$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft File: 4j5WiDpuN63lIjxBOzs7D3gbySk.mft (raw, json) Hash identifier: Tux0GLgLnMihy5Epw0F66v8uueXwEOg05Qp/VwxnkKw= Subject key identifier: 77:A0:D6:E4:4B:FB:E1:81:E4:6B:50:73:0A:3A:6A:50:42:9B:CA:2E Authority key identifier: E2:3E:56:88:3A:6E:37:AD:E5:22:3C:41:3B:3B:3B:0F:78:1B:C9:29 Certificate issuer: /CN=A91DF645/serialNumber=E23E56883A6E37ADE5223C413B3B3B0F781BC929 Certificate serial: 1163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft Manifest number: 115A Signing time: Thu 24 Apr 2025 17:15:27 +0000 Manifest this update: Thu 24 Apr 2025 17:15:26 +0000 Manifest next update: Thu 01 May 2025 17:15:26 +0000 Files and hashes: 1: 4j5WiDpuN63lIjxBOzs7D3gbySk.crl (hash: uo8kGTezYVKpj88f0rkXsdkpIwo8jjbQ24z372Zf/Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.crl rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4451 (0x1163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF645, serialNumber=E23E56883A6E37ADE5223C413B3B3B0F781BC929 Validity Not Before: Apr 24 17:15:26 2025 GMT Not After : May 1 17:15:26 2025 GMT Subject: CN=680a71af-c866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:1a:5c:2c:94:d0:c5:00:ea:04:0c:22:07: 6d:ed:61:c9:21:89:0f:85:d5:8c:a1:db:73:ca:b6: 5a:0b:25:d3:40:b7:7b:68:72:71:44:52:d4:e3:7f: 92:0b:48:c8:37:f5:7c:bf:16:cc:3d:3e:ca:58:53: 93:0c:74:af:ad:65:bd:4d:a2:48:4a:e1:df:9b:a4: 4e:1c:06:a9:47:2e:03:79:79:c2:44:36:73:4f:d1: a3:d9:f0:64:19:39:37:09:3b:e8:dc:65:6f:a0:be: c4:1a:19:5b:32:8b:35:28:ec:fb:3f:c6:82:30:08: 14:d3:8f:16:b1:91:65:82:56:7f:0c:19:ca:43:23: 55:3c:5c:e6:1e:7f:40:de:8e:d8:5b:00:45:85:bc: 3d:22:7b:d7:32:a9:c6:83:25:cd:9f:2b:4f:38:d9: 4b:23:f8:87:74:9f:a1:4e:fb:48:c2:78:94:55:e0: cd:26:e9:47:cf:86:08:69:92:22:78:f2:9e:94:61: 09:e6:3d:46:ce:58:df:c9:82:ef:81:72:d7:a1:05: fa:21:42:f8:b5:ac:3e:01:b3:b7:b4:a0:19:63:06: 9c:aa:74:a0:69:9f:5a:84:43:ae:ed:99:ec:d5:87: 52:b2:ca:87:da:6f:2d:9e:1a:9a:b7:cf:df:84:d9: 8d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A0:D6:E4:4B:FB:E1:81:E4:6B:50:73:0A:3A:6A:50:42:9B:CA:2E X509v3 Authority Key Identifier: keyid:E2:3E:56:88:3A:6E:37:AD:E5:22:3C:41:3B:3B:3B:0F:78:1B:C9:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:14:e5:c7:50:47:66:1f:2d:65:49:31:33:f8:56:1d:a4:05: eb:f8:c2:0e:d7:e0:bd:8c:1d:cc:fb:69:25:cb:aa:0c:6f:86: 07:8e:c0:10:7c:25:7e:a2:e5:ab:72:c1:38:1a:8c:d0:56:9c: 74:b6:c9:0d:7e:fd:14:99:18:1a:43:17:fd:73:fc:15:19:ef: 55:e1:dd:34:de:2e:eb:c5:0f:e2:8a:11:c7:0a:ef:d7:d2:59: 40:15:50:32:09:dc:eb:5a:2f:94:c0:53:82:83:20:04:e4:b3: d8:89:d7:9b:43:37:71:f4:f9:c2:8b:d7:41:fc:eb:42:b7:46: ca:e5:0a:34:54:f2:ea:7c:42:3c:b8:a3:7a:33:43:54:63:da: 12:82:b7:5e:43:19:03:69:43:d5:bd:9a:9b:c6:96:a5:43:5c: 00:c3:56:66:2b:c1:69:0e:b1:d7:b2:ef:8d:e9:08:9f:42:0d: c0:45:4f:f0:84:2d:b2:df:f2:ae:42:34:84:7c:66:31:39:bb: 37:52:e7:d5:8f:ef:3a:35:8e:72:51:6a:86:1c:d5:f1:0d:89: 14:7b:42:f5:b6:37:c3:f7:34:cf:cd:21:05:e3:ac:6d:ee:0c: 71:24:80:10:93:82:dd:c9:f7:37:ff:4c:e8:f9:b7:72:64:da: 66:dd:61:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY2NDUxMTAvBgNVBAUTKEUyM0U1Njg4M0E2RTM3QURFNTIyM0M0MTNCM0IzQjBG NzgxQkM5MjkwHhcNMjUwNDI0MTcxNTI2WhcNMjUwNTAxMTcxNTI2WjAYMRYwFAYD VQQDEw02ODBhNzFhZi1jODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAMaXCyU0MUA6gQMIgdt7WHJIYkPhdWModtzyrZaCyXTQLd7aHJxRFLU43+S C0jIN/V8vxbMPT7KWFOTDHSvrWW9TaJISuHfm6ROHAapRy4DeXnCRDZzT9Gj2fBk GTk3CTvo3GVvoL7EGhlbMos1KOz7P8aCMAgU048WsZFlglZ/DBnKQyNVPFzmHn9A 3o7YWwBFhbw9InvXMqnGgyXNnytPONlLI/iHdJ+hTvtIwniUVeDNJulHz4YIaZIi ePKelGEJ5j1GzljfyYLvgXLXoQX6IUL4taw+AbO3tKAZYwacqnSgaZ9ahEOu7Zns 1YdSssqH2m8tnhqat8/fhNmNSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeg1uRL ++GB5GtQcwo6alBCm8ouMB8GA1UdIwQYMBaAFOI+Vog6bjet5SI8QTs7Ow94G8kp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjY0NS9BQjE2RTU1MjAx RjYxMUU5QUJCODg3MERDNEY5QUUwMi80ajVXaURwdU42M2xJanhCT3pzN0QzZ2J5 U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqNVdpRHB1TjYzbElqeEJPenM3RDNnYnlTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjY0NS9BQjE2RTU1MjAxRjYxMUU5QUJCODg3MERDNEY5QUUwMi80ajVXaURwdU42 M2xJanhCT3pzN0QzZ2J5U2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXFOXHUEdmHy1lSTEz+FYdpAXr+MIO1+C9jB3M+2kly6oMb4YHjsAQ fCV+ouWrcsE4GozQVpx0tskNfv0UmRgaQxf9c/wVGe9V4d003i7rxQ/iihHHCu/X 0llAFVAyCdzrWi+UwFOCgyAE5LPYidebQzdx9PnCi9dB/OtCt0bK5Qo0VPLqfEI8 uKN6M0NUY9oSgrdeQxkDaUPVvZqbxpalQ1wAw1ZmK8FpDrHXsu+N6QifQg3ARU/w hC2y3/KuQjSEfGYxObs3UufVj+86NY5yUWqGHNXxDYkUe0L1tjfD9zTPzSEF46xt 7gxxJIAQk4Ldyfc3/0zo+bdyZNpm3WFs -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:31 2025 by rpki-client