$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft File: rRapGbMt65RQ0upjx51QMV2RgVU.mft (raw, json) Hash identifier: CsltrkbWo0Jb9thAQtrMJojE84YE8khYqvcWUxW2UW0= Subject key identifier: AB:2A:A0:50:A8:97:4D:AA:7E:4F:21:1E:D5:B1:E2:85:C2:0A:FD:1E Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0AD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft Manifest number: 0AC8 Signing time: Thu 24 Apr 2025 19:21:39 +0000 Manifest this update: Thu 24 Apr 2025 19:21:39 +0000 Manifest next update: Thu 01 May 2025 19:21:39 +0000 Files and hashes: 1: rRapGbMt65RQ0upjx51QMV2RgVU.crl (hash: UxMntwhBKNKQDnp++NR0xchrQxg9n5lYOlUFqLFGs0M=) 2: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (hash: TavcsNbKSaSDXkcGP72u+jTcP48G3Su8SEY/uwppPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2771 (0xad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F, serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Apr 24 19:21:39 2025 GMT Not After : May 1 19:21:39 2025 GMT Subject: CN=680a8f43-76df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b3:92:3d:dd:6e:b8:f4:17:4b:37:fc:b9:83: a3:49:6d:ee:d6:65:92:ba:f0:3f:01:57:3e:75:15: f5:57:a3:19:02:cd:ae:9a:d1:2c:50:8b:2d:13:84: fd:57:56:b9:73:d2:e5:69:f7:58:9a:79:02:0e:ba: 9e:a6:f1:3b:09:fb:cf:23:d8:ac:f6:00:26:52:78: c9:4a:6d:e4:d2:58:17:41:b4:cd:fd:c2:17:dc:80: 7e:16:c4:ee:34:51:24:91:c7:7f:04:a6:ff:25:43: df:52:1d:78:ae:db:74:07:d9:80:19:fa:ce:cb:75: 19:2a:29:61:e6:c8:3b:35:5c:e4:76:27:44:4b:1a: 4b:86:d2:57:43:d1:50:4e:7a:46:d1:ed:dc:e1:2f: 98:46:4f:60:f9:f2:a7:ae:98:46:ec:67:30:43:48: a3:ff:20:8b:4a:ce:28:0e:75:7a:fb:20:e3:f6:11: c1:27:21:4b:42:c3:ee:0a:b5:b8:20:34:72:ee:9f: 2a:34:48:31:32:54:bc:99:72:c0:e1:bf:74:7f:7d: 94:38:2e:ce:ea:1f:f8:2b:cb:37:f8:8d:10:76:02: 66:72:66:f5:c2:9d:9e:c2:c1:fe:41:0e:4f:0f:df: ce:25:09:ef:16:ae:e1:dc:86:1d:51:ee:4c:50:47: 88:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2A:A0:50:A8:97:4D:AA:7E:4F:21:1E:D5:B1:E2:85:C2:0A:FD:1E X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:c1:86:75:1b:a8:72:da:a8:a3:9f:b5:e8:5d:90:e5:04:86: 3a:91:a9:d1:c3:33:57:10:9c:e7:48:8c:51:0b:ac:6d:71:99: 10:37:3b:94:cf:98:38:76:34:58:cd:f9:16:9e:2c:6b:8e:09: 31:79:17:f5:a3:31:a8:e6:db:7c:b9:f1:c8:4e:33:8d:0a:1c: d1:ad:cd:f7:d1:ee:62:6e:cf:20:fe:9f:da:fe:0f:7e:7c:61: 17:f7:1b:47:bf:76:1d:71:ab:cd:25:ac:dd:c9:1a:0c:bb:fe: 72:ad:02:04:34:73:6a:0f:fe:46:7a:c4:4a:6a:70:2c:8d:f2: f5:dd:a2:cc:80:78:cd:ae:c9:33:4d:76:7e:17:1d:3b:68:8b: b9:19:bc:e8:9f:35:3e:9b:a6:2f:e0:43:e0:09:4f:6c:a2:42: 4f:7f:0f:f0:96:84:a0:11:3a:56:29:fa:e6:8b:d9:05:22:ef: ee:84:b1:28:64:2c:61:86:5a:54:b2:91:1c:fe:2b:d2:73:4c: 93:f6:1c:89:d6:8b:ab:6f:f6:71:e4:b6:ed:4f:71:f8:ae:00: ba:a0:07:37:92:5b:de:cf:4d:78:e4:ec:cd:5e:17:91:6b:bb: b1:01:63:d3:eb:0a:c5:76:78:7a:47:87:52:93:bb:12:f0:68: 75:cb:51:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjUwNDI0MTkyMTM5WhcNMjUwNTAxMTkyMTM5WjAYMRYwFAYD VQQDEw02ODBhOGY0My03NmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrOSPd1uuPQXSzf8uYOjSW3u1mWSuvA/AVc+dRX1V6MZAs2umtEsUIstE4T9 V1a5c9LlafdYmnkCDrqepvE7CfvPI9is9gAmUnjJSm3k0lgXQbTN/cIX3IB+FsTu NFEkkcd/BKb/JUPfUh14rtt0B9mAGfrOy3UZKilh5sg7NVzkdidESxpLhtJXQ9FQ TnpG0e3c4S+YRk9g+fKnrphG7GcwQ0ij/yCLSs4oDnV6+yDj9hHBJyFLQsPuCrW4 IDRy7p8qNEgxMlS8mXLA4b90f32UOC7O6h/4K8s3+I0QdgJmcmb1wp2ewsH+QQ5P D9/OJQnvFq7h3IYdUe5MUEeIOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsqoFCo l02qfk8hHtWx4oXCCv0eMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkEwRi9EOTAwNjdGRTRDRDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1 UlEwdXBqeDUxUU1WMlJnVlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAywYZ1G6hy2qijn7XoXZDlBIY6kanRwzNXEJznSIxRC6xtcZkQNzuU z5g4djRYzfkWnixrjgkxeRf1ozGo5tt8ufHITjONChzRrc330e5ibs8g/p/a/g9+ fGEX9xtHv3YdcavNJazdyRoMu/5yrQIENHNqD/5GesRKanAsjfL13aLMgHjNrskz TXZ+Fx07aIu5GbzonzU+m6Yv4EPgCU9sokJPfw/wloSgETpWKfrmi9kFIu/uhLEo ZCxhhlpUspEc/ivSc0yT9hyJ1ourb/Zx5LbtT3H4rgC6oAc3klvez0145OzNXheR a7uxAWPT6wrFdnh6R4dSk7sS8Gh1y1EN -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:30 2025 by rpki-client