$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: GUznCdshTnVe6/GMZm1WxF93dNi0VJAnfjGt47dFsh0= Subject key identifier: CE:3C:59:1C:34:C8:AE:79:98:C8:EA:C6:68:8B:C6:29:16:1F:34:90 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: 97 Signing time: Fri 25 Apr 2025 05:20:35 +0000 Manifest this update: Fri 25 Apr 2025 05:20:34 +0000 Manifest next update: Fri 02 May 2025 05:20:34 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: MezEJcGXL909oFOscmgxdVwdQnmcRaTRiFb7aTYfI2M=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: cLMsRe3bjQqt9KTlSv77ZsvirHU5HvmwxB64rB3nwQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Apr 25 05:20:34 2025 GMT Not After : May 2 05:20:34 2025 GMT Subject: CN=680b1ba2-5584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a4:3a:ef:99:da:9f:a0:79:83:62:e0:44:0a: 82:40:60:29:92:bd:67:66:10:cc:8e:7d:08:8d:6a: ff:75:5c:c1:09:28:de:2e:6c:f7:0b:2a:c7:80:43: 86:29:64:44:8c:0a:ad:0d:2c:f8:ec:f3:98:f5:7c: 87:f7:f4:2b:06:cf:11:0c:9e:9e:6f:96:f0:2a:93: 7c:f9:66:e5:9d:cb:62:7d:14:ae:af:8c:db:d2:0f: 5a:2f:13:c4:6a:5e:37:e4:7f:b7:57:b0:40:64:c8: d2:05:bf:5b:8a:bc:f6:55:e7:38:25:79:b8:12:b3: b9:5d:52:ba:21:e0:6b:82:b7:ba:aa:c4:f5:da:4e: cc:09:ae:bd:25:b2:51:26:52:d2:e1:47:04:db:7b: 0a:36:24:0b:ba:46:31:58:1e:87:26:47:19:b6:62: 59:c9:0d:13:d6:c9:79:86:4e:30:66:61:4b:12:0a: ed:dc:40:1e:16:54:59:21:11:98:03:15:73:af:98: e9:fd:01:6e:9d:3f:12:47:31:89:b5:fe:99:1e:f1: f1:be:07:f6:d7:c6:9b:20:b6:77:88:0e:d4:db:f7: 0c:93:80:fa:ec:c2:b0:2c:5e:b3:fc:bf:01:18:b9: ca:3d:e8:99:47:da:2c:83:56:b6:58:a3:c3:82:2e: f3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3C:59:1C:34:C8:AE:79:98:C8:EA:C6:68:8B:C6:29:16:1F:34:90 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:63:19:21:10:9e:42:4b:c6:e9:ff:a7:86:53:d7:bf:0e:48: 31:56:65:25:8b:5a:40:3f:fb:dd:2e:0f:ee:e8:da:5b:5c:ff: 71:6a:f3:4e:86:46:a6:d3:8c:29:8f:37:e7:b2:1b:3e:9c:a1: 43:a9:bf:67:fe:b3:6a:d8:5b:fb:0e:01:7b:cb:36:c2:52:c8: 79:b3:c0:b3:be:46:9f:66:03:2b:c7:a6:06:2c:00:20:7e:ff: 93:8f:5d:33:fe:40:97:ef:e4:33:ba:04:57:3f:30:57:fd:5f: f8:44:27:cb:02:8e:35:98:e2:2a:33:8c:93:44:86:84:66:ba: b7:b8:6f:5e:f6:9d:0b:6e:96:82:5e:bc:fe:5a:ce:2a:43:58: 91:17:af:cc:b9:89:71:99:6f:70:10:2b:f5:42:b1:64:23:65: 53:e3:4d:34:8e:1a:57:0a:cd:72:52:5c:e7:29:8b:c7:15:c7: e6:1d:3a:99:87:b0:db:45:b5:a9:a6:7e:dd:8c:4b:c9:13:92: 80:f3:d1:2d:c3:f4:41:58:fe:27:60:73:d7:2c:b8:82:11:b9: 8d:d2:31:44:67:53:b8:21:83:fb:6f:99:7f:56:19:d7:f4:fd: 9b:bb:64:03:e7:a1:69:8d:12:ba:49:e2:a3:59:b5:1a:5c:51: 77:7c:00:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUwNDI1MDUyMDM0WhcNMjUwNTAyMDUyMDM0WjAYMRYwFAYD VQQDEw02ODBiMWJhMi01NTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqQ675nan6B5g2LgRAqCQGApkr1nZhDMjn0IjWr/dVzBCSjeLmz3CyrHgEOG KWREjAqtDSz47POY9XyH9/QrBs8RDJ6eb5bwKpN8+WblnctifRSur4zb0g9aLxPE al435H+3V7BAZMjSBb9birz2Vec4JXm4ErO5XVK6IeBrgre6qsT12k7MCa69JbJR JlLS4UcE23sKNiQLukYxWB6HJkcZtmJZyQ0T1sl5hk4wZmFLEgrt3EAeFlRZIRGY AxVzr5jp/QFunT8SRzGJtf6ZHvHxvgf218abILZ3iA7U2/cMk4D67MKwLF6z/L8B GLnKPeiZR9osg1a2WKPDgi7z7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM48WRw0 yK55mMjqxmiLxikWHzSQMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAYxkhEJ5CS8bp/6eGU9e/DkgxVmUli1pAP/vdLg/u6NpbXP9xavNO hkam04wpjzfnshs+nKFDqb9n/rNq2Fv7DgF7yzbCUsh5s8CzvkafZgMrx6YGLAAg fv+Tj10z/kCX7+QzugRXPzBX/V/4RCfLAo41mOIqM4yTRIaEZrq3uG9e9p0LbpaC Xrz+Ws4qQ1iRF6/MuYlxmW9wECv1QrFkI2VT4000jhpXCs1yUlznKYvHFcfmHTqZ h7DbRbWppn7djEvJE5KA89Etw/RBWP4nYHPXLLiCEbmN0jFEZ1O4IYP7b5l/VhnX 9P2bu2QD56FpjRK6SeKjWbUaXFF3fABi -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:24 2025 by rpki-client