$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft File: Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft (raw, json) Hash identifier: BN/FlxgwYOsZxFivPp29muCDuIQWzoT6jO95rs/S1mk= Subject key identifier: 9F:16:01:3D:03:77:E3:32:43:CE:FD:64:E5:63:1D:4B:E9:1D:8D:31 Authority key identifier: 06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E Certificate issuer: /CN=A91E1CB1/serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft Manifest number: 26 Signing time: Fri 25 Apr 2025 06:45:51 +0000 Manifest this update: Fri 25 Apr 2025 06:45:51 +0000 Manifest next update: Fri 02 May 2025 06:45:51 +0000 Files and hashes: 1: Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl (hash: 4VBU5a4oeDGoq8/NSZVEt5huEUhmy1MabvSL5jSM/L8=) 2: 8291E388EA0811EFB385192AC4F9AE02.roa (hash: XpmAeXpdeuf94znt4qbum8GMVNKKeabDl6UX2Jbwn48=) 3: 8322D244EA0811EFB385192AC4F9AE02.roa (hash: +QMIG68CS6n8ZD6zVSU18xTMohd0BVQ46zSHjpuk0xY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1CB1, serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Validity Not Before: Apr 25 06:45:51 2025 GMT Not After : May 2 06:45:51 2025 GMT Subject: CN=680b2f9f-2e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:77:ac:53:9b:e7:76:bf:be:d9:48:5d:6f:ab: b5:e5:74:6a:27:be:c9:a1:84:00:06:30:ce:89:82: 18:54:a6:81:5c:79:5d:fa:34:dc:86:6a:34:7c:25: 0a:fa:ab:b8:be:b5:9b:27:2f:d4:64:5c:ca:0f:a7: 51:39:d7:47:b2:bb:27:fb:f0:43:1f:ec:ff:97:56: 30:fe:af:ff:29:bf:5c:4e:3a:f7:6c:69:9b:e3:10: 1a:d0:e5:7e:64:9d:c0:d4:36:c2:48:33:9a:45:3d: 23:c9:e0:ae:22:a8:43:cc:af:f1:01:05:45:a4:58: ff:f2:12:fd:03:42:5e:e6:16:a9:18:2d:6b:7f:43: 20:4e:a6:2d:74:9f:00:c6:1c:01:20:e2:ca:d6:a5: 58:91:20:04:26:c6:6e:2f:9f:d5:13:3e:86:e8:81: ac:d2:e8:5a:d2:e3:f5:83:3c:16:31:84:4b:09:a5: b5:34:52:d6:35:d2:3b:85:2c:35:43:ed:d3:6d:2f: 84:76:6d:7c:2e:1f:89:21:88:83:60:0f:60:2f:ab: d2:f7:b1:e6:0a:b9:f5:da:ff:f4:f7:ac:e8:73:36: 5c:ac:98:de:d2:c8:dd:2d:d4:1f:16:f6:81:66:29: 73:f4:a7:fe:85:f9:3c:e2:28:97:14:5d:40:e4:d9: e2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:16:01:3D:03:77:E3:32:43:CE:FD:64:E5:63:1D:4B:E9:1D:8D:31 X509v3 Authority Key Identifier: keyid:06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:3d:61:c9:ec:9c:20:75:85:8b:fe:be:12:6a:a3:51:9d:f4: a2:c3:f6:fa:93:cf:5f:36:05:18:e9:37:de:7f:b6:9f:f7:fc: c7:d8:64:f1:bd:e2:91:9c:84:fc:6d:a4:7e:c1:31:16:03:e3: b8:26:03:b2:9d:73:ef:17:4a:ca:7f:59:16:b1:a2:c1:8a:87: 66:c1:8a:92:0d:76:59:c5:02:a5:5f:ad:fd:83:cc:c8:75:3d: d1:e7:0d:fe:37:cd:11:0b:cb:9e:b7:38:ed:d9:2e:45:f3:6e: 2a:1b:40:c5:9b:e0:4a:c1:0a:dc:54:55:ee:5f:b0:d1:16:4f: f5:af:d2:a4:f6:aa:c3:91:99:5a:48:4c:09:ac:21:2d:de:0f: 6f:2d:e6:e7:d4:e7:f5:37:29:aa:db:91:dd:12:7c:82:65:4c: 2e:e8:b5:9e:26:cb:0b:e0:e7:56:58:c1:60:0a:16:d8:75:b0: f7:49:f0:ae:ae:b8:88:5e:7d:9b:30:95:ad:90:f6:29:93:68: b4:64:ad:9a:37:25:39:4b:99:df:96:9c:a1:23:97:0c:a9:68: 28:60:72:01:41:a7:36:63:00:12:8c:89:5b:95:b9:ef:7c:a9: 87:f2:09:0a:f7:f2:c9:32:33:2f:0c:24:c0:9d:10:a8:f9:d6: bd:0e:c1:21 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUNCMTExMC8GA1UEBRMoMDYzRTAxMjc0NzJBN0UyQTZGODQ3MDQwOUM5QjgyMzkw NUZBRkU4RTAeFw0yNTA0MjUwNjQ1NTFaFw0yNTA1MDIwNjQ1NTFaMBgxFjAUBgNV BAMTDTY4MGIyZjlmLTJlMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfd6xTm+d2v77ZSF1vq7XldGonvsmhhAAGMM6JghhUpoFceV36NNyGajR8JQr6 q7i+tZsnL9RkXMoPp1E510eyuyf78EMf7P+XVjD+r/8pv1xOOvdsaZvjEBrQ5X5k ncDUNsJIM5pFPSPJ4K4iqEPMr/EBBUWkWP/yEv0DQl7mFqkYLWt/QyBOpi10nwDG HAEg4srWpViRIAQmxm4vn9UTPobogazS6FrS4/WDPBYxhEsJpbU0UtY10juFLDVD 7dNtL4R2bXwuH4khiINgD2Avq9L3seYKufXa//T3rOhzNlysmN7SyN0t1B8W9oFm KXP0p/6F+TziKJcUXUDk2eJxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnxYBPQN3 4zJDzv1k5WMdS+kdjTEwHwYDVR0jBBgwFoAUBj4BJ0cqfipvhHBAnJuCOQX6/o4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQ0IxLzNGNEE1QTJFRUEw ODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlwdmhIQkFuSnVDT1FYNl9v NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQmo0QkowY3FmaXB2aEhCQW5KdUNPUVg2X280LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Q0IxLzNGNEE1QTJFRUEwODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlw dmhIQkFuSnVDT1FYNl9vNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE49YcnsnCB1hYv+vhJqo1Gd9KLD9vqTz182BRjpN95/tp/3/MfYZPG9 4pGchPxtpH7BMRYD47gmA7Kdc+8XSsp/WRaxosGKh2bBipINdlnFAqVfrf2DzMh1 PdHnDf43zRELy563OO3ZLkXzbiobQMWb4ErBCtxUVe5fsNEWT/Wv0qT2qsORmVpI TAmsIS3eD28t5ufU5/U3Karbkd0SfIJlTC7otZ4mywvg51ZYwWAKFth1sPdJ8K6u uIhefZswla2Q9imTaLRkrZo3JTlLmd+WnKEjlwypaChgcgFBpzZjABKMiVuVue98 qYfyCQr38skyMy8MJMCdEKj51r0OwSE= -----END CERTIFICATE-----Generated at Sat Apr 26 18:17:52 2025 by rpki-client