$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: E+7dzYFN/LgoOTlfAa70DY1c0b2brycgURc8BfgYhDA= Subject key identifier: F6:71:EE:45:97:2F:13:34:98:AF:1D:16:ED:5F:A5:9B:14:D1:5F:9A Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0AC7 Signing time: Thu 24 Apr 2025 19:20:59 +0000 Manifest this update: Thu 24 Apr 2025 19:20:58 +0000 Manifest next update: Thu 01 May 2025 19:20:58 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: 8nMRZDp2muopBvXGvTYx1Yr1nxHY5yN8trGKMjHF6fA=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Apr 24 19:20:58 2025 GMT Not After : May 1 19:20:58 2025 GMT Subject: CN=680a8f1a-e2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:98:36:b1:0b:4c:2f:26:2d:58:6f:76:17:19: 4f:37:84:ef:17:09:29:03:5d:12:0a:d7:68:a7:de: 94:0e:f3:d3:bd:03:b0:03:31:45:df:14:85:d5:25: 66:bf:24:1c:e0:ae:4b:72:2a:7f:71:c7:b7:e2:d1: ae:a5:6d:9e:4b:53:9c:c2:8e:c4:25:d9:14:9e:d8: 4c:87:a1:bf:01:c2:0a:71:f2:31:e6:dd:91:e5:b0: 9d:e4:28:6e:af:9c:8c:32:f7:20:03:50:69:33:78: ed:d8:e7:2b:92:f3:60:f7:1f:0b:ae:2c:7b:88:fa: 91:35:db:2c:89:3f:b2:ab:d5:fd:e4:d2:4a:61:86: d1:5e:c6:72:36:19:46:81:3b:cd:18:a1:9c:cb:38: 18:f8:e6:cf:65:65:90:fa:56:9c:75:70:44:4a:d3: c5:7f:7f:18:3e:f2:00:c2:ca:30:80:61:0c:f9:55: b9:42:20:80:82:83:5f:93:3e:ee:0a:89:e9:b1:52: db:5d:25:22:d7:a1:17:40:c2:a3:8a:6b:97:e8:e8: de:ca:f3:b5:95:cc:93:9c:e0:d0:04:17:7e:ce:a6: 26:c5:a7:d3:48:15:f5:ec:64:5c:81:c3:84:40:e9: a1:92:d9:a2:c1:5c:d7:86:bb:81:bf:fe:7c:6c:56: 61:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:71:EE:45:97:2F:13:34:98:AF:1D:16:ED:5F:A5:9B:14:D1:5F:9A X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e4:81:ea:90:c6:05:86:e8:db:ec:3f:75:a8:cf:b9:a4:20: db:5a:2c:72:b2:42:5c:13:d7:41:d4:d2:7d:e3:9b:34:3c:16: 00:27:c3:a2:61:31:b7:d0:59:13:df:a7:e7:d6:a5:9a:5f:7f: dc:fb:ef:d3:dc:11:db:d1:f8:42:8b:22:82:4f:02:56:95:05: 4c:70:b8:ca:71:1f:57:d1:d4:23:07:36:ef:28:fa:3b:5b:cd: 3c:ac:85:46:3f:62:5f:1f:11:29:26:94:74:a2:0e:de:e1:27: aa:66:71:3d:d3:00:37:a9:cc:29:fc:a6:ff:5a:c7:0a:dc:d2: bb:2b:d9:b2:a3:b3:2f:2e:bc:7a:25:7d:bb:e8:28:b1:8d:41: c1:b6:5b:30:ab:81:fb:21:67:80:dd:1b:3c:e6:ec:b0:71:7b: 13:35:a4:21:c0:74:d2:46:ed:e7:91:b2:a9:56:96:10:7c:83: c1:f1:2d:37:f3:18:0c:fe:11:d1:46:22:d7:a2:3d:53:7e:d7: 8b:a6:eb:f4:7e:ee:a5:5d:25:30:ba:6e:93:b0:ea:e8:21:e9: a3:4d:85:1c:c0:f5:77:d8:7c:af:e2:19:d4:73:92:67:89:fa: b8:bb:c5:bb:4c:2d:73:a8:55:6c:27:fe:f5:04:a5:eb:3a:7a: 3d:90:20:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwNDI0MTkyMDU4WhcNMjUwNTAxMTkyMDU4WjAYMRYwFAYD VQQDEw02ODBhOGYxYS1lMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Jg2sQtMLyYtWG92FxlPN4TvFwkpA10SCtdop96UDvPTvQOwAzFF3xSF1SVm vyQc4K5Lcip/cce34tGupW2eS1Ocwo7EJdkUnthMh6G/AcIKcfIx5t2R5bCd5Chu r5yMMvcgA1BpM3jt2OcrkvNg9x8Lrix7iPqRNdssiT+yq9X95NJKYYbRXsZyNhlG gTvNGKGcyzgY+ObPZWWQ+lacdXBEStPFf38YPvIAwsowgGEM+VW5QiCAgoNfkz7u ConpsVLbXSUi16EXQMKjimuX6OjeyvO1lcyTnODQBBd+zqYmxafTSBX17GRcgcOE QOmhktmiwVzXhruBv/58bFZh5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZx7kWX LxM0mK8dFu1fpZsU0V+aMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC65IHqkMYFhujb7D91qM+5pCDbWixyskJcE9dB1NJ945s0PBYAJ8Oi YTG30FkT36fn1qWaX3/c++/T3BHb0fhCiyKCTwJWlQVMcLjKcR9X0dQjBzbvKPo7 W808rIVGP2JfHxEpJpR0og7e4SeqZnE90wA3qcwp/Kb/WscK3NK7K9myo7MvLrx6 JX276CixjUHBtlswq4H7IWeA3Rs85uywcXsTNaQhwHTSRu3nkbKpVpYQfIPB8S03 8xgM/hHRRiLXoj1TfteLpuv0fu6lXSUwum6TsOroIemjTYUcwPV32Hyv4hnUc5Jn ifq4u8W7TC1zqFVsJ/71BKXrOno9kCDZ -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:29 2025 by rpki-client