$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft File: 379fgwtQs7_B5TULnGBbt1YSLhE.mft (raw, json) Hash identifier: gr2RHBteN63AAOjG7vpsYLAHpud0UMSQ1jkuVzZaqmo= Subject key identifier: F4:DD:CC:F9:38:C9:4C:6A:0B:18:4E:AD:65:38:9E:30:67:5C:1E:5F Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 04B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft Manifest number: 04AF Signing time: Thu 24 Apr 2025 23:41:39 +0000 Manifest this update: Thu 24 Apr 2025 23:41:39 +0000 Manifest next update: Thu 01 May 2025 23:41:39 +0000 Files and hashes: 1: 379fgwtQs7_B5TULnGBbt1YSLhE.crl (hash: NtglzOnVuqk3g00JLYyrmOiiek/ZnT9ET1pZsrAdN54=) 2: D5C4A54A617B11EC82058668C4F9AE02.roa (hash: lRFgE9XZ6iDD+G2GlIBwvnuaHaRG9VvqEjSSiJJQVDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Apr 24 23:41:39 2025 GMT Not After : May 1 23:41:39 2025 GMT Subject: CN=680acc33-b450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:43:f0:d2:0a:46:90:19:47:64:5c:01:c8:d6: 42:13:ba:bd:80:c9:19:36:48:49:03:a7:9c:fc:d6: b6:ac:02:fc:73:e0:9d:fc:86:bd:03:86:94:bb:42: a3:df:79:81:72:a7:0e:6c:ce:fd:5d:98:2b:69:b5: 0b:ee:db:1c:7e:3e:46:e9:ee:11:9e:a2:70:54:85: 47:68:2d:d1:ba:63:5c:c6:d4:c5:87:03:a4:3d:39: ba:db:46:6e:4e:cb:ba:31:e1:bd:80:5b:a8:96:bc: 03:47:9b:2d:01:28:13:23:8f:0d:e5:f7:ab:15:ce: 94:d8:a2:9f:2e:76:9e:91:dd:7a:a6:ef:30:ab:ac: 18:9f:59:19:0d:6b:67:83:d5:c8:8f:71:00:da:3f: 09:33:74:48:41:77:bd:7b:3f:6e:66:dc:16:f5:ba: c5:9c:7c:02:6b:4f:b5:6c:15:ce:79:62:79:9e:ee: 1d:76:f6:ff:6b:dd:46:9d:b1:ad:64:49:83:cb:a0: f0:f4:dc:ee:b6:72:b2:79:6a:05:86:a5:84:15:9e: ed:7c:df:2c:29:d3:56:fd:ac:10:52:07:98:7b:93: 81:46:74:8e:ef:10:01:55:68:1e:1e:c6:24:ed:f2: d1:f5:4e:29:2a:eb:d3:07:85:08:aa:08:de:2d:a4: cf:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DD:CC:F9:38:C9:4C:6A:0B:18:4E:AD:65:38:9E:30:67:5C:1E:5F X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:0f:60:fa:36:f8:5c:17:5b:1a:b1:48:97:01:50:de:d0:6d: ac:f9:5f:26:33:39:73:34:63:1a:08:c6:9d:56:c0:8e:e5:d3: 1c:9a:bb:d5:a0:82:e0:8f:87:80:c4:9e:3c:e9:ae:5d:94:8b: 9a:71:32:c5:a2:5f:db:58:32:4a:ff:c3:40:ea:93:3b:22:62: 04:ac:4d:32:84:5f:37:c9:3c:87:8e:73:e6:45:ea:c7:cd:27: 90:8a:94:96:38:95:cb:8b:c2:25:da:f2:37:98:0d:53:2a:24: 9b:a2:f2:6d:4b:62:5c:c8:7d:a6:b4:55:3f:85:e1:8d:bc:9a: 46:db:e4:d6:86:76:90:18:05:df:07:7c:db:af:27:d5:25:ad: 0a:dd:81:19:d9:7f:4f:28:56:a6:99:55:3a:f9:4f:27:99:1d: 7f:8d:16:97:1b:89:cc:3e:85:e0:55:77:87:bc:f0:dc:dc:99: dc:b8:97:50:20:45:aa:22:67:34:cf:60:ab:94:fc:e3:6c:0a: 0b:03:bb:85:45:c1:29:e2:54:bd:cc:83:13:bf:59:ae:9f:b2: 37:9e:38:a2:c0:a0:af:7a:6c:b7:52:8f:ad:0a:ff:69:0e:e5: b7:fe:c2:d1:0d:9a:ec:8d:fb:2f:f7:fb:2d:09:04:7b:19:a0: 35:c0:b6:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUwNDI0MjM0MTM5WhcNMjUwNTAxMjM0MTM5WjAYMRYwFAYD VQQDEw02ODBhY2MzMy1iNDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70Pw0gpGkBlHZFwByNZCE7q9gMkZNkhJA6ec/Na2rAL8c+Cd/Ia9A4aUu0Kj 33mBcqcObM79XZgrabUL7tscfj5G6e4RnqJwVIVHaC3RumNcxtTFhwOkPTm620Zu Tsu6MeG9gFuolrwDR5stASgTI48N5ferFc6U2KKfLnaekd16pu8wq6wYn1kZDWtn g9XIj3EA2j8JM3RIQXe9ez9uZtwW9brFnHwCa0+1bBXOeWJ5nu4ddvb/a91GnbGt ZEmDy6Dw9NzutnKyeWoFhqWEFZ7tfN8sKdNW/awQUgeYe5OBRnSO7xABVWgeHsYk 7fLR9U4pKuvTB4UIqgjeLaTPpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTdzPk4 yUxqCxhOrWU4njBnXB5fMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI3RC8zMDE3MDk2RTJCQjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3 X0I1VFVMbkdCYnQxWVNMaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoD2D6NvhcF1sasUiXAVDe0G2s+V8mMzlzNGMaCMadVsCO5dMcmrvV oILgj4eAxJ486a5dlIuacTLFol/bWDJK/8NA6pM7ImIErE0yhF83yTyHjnPmRerH zSeQipSWOJXLi8Il2vI3mA1TKiSbovJtS2JcyH2mtFU/heGNvJpG2+TWhnaQGAXf B3zbryfVJa0K3YEZ2X9PKFammVU6+U8nmR1/jRaXG4nMPoXgVXeHvPDc3JncuJdQ IEWqImc0z2CrlPzjbAoLA7uFRcEp4lS9zIMTv1mun7I3njiiwKCvemy3Uo+tCv9p DuW3/sLRDZrsjfsv9/stCQR7GaA1wLaU -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:10 2025 by rpki-client