$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: 4kezSMCWTIfaci7N/b6tFZnGvdy7ESRrgiglz7Wz4IE= Subject key identifier: E9:E9:72:81:36:C5:40:BF:E4:39:1D:F2:0E:1D:C9:54:20:73:7E:C6 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 01C7 Signing time: Fri 25 Apr 2025 04:30:52 +0000 Manifest this update: Fri 25 Apr 2025 04:30:52 +0000 Manifest next update: Fri 02 May 2025 04:30:52 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: VD/GcGCgkI++YnjQNP3pTSi6TuRjzxc8Ty3fskkpHxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Apr 25 04:30:52 2025 GMT Not After : May 2 04:30:52 2025 GMT Subject: CN=680b0ffc-4dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a1:f9:38:91:5f:a3:f3:e3:83:aa:38:01:81: 5d:fb:24:57:31:c7:df:27:73:50:25:05:ff:3f:b4: 70:ec:50:f7:39:1c:d9:d7:76:9e:3e:cd:3f:f2:38: a5:87:66:53:4e:6c:7c:be:6e:9f:25:36:5e:65:42: 29:07:e4:36:88:c2:68:ad:f7:55:cf:26:5f:4c:4d: c2:c7:4d:35:d0:d6:48:96:71:9d:0e:7b:9c:b5:e3: 5a:a7:a2:8b:5a:84:35:12:37:78:47:ef:c4:91:38: 54:20:8d:ad:93:49:f3:50:c8:ca:16:e6:b5:5a:e5: 63:dd:ff:bd:ae:cf:29:d1:e9:83:36:08:91:dd:39: ba:4a:ff:50:da:5f:c9:f8:3d:0d:70:3b:d9:8d:ee: ca:3b:7b:f4:aa:01:db:c9:b0:d1:fd:60:8d:6d:36: 87:ac:5f:c6:06:ee:96:10:bb:3a:35:3a:33:6c:26: 52:a6:10:c1:22:f8:23:90:1a:76:44:98:a7:d7:b9: d6:cb:63:9c:c1:0d:2c:c3:04:43:fa:48:10:63:3f: 6d:9c:9e:2e:f5:1e:ba:6a:b2:11:1c:0d:f4:74:9d: d5:44:29:eb:31:94:27:e7:07:71:1e:31:90:3c:a4: b3:87:0d:d9:e3:ab:1c:cd:a5:30:5a:a1:af:7a:73: 88:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E9:72:81:36:C5:40:BF:E4:39:1D:F2:0E:1D:C9:54:20:73:7E:C6 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:66:ef:11:e4:69:ce:29:eb:1c:37:21:a2:7b:03:b3:33:fe: 70:00:1e:89:ca:ee:f6:81:9b:ae:87:80:fc:b4:30:d2:c1:0b: 46:93:28:dd:0a:ae:fb:e2:ee:82:f4:29:9f:8a:20:62:b0:54: 7a:2d:9e:4b:93:0a:aa:10:4b:86:77:0d:95:b7:19:99:a9:b9: 69:6e:c0:d2:ae:02:2b:19:3c:82:4a:cc:8c:b6:61:44:df:97: fd:b2:4c:11:ed:fb:37:57:f3:fd:c9:e0:90:f6:7f:73:64:2d: d1:23:74:ce:ad:c3:11:ae:63:c1:93:e8:23:00:a9:77:f6:1f: 7f:fb:1d:8f:0a:93:3a:e9:1e:15:f8:97:af:82:d2:9a:7e:2c: 3d:d1:7a:67:63:15:26:e0:22:6f:40:25:f3:ab:ca:4f:f1:ba: e1:2b:f8:61:0c:a2:e4:99:8a:31:55:7e:9b:3d:61:d6:a6:c8: 91:9c:93:8e:ec:5d:c4:dd:57:f4:90:97:18:9b:a9:2a:70:7b: 0f:7a:4a:b8:06:31:d6:2e:69:7e:b3:2e:85:b3:d0:02:fd:a0: 69:4e:13:2a:cd:07:59:54:e2:da:1d:23:2e:7a:7d:b5:fc:0f: 1a:65:8f:41:9c:d8:37:91:f5:43:bc:25:60:89:fd:9f:9f:27: f2:4f:c7:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUwNDI1MDQzMDUyWhcNMjUwNTAyMDQzMDUyWjAYMRYwFAYD VQQDEw02ODBiMGZmYy00ZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qH5OJFfo/Pjg6o4AYFd+yRXMcffJ3NQJQX/P7Rw7FD3ORzZ13aePs0/8jil h2ZTTmx8vm6fJTZeZUIpB+Q2iMJorfdVzyZfTE3Cx0010NZIlnGdDnucteNap6KL WoQ1Ejd4R+/EkThUII2tk0nzUMjKFua1WuVj3f+9rs8p0emDNgiR3Tm6Sv9Q2l/J +D0NcDvZje7KO3v0qgHbybDR/WCNbTaHrF/GBu6WELs6NTozbCZSphDBIvgjkBp2 RJin17nWy2OcwQ0swwRD+kgQYz9tnJ4u9R66arIRHA30dJ3VRCnrMZQn5wdxHjGQ PKSzhw3Z46sczaUwWqGvenOIqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnpcoE2 xUC/5Dkd8g4dyVQgc37GMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeZu8R5GnOKescNyGiewOzM/5wAB6Jyu72gZuuh4D8tDDSwQtGkyjd Cq774u6C9CmfiiBisFR6LZ5LkwqqEEuGdw2VtxmZqblpbsDSrgIrGTyCSsyMtmFE 35f9skwR7fs3V/P9yeCQ9n9zZC3RI3TOrcMRrmPBk+gjAKl39h9/+x2PCpM66R4V +JevgtKafiw90XpnYxUm4CJvQCXzq8pP8brhK/hhDKLkmYoxVX6bPWHWpsiRnJOO 7F3E3Vf0kJcYm6kqcHsPekq4BjHWLml+sy6Fs9AC/aBpThMqzQdZVOLaHSMuen21 /A8aZY9BnNg3kfVDvCVgif2fnyfyT8dd -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:55 2025 by rpki-client