3:dd:56:17:25:67:a7:7e: 21:7d:8a:5e:f6:f5:fe:61:8c:39:10:9e:52:e9:fd:5a:94:b7: d5:c2:ab:48:8a:d4:97:7c:8d:50:50:a3:57:6a:9b:fc:73:3c: bf:46:5e:0f:f7:e3:c8:d7:1a:d5:ab:39:fb:1c:17:89:03:8a: 74:22:f1:fa:f7:cc:56:e7:f4:13:54:87:70:31:94:26:a1:04: 72:1b:c0:45:1b:f1:9f:78:df:df:22:c0:b2:85:de:94:47:43: 3e:ac:a5:4b:69:8b:9c:a7:8a:9f:0b:7d:13:55:c3:de:29:93: e3:34:78:d1:a1:99:ad:b9:c3:c0:23:1b:b7:4e:94:4d:7e:d2: b4:43:1a:65:40:fe:88:18:22:72:35:28:1b:73:ad:15:90:81: 23:f5:18:f1:c0:2b:2c:e7:33:4a:0d:24:dc:37:a8:5e:72:cd: e2:52:43:ce:61:7a:db:9d:f5:52:35:75:72:bd:7b:40:c7:7a: 11:46:4a:63:70:30:01:13:0d:e0:18:3d:42:3e:17:43:f8:a6: fe:33:f8:e5:0f:23:dd:5a:04:77:48:68:52:44:2d:8c:46:c3: f6:04:4a:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjUwNDI1MDMzNzU0WhcNMjUwNTAyMDMzNzU0WjAYMRYwFAYD VQQDEw02ODBiMDM5Mi1hOWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5E4wC5OTfnG7ERZAzEikjazwVDqgicH7HyCTSkH3XkcyEWq9F2hkpp/ImCUo fuW/d5HUl0EGWyK0w0w8i/udz4/W8s+nwA0U4ZUHyJV24dhwDnMdk+zRe3cz2e9t XumlVWAgEWVXH5FHHkZ3r25PDa+swDgJKosTJ1aBXxZpcHx//jyj0T8giC67hBkE AccNvmuNLRLMnbM2Ahyv49yvx7wwAEI9pBKs112/cXwZjHmTeFBsxERpw0Ug2T25 51OZ9SGG2P5H2OlufW/AyzwcD7MM6ytRQk4qUHp9k/DBv7ME7o/sPCVexJgBSZ9U fzmMRpqDx+Gs3/prS4sdQ97hWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK08aaWN /ePFXwBGSyjRDvk/Po7qMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAho5XYenw/UrS6NLlnLcfLgyQbXlKEzFW+0b1L491WFyVnp34hfYpe 9vX+YYw5EJ5S6f1alLfVwqtIitSXfI1QUKNXapv8czy/Rl4P9+PI1xrVqzn7HBeJ A4p0IvH698xW5/QTVIdwMZQmoQRyG8BFG/GfeN/fIsCyhd6UR0M+rKVLaYucp4qf C30TVcPeKZPjNHjRoZmtucPAIxu3TpRNftK0QxplQP6IGCJyNSgbc60VkIEj9Rjx wCss5zNKDSTcN6hecs3iUkPOYXrbnfVSNXVyvXtAx3oRRkpjcDABEw3gGD1CPhdD +Kb+M/jlDyPdWgR3SGhSRC2MRsP2BEq6 -----END CERTIFICATE-----Generated at Sat Apr 26 05:10:09 2025 by rpki-client