$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: CdsPbFgoOyciF5gQXrZK68uX5FA7A/83BAtQiSsdOZQ= Subject key identifier: 78:A4:CE:8A:8D:33:1F:7D:88:FC:BB:5D:BE:7E:BB:28:EA:C5:19:2A Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 03F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 03EC Signing time: Fri 25 Apr 2025 00:18:45 +0000 Manifest this update: Fri 25 Apr 2025 00:18:45 +0000 Manifest next update: Fri 02 May 2025 00:18:45 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: EmESBm1tai3Mhfm2eAvkNBHTS755sHgQLLHHKvwWwrQ=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: XTRPclMfvdnJMr1KTikHBQwB3BO5rbfhjMhUNaY3s7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD, serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: Apr 25 00:18:45 2025 GMT Not After : May 2 00:18:45 2025 GMT Subject: CN=680ad4e5-bae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7c:ca:39:33:77:38:b1:24:93:ab:64:a0:4d: 20:47:51:2b:67:43:8d:0e:35:a4:91:71:bc:7b:7a: 9d:c9:6d:72:15:0f:28:b3:67:61:9a:5b:d4:86:a4: 45:f2:b0:8a:d7:ba:23:43:aa:f3:68:34:dc:9c:cc: 05:63:2d:b9:33:d2:05:b0:b4:9c:ab:3a:b5:65:16: 5c:55:48:ac:6c:ed:65:b0:23:72:76:e8:78:c3:c9: a2:b6:8b:27:56:cd:e6:43:ed:44:ab:8e:d0:67:50: 81:ac:71:a3:1d:d0:3f:4e:4a:a3:f2:57:f6:5f:6a: 87:32:26:98:c8:f1:4d:6b:9d:8c:0e:cc:07:08:92: 6d:39:a4:79:83:b9:9e:5e:f4:b4:e6:a6:9e:39:36: 40:d6:af:40:d8:62:6a:a3:83:e8:c5:d1:a7:a1:c1: 9d:70:a5:c3:80:a3:e4:b0:65:31:fb:66:43:41:a5: 0a:9a:47:fc:c7:f2:bc:76:71:7f:27:da:bf:ed:a0: b6:db:5e:63:86:1d:77:6c:12:7a:6d:b2:cb:95:a5: 18:f4:db:83:e7:b1:22:c4:ed:55:e2:b3:05:6a:09: e3:21:c7:cb:f7:fe:48:f7:10:42:ad:c7:8a:5e:b8: 3d:a7:32:c3:d6:2c:02:e1:e4:06:66:71:b1:89:cb: 64:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A4:CE:8A:8D:33:1F:7D:88:FC:BB:5D:BE:7E:BB:28:EA:C5:19:2A X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d8:a5:7a:f8:b8:de:b3:a8:03:ed:99:9f:03:6d:62:3b:13: 9c:2d:a7:52:86:dc:3b:30:ec:00:62:8c:f0:f6:33:9c:8d:51: 9d:9b:41:13:2b:7a:ee:f7:36:c6:f1:32:26:10:07:b8:45:7b: 08:bc:79:15:c2:63:45:05:e1:bf:b7:64:5e:e6:32:08:a9:87: f9:f1:5c:a2:92:d2:f9:d2:1a:f6:35:b5:ce:34:0a:46:38:08: 68:e1:d5:33:a0:60:b8:39:ef:c1:51:ab:76:7b:77:38:10:1f: 8b:fc:f2:15:f4:e4:13:80:86:dd:e9:5e:e3:32:da:0d:3a:88: 1c:a4:ab:08:43:9e:1b:31:25:c7:eb:ff:32:a4:49:77:81:78: f5:dc:d5:79:aa:f6:de:72:24:ef:7f:4d:5a:ba:4c:e5:db:12: 88:74:23:fa:6d:81:ec:1a:41:bd:62:7b:e9:e3:9a:53:7c:11: 5d:d5:d9:9d:ad:6d:e0:06:de:7a:db:23:21:14:c6:8d:b3:6b: 95:d9:d3:52:3d:fb:f7:35:62:4c:8d:bd:15:24:d0:c3:d0:5e: 8b:e4:44:08:99:1e:bd:ae:d2:6a:8e:d0:92:41:10:3f:74:6c: 6c:1b:63:5b:91:96:d0:ad:1d:0b:7b:79:22:05:db:ce:4d:26: c9:05:de:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjUwNDI1MDAxODQ1WhcNMjUwNTAyMDAxODQ1WjAYMRYwFAYD VQQDEw02ODBhZDRlNS1iYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3zKOTN3OLEkk6tkoE0gR1ErZ0ONDjWkkXG8e3qdyW1yFQ8os2dhmlvUhqRF 8rCK17ojQ6rzaDTcnMwFYy25M9IFsLScqzq1ZRZcVUisbO1lsCNyduh4w8mitosn Vs3mQ+1Eq47QZ1CBrHGjHdA/Tkqj8lf2X2qHMiaYyPFNa52MDswHCJJtOaR5g7me XvS05qaeOTZA1q9A2GJqo4PoxdGnocGdcKXDgKPksGUx+2ZDQaUKmkf8x/K8dnF/ J9q/7aC2215jhh13bBJ6bbLLlaUY9NuD57EixO1V4rMFagnjIcfL9/5I9xBCrceK Xrg9pzLD1iwC4eQGZnGxictknQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHikzoqN Mx99iPy7Xb5+uyjqxRkqMB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn2KV6+Ljes6gD7ZmfA21iOxOcLadShtw7MOwAYozw9jOcjVGdm0ET K3ru9zbG8TImEAe4RXsIvHkVwmNFBeG/t2Re5jIIqYf58VyiktL50hr2NbXONApG OAho4dUzoGC4Oe/BUat2e3c4EB+L/PIV9OQTgIbd6V7jMtoNOogcpKsIQ54bMSXH 6/8ypEl3gXj13NV5qvbeciTvf01aukzl2xKIdCP6bYHsGkG9Ynvp45pTfBFd1dmd rW3gBt562yMhFMaNs2uV2dNSPfv3NWJMjb0VJNDD0F6L5EQImR69rtJqjtCSQRA/ dGxsG2NbkZbQrR0Le3kiBdvOTSbJBd5J -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:06 2025 by rpki-client