$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: bED9Exo3inLOrP4exysgjinuUuCl3YKekcYKIOF8GVc= Subject key identifier: 45:E5:67:C6:96:6C:66:CC:48:50:BB:84:4B:8D:B8:94:D0:3F:F5:EB Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 06F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 06E9 Signing time: Thu 24 Apr 2025 21:48:59 +0000 Manifest this update: Thu 24 Apr 2025 21:48:58 +0000 Manifest next update: Thu 01 May 2025 21:48:58 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: NRJiW5C//+Jf5kEzbzAJw+Ham9DEYWuTZnoXEm1p79g=) 2: A793BA7E492D11EB8BE07D54C4F9AE02.roa (hash: rr5k3fKZgvDyXFLnJfEeotntvMNKxGcDJEuXf2w7Hns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Apr 24 21:48:58 2025 GMT Not After : May 1 21:48:58 2025 GMT Subject: CN=680ab1ca-8974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:5b:d1:77:bd:3b:4f:bb:12:c3:f5:69:cc: fd:6a:72:ec:20:60:db:2a:cf:26:cb:08:b0:e0:08: f1:54:2c:52:40:fe:fa:e2:c1:79:9c:a7:6f:a8:f9: 04:89:1f:75:60:95:60:49:36:91:e2:ee:12:20:b7: 2d:7b:ec:11:cc:9e:f8:36:13:4f:f8:9c:d7:64:76: 5e:9a:2f:df:27:78:3c:4a:f9:5b:bb:c9:fe:88:f6: 7f:b7:f3:c5:85:a5:58:13:e5:68:2e:2f:ee:f1:a9: 80:7e:a1:ce:ae:e5:bf:b2:4c:17:22:6b:5b:72:fa: 58:bc:04:18:a0:2e:c3:3f:cf:2d:d1:55:60:d2:a5: e3:45:9f:02:ac:ae:69:df:30:38:1b:8e:0e:97:2d: ab:e6:2a:78:a9:59:45:99:54:27:43:8b:cb:81:17: c4:34:d5:82:8f:b5:39:4f:de:7c:54:4c:46:e8:fc: a0:9b:8d:fc:7d:c8:c7:b7:76:53:0f:b2:1b:a8:5b: 84:e1:89:84:50:2b:30:cd:d9:72:5a:85:11:f0:0b: c5:0c:50:48:20:63:e8:ca:17:14:1e:e9:59:b7:e3: 4c:48:74:7b:8a:b4:07:ff:90:67:a9:7a:8e:6b:ef: c0:25:88:12:2a:85:40:c0:4e:84:61:f6:f8:5f:61: d3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E5:67:C6:96:6C:66:CC:48:50:BB:84:4B:8D:B8:94:D0:3F:F5:EB X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:9f:bb:4a:9f:6f:13:c2:78:52:dd:02:c4:9e:9a:79:33:f9: f1:06:d5:25:24:ea:2f:f4:16:c0:c1:1e:29:25:18:c5:b8:dd: aa:f3:d5:f5:37:df:fc:4b:11:1c:9c:fc:16:28:1c:20:a3:be: eb:84:93:65:13:03:fd:8e:54:49:b4:50:07:da:56:4b:3e:ed: f5:2c:0b:b3:cd:89:49:4e:05:72:09:64:1a:6f:c8:1f:9f:b1: 7f:bd:11:9b:c3:6d:43:82:db:08:de:74:a5:72:e2:ec:2f:93: 97:3b:01:10:51:da:06:37:31:aa:39:23:15:e3:1a:ca:9d:32: 71:0c:b6:8d:cf:a1:4d:51:2d:5c:70:73:a0:ca:ac:05:c9:d3: 96:8a:d0:f6:f3:f1:6c:b6:6d:d1:a5:2c:8b:51:c5:9f:31:eb: 5a:81:f8:a8:46:a8:9b:f5:e7:0d:0f:d5:8a:93:dc:e4:60:8f: 9c:60:1f:87:7d:41:90:89:4d:29:b5:08:67:1a:19:f7:dd:87: 7e:9c:cb:05:90:c2:f6:6b:08:e1:95:c9:95:26:e9:e3:e0:50: 03:42:5a:4c:9f:71:74:17:81:2d:36:01:07:79:35:ba:9b:58: ad:94:5a:06:a5:d0:06:77:d1:b3:bb:13:c7:b6:08:ca:70:bf: 9d:36:70:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUwNDI0MjE0ODU4WhcNMjUwNTAxMjE0ODU4WjAYMRYwFAYD VQQDEw02ODBhYjFjYS04OTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusNb0Xe9O0+7EsP1acz9anLsIGDbKs8mywiw4AjxVCxSQP764sF5nKdvqPkE iR91YJVgSTaR4u4SILcte+wRzJ74NhNP+JzXZHZemi/fJ3g8Svlbu8n+iPZ/t/PF haVYE+VoLi/u8amAfqHOruW/skwXImtbcvpYvAQYoC7DP88t0VVg0qXjRZ8CrK5p 3zA4G44Oly2r5ip4qVlFmVQnQ4vLgRfENNWCj7U5T958VExG6Pygm438fcjHt3ZT D7IbqFuE4YmEUCswzdlyWoUR8AvFDFBIIGPoyhcUHulZt+NMSHR7irQH/5BnqXqO a+/AJYgSKoVAwE6EYfb4X2HTAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXlZ8aW bGbMSFC7hEuNuJTQP/XrMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPn7tKn28TwnhS3QLEnpp5M/nxBtUlJOov9BbAwR4pJRjFuN2q89X1 N9/8SxEcnPwWKBwgo77rhJNlEwP9jlRJtFAH2lZLPu31LAuzzYlJTgVyCWQab8gf n7F/vRGbw21DgtsI3nSlcuLsL5OXOwEQUdoGNzGqOSMV4xrKnTJxDLaNz6FNUS1c cHOgyqwFydOWitD28/Fstm3RpSyLUcWfMetagfioRqib9ecND9WKk9zkYI+cYB+H fUGQiU0ptQhnGhn33Yd+nMsFkML2awjhlcmVJunj4FADQlpMn3F0F4EtNgEHeTW6 m1itlFoGpdAGd9GzuxPHtgjKcL+dNnDo -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:37 2025 by rpki-client