$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: ukK/Dibv5dKCb42EjNFIJn5CjOiEyiJua9pqLMyXcQ0= Subject key identifier: CD:29:20:69:C5:3D:BE:01:74:B8:B1:19:31:0D:FC:E0:27:C9:C6:4F Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 043B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 0413 Signing time: Fri 25 Apr 2025 00:15:30 +0000 Manifest this update: Fri 25 Apr 2025 00:15:29 +0000 Manifest next update: Fri 02 May 2025 00:15:29 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: YdKvvm7KV9DPJW3JAsPq7kdgrn/pyo0PKTXDOmIgc1M=) 2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=) 3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=) 5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=) 6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Apr 25 00:15:29 2025 GMT Not After : May 2 00:15:29 2025 GMT Subject: CN=680ad422-705c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:7c:23:0a:83:da:6d:63:da:ef:cf:49:69: cc:86:92:5f:59:48:18:0d:64:c0:c8:89:64:f1:6b: 0d:c3:26:ca:a3:a2:24:9d:b0:25:6d:04:8c:b7:5a: 36:7c:12:57:ec:5c:e7:46:86:49:e2:83:7c:b5:31: 8a:4c:9e:ab:62:15:4f:4f:42:f6:b9:b0:ce:da:6d: da:ba:88:94:0d:a8:40:2a:25:71:4a:c0:d9:a4:ac: 54:ba:6a:49:a8:3c:f2:b9:47:7f:d2:36:eb:ab:10: b3:d9:16:85:e0:29:dd:65:b0:79:85:1e:17:aa:68: c4:8a:c6:13:06:97:55:10:b2:9b:25:80:6c:12:50: 40:2e:c5:b2:4e:f1:61:08:31:6c:28:e7:13:8b:c4: 7f:76:b1:d0:f6:02:08:17:e1:3f:3d:6a:a1:00:0a: 73:81:10:3a:df:cd:bb:fd:f0:eb:e0:fb:5e:de:50: 4c:8d:c1:6d:1f:b6:5b:07:3a:6e:62:1c:de:c7:b4: 82:ed:07:e9:9c:55:e4:b3:28:71:89:f2:db:e1:9f: 46:27:98:10:25:4e:2e:04:9d:cc:ff:67:34:85:29: 80:be:78:7c:0d:1f:97:81:9d:e4:97:fe:db:34:6a: 13:44:f7:bd:a8:9e:dc:67:59:4d:56:93:3f:73:4e: 21:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:29:20:69:C5:3D:BE:01:74:B8:B1:19:31:0D:FC:E0:27:C9:C6:4F X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:46:aa:f4:82:71:ec:64:a3:c0:22:d4:d9:7b:d9:af:e8:f8: cc:e2:17:36:25:7b:1d:0e:83:42:de:da:26:b9:bc:cb:75:aa: 6d:80:58:a6:0c:12:8c:4c:ac:95:e9:13:f2:cf:50:d4:62:1d: 99:56:e0:8d:bf:8c:01:d4:f7:84:6d:56:8c:66:23:23:72:e6: dc:db:21:6b:67:fe:50:40:8d:8b:77:8b:81:95:e5:93:2a:6f: e8:b9:00:62:cd:0e:67:7d:ba:10:9f:79:0d:0d:b7:1c:2c:70: 0c:cc:de:70:7b:08:fe:bd:c9:5f:f9:f5:5a:5c:3a:45:d6:5b: 4d:5c:80:a4:5a:9b:5c:84:3a:ed:5c:75:fe:cf:5d:2d:a0:fd: bc:a7:6a:fb:07:e3:39:80:19:08:be:bd:9b:62:93:c7:6c:b0: 3d:40:80:8a:90:f3:7f:5e:39:28:1a:84:94:87:06:21:cf:e8: d5:d6:3c:a1:5a:39:f2:ba:68:c0:14:95:de:7c:78:1a:83:40: a8:b3:f1:59:6b:0a:05:a2:77:d8:27:81:4f:31:9a:2b:42:ca: c3:23:18:02:ca:cc:3f:51:a9:e8:1d:f6:3e:c7:dd:f7:08:d9: 84:e4:24:15:23:9c:02:57:4a:b8:01:49:4e:f2:2f:45:7d:5b: c7:9c:75:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUwNDI1MDAxNTI5WhcNMjUwNTAyMDAxNTI5WjAYMRYwFAYD VQQDEw02ODBhZDQyMi03MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveN8IwqD2m1j2u/PSWnMhpJfWUgYDWTAyIlk8WsNwybKo6IknbAlbQSMt1o2 fBJX7FznRoZJ4oN8tTGKTJ6rYhVPT0L2ubDO2m3auoiUDahAKiVxSsDZpKxUumpJ qDzyuUd/0jbrqxCz2RaF4CndZbB5hR4XqmjEisYTBpdVELKbJYBsElBALsWyTvFh CDFsKOcTi8R/drHQ9gIIF+E/PWqhAApzgRA63827/fDr4Pte3lBMjcFtH7ZbBzpu Yhzex7SC7QfpnFXksyhxifLb4Z9GJ5gQJU4uBJ3M/2c0hSmAvnh8DR+XgZ3kl/7b NGoTRPe9qJ7cZ1lNVpM/c04hMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0pIGnF Pb4BdLixGTEN/OAnycZPMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWRqr0gnHsZKPAItTZe9mv6PjM4hc2JXsdDoNC3tomubzLdaptgFim DBKMTKyV6RPyz1DUYh2ZVuCNv4wB1PeEbVaMZiMjcubc2yFrZ/5QQI2Ld4uBleWT Km/ouQBizQ5nfboQn3kNDbccLHAMzN5wewj+vclf+fVaXDpF1ltNXICkWptchDrt XHX+z10toP28p2r7B+M5gBkIvr2bYpPHbLA9QICKkPN/XjkoGoSUhwYhz+jV1jyh WjnyumjAFJXefHgag0Cos/FZawoFonfYJ4FPMZorQsrDIxgCysw/UanoHfY+x933 CNmE5CQVI5wCV0q4AUlO8i9FfVvHnHXE -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:29 2025 by rpki-client