$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: 5EGojwkcVIrqODaggkTQ+ZWTkvz608EEz7wyjzPJjIA= Subject key identifier: 80:E6:89:E3:6C:B3:E5:2C:51:A2:28:C4:5D:4B:EA:09:F1:39:32:34 Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: 0124 Signing time: Fri 25 Apr 2025 03:44:43 +0000 Manifest this update: Fri 25 Apr 2025 03:44:43 +0000 Manifest next update: Fri 02 May 2025 03:44:43 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: Vif8crEZzafxQjqGvYXf84EW4wbI90Ty1fbFdiA3SMk=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: g/Vp4JxPAnFvSE7br/vqo4Gmy4ZBC5/7hAk3ouH5N3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Apr 25 03:44:43 2025 GMT Not After : May 2 03:44:43 2025 GMT Subject: CN=680b052b-aa17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:97:46:e8:75:68:69:13:35:33:a5:85:c0:bc: c9:44:1d:c9:97:ce:e2:19:b2:e5:ff:36:9e:76:0b: b3:a0:8e:d5:de:69:48:ab:77:3f:44:d8:9c:a7:23: 74:a8:96:d3:e6:e4:4e:4c:42:0d:fb:78:04:f7:01: 62:da:6b:2a:cb:85:22:f5:34:f9:ef:5e:a6:8a:b6: ef:23:ca:4b:28:78:9f:d5:10:55:68:79:f6:5c:2d: 7e:ee:fe:1e:b7:1d:d2:07:df:62:12:be:86:c4:e0: 3d:d0:28:e4:bc:a1:de:b2:dd:e2:83:df:e0:26:bd: 8d:b1:31:d8:b7:48:1c:b8:24:77:a5:60:b9:22:62: ff:c5:d5:f5:5a:94:37:83:63:2c:2c:f6:f1:6f:08: af:a6:19:6b:76:4b:fc:1e:4e:98:eb:1c:ce:42:a4: 91:4f:1d:55:72:ae:3e:d9:2b:a2:0d:02:bd:f7:a1: a2:25:69:2f:16:6b:90:2f:14:6d:f3:9c:03:5c:3e: f4:cd:98:b3:70:7b:84:69:8a:ca:05:40:0f:4d:97: a4:aa:81:95:38:6b:43:b2:6d:4c:4b:bb:9f:0a:a4: 3a:8f:6c:c0:1e:3c:43:ed:36:82:7e:c8:a4:f8:95: b5:85:3e:c3:24:26:6c:d7:f2:9b:81:5b:d3:6f:29: 72:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E6:89:E3:6C:B3:E5:2C:51:A2:28:C4:5D:4B:EA:09:F1:39:32:34 X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:1d:ac:d9:55:2e:19:6e:ad:2e:2f:2e:4c:91:d1:4e:ab:65: de:85:78:1d:a9:c4:03:89:0b:b0:b8:90:5f:55:57:6b:ea:63: 6d:c7:66:5c:ad:08:44:fc:fb:13:84:92:69:07:dd:ac:df:8d: e4:f5:54:3d:d6:c7:58:6a:ae:20:ac:6d:a2:6e:a6:41:8d:db: 6f:bf:d9:85:00:7c:50:9b:9c:a9:fa:da:2f:f2:aa:31:70:10: 04:b5:f2:81:7f:0d:43:ff:dc:23:86:bb:ed:83:94:f8:87:70: 82:3d:8c:4e:e7:bf:99:82:51:9a:83:31:a1:11:08:c8:95:65: e4:7f:c4:85:38:fb:8c:63:be:0b:47:a6:55:a0:35:99:86:ef: 48:2f:28:a8:25:e8:5e:90:06:63:76:ab:0e:ff:27:df:f1:6a: ac:86:d0:57:fa:dc:f9:67:06:fb:28:b0:61:fc:ae:58:c0:37: cc:71:f9:ff:a8:13:ed:99:dd:2c:e4:47:58:44:c5:b1:32:32: f9:f9:c2:02:25:a9:56:08:d2:52:21:ee:f1:c8:9b:0c:6f:21: 41:b2:d3:94:f6:a8:ae:a2:91:fb:7a:d4:2d:fe:b2:a6:14:03: 81:63:81:69:72:48:fe:f4:f7:71:d9:12:04:d3:34:ca:13:a2: bd:88:03:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUwNDI1MDM0NDQzWhcNMjUwNTAyMDM0NDQzWjAYMRYwFAYD VQQDEw02ODBiMDUyYi1hYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5dG6HVoaRM1M6WFwLzJRB3Jl87iGbLl/zaedguzoI7V3mlIq3c/RNicpyN0 qJbT5uROTEIN+3gE9wFi2msqy4Ui9TT5716mirbvI8pLKHif1RBVaHn2XC1+7v4e tx3SB99iEr6GxOA90CjkvKHest3ig9/gJr2NsTHYt0gcuCR3pWC5ImL/xdX1WpQ3 g2MsLPbxbwivphlrdkv8Hk6Y6xzOQqSRTx1Vcq4+2SuiDQK996GiJWkvFmuQLxRt 85wDXD70zZizcHuEaYrKBUAPTZekqoGVOGtDsm1MS7ufCqQ6j2zAHjxD7TaCfsik +JW1hT7DJCZs1/KbgVvTbylyZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDmieNs s+UsUaIoxF1L6gnxOTI0MB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzHazZVS4Zbq0uLy5MkdFOq2XehXgdqcQDiQuwuJBfVVdr6mNtx2Zc rQhE/PsThJJpB92s343k9VQ91sdYaq4grG2ibqZBjdtvv9mFAHxQm5yp+tov8qox cBAEtfKBfw1D/9wjhrvtg5T4h3CCPYxO57+ZglGagzGhEQjIlWXkf8SFOPuMY74L R6ZVoDWZhu9ILyioJehekAZjdqsO/yff8WqshtBX+tz5Zwb7KLBh/K5YwDfMcfn/ qBPtmd0s5EdYRMWxMjL5+cICJalWCNJSIe7xyJsMbyFBstOU9qiuopH7etQt/rKm FAOBY4Fpckj+9Pdx2RIE0zTKE6K9iANi -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:04 2025 by rpki-client