$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft File: cFWB1AyVgaJlHlMlI42zvcs6fQU.mft (raw, json) Hash identifier: bvSIVm54oyUDzUfBUMDoIU2sJ10wT37xAzygclMsQ9w= Subject key identifier: 05:D8:D8:3F:04:3F:84:72:0C:83:F5:F6:25:1E:8D:BE:B2:5A:A6:AE Authority key identifier: 70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 Certificate issuer: /CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Certificate serial: 038B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft Manifest number: 0382 Signing time: Fri 25 Apr 2025 00:39:51 +0000 Manifest this update: Fri 25 Apr 2025 00:39:50 +0000 Manifest next update: Fri 02 May 2025 00:39:50 +0000 Files and hashes: 1: cFWB1AyVgaJlHlMlI42zvcs6fQU.crl (hash: ybGJ/zG7zRnVmMgqtbnbAF+250vJTab1TFe/SDkQsug=) 2: 6CDC639EA04411EC8A7E5E2CC4F9AE02.roa (hash: WktAZLAHSw7QkU+hNH84sEG4OXo+/tq5XSlAqKGLv18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 907 (0x38b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D91, serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Validity Not Before: Apr 25 00:39:50 2025 GMT Not After : May 2 00:39:50 2025 GMT Subject: CN=680ad9d7-7c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:a7:55:b9:81:50:5b:fb:c4:12:bf:80:6a: fb:96:51:ec:64:25:3b:a2:89:32:10:b1:fa:31:8c: 9a:ac:df:af:69:c4:91:f0:9d:9d:63:47:c9:f7:5e: 24:15:8a:ae:d6:96:96:b0:1c:41:3b:23:84:64:59: d5:4d:25:b1:cb:0e:b8:b3:44:cc:b6:98:be:be:cd: 0b:73:a1:a7:de:95:94:95:77:0f:0a:f3:eb:8f:f6: 5b:4b:f4:42:46:23:2e:e0:47:95:b9:03:5b:3e:85: 8d:88:6d:a9:75:df:38:b1:75:6d:e1:9a:3b:15:62: da:dd:dd:21:39:d3:74:85:6a:ff:02:c1:7b:a0:e1: 97:39:32:dd:39:d4:a3:58:5f:47:1e:68:ba:ad:e9: 57:7b:cc:b2:6c:7f:e7:0b:ff:55:fa:d3:fb:a8:50: 67:7a:2c:01:54:57:34:53:5f:ef:97:41:c7:b5:6d: 8c:1f:8c:84:ff:80:4b:7f:0a:a9:a5:db:68:42:8f: bc:70:ff:31:81:fa:30:7f:b8:34:c9:66:c0:a7:7f: fe:af:2d:df:d7:73:0e:d1:eb:9c:a9:59:65:c7:87: 65:bd:3e:8c:b3:41:a2:e6:9e:2b:bc:48:09:ea:86: 74:fb:aa:f9:05:14:4b:1a:48:02:ef:7f:12:55:dc: c8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D8:D8:3F:04:3F:84:72:0C:83:F5:F6:25:1E:8D:BE:B2:5A:A6:AE X509v3 Authority Key Identifier: keyid:70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:f4:c8:8b:94:04:3b:bd:d8:88:99:05:70:34:8a:fe:75:ba: 83:88:8d:82:aa:06:d8:f9:06:f9:d6:c7:23:72:cf:bf:a4:ca: 7a:ec:89:1d:1b:43:fa:54:9f:07:9a:a1:70:5b:54:b2:d3:8d: dd:b9:55:fd:a3:46:af:63:0f:c5:86:bd:ed:0c:62:59:16:9c: bc:43:83:b0:d5:8d:60:d4:8a:93:d7:02:cb:a5:a1:fd:ab:bc: 87:c2:7d:c5:16:61:f2:8c:5b:b2:45:48:a5:5d:d0:0a:97:7d: db:64:e5:05:fa:0e:74:e5:66:ed:60:f6:02:cb:f9:27:48:ec: ac:fd:05:9b:14:26:99:b6:f3:6a:4f:bd:a3:93:42:86:df:c2: f0:86:1c:30:65:f2:21:88:80:5f:1f:19:bb:5c:fb:49:63:a8: ae:79:bc:f0:28:ee:ec:4f:ed:4c:18:ad:a8:06:c1:bb:fc:30: 6e:a2:d4:2a:b3:a3:a2:e3:c1:fe:da:4e:08:7f:44:60:ce:0d: 31:ae:91:62:bc:33:7a:d6:02:20:71:a3:4b:86:65:8c:92:62: 49:60:e1:6d:0d:f7:3e:bc:10:50:1c:a5:16:dd:2c:52:63:f6: d1:c5:19:6e:cd:98:84:88:e6:0e:07:34:10:38:63:69:e4:de: 2f:10:eb:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFEOTExMTAvBgNVBAUTKDcwNTU4MUQ0MEM5NTgxQTI2NTFFNTMyNTIzOERCM0JE Q0IzQTdEMDUwHhcNMjUwNDI1MDAzOTUwWhcNMjUwNTAyMDAzOTUwWjAYMRYwFAYD VQQDEw02ODBhZDlkNy03YzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSSnVbmBUFv7xBK/gGr7llHsZCU7ookyELH6MYyarN+vacSR8J2dY0fJ914k FYqu1paWsBxBOyOEZFnVTSWxyw64s0TMtpi+vs0Lc6Gn3pWUlXcPCvPrj/ZbS/RC RiMu4EeVuQNbPoWNiG2pdd84sXVt4Zo7FWLa3d0hOdN0hWr/AsF7oOGXOTLdOdSj WF9HHmi6relXe8yybH/nC/9V+tP7qFBneiwBVFc0U1/vl0HHtW2MH4yE/4BLfwqp pdtoQo+8cP8xgfowf7g0yWbAp3/+ry3f13MO0eucqVllx4dlvT6Ms0Gi5p4rvEgJ 6oZ0+6r5BRRLGkgC738SVdzIMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXY2D8E P4RyDIP19iUejb6yWqauMB8GA1UdIwQYMBaAFHBVgdQMlYGiZR5TJSONs73LOn0F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ5MS81RDhDMTcxMkEw NDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5VmdhSmxIbE1sSTQyenZjczZm UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGV0IxQXlWZ2FKbEhsTWxJNDJ6dmNzNmZRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ5MS81RDhDMTcxMkEwNDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5Vmdh SmxIbE1sSTQyenZjczZmUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT9MiLlAQ7vdiImQVwNIr+dbqDiI2CqgbY+Qb51scjcs+/pMp67Ikd G0P6VJ8HmqFwW1Sy043duVX9o0avYw/Fhr3tDGJZFpy8Q4Ow1Y1g1IqT1wLLpaH9 q7yHwn3FFmHyjFuyRUilXdAKl33bZOUF+g505WbtYPYCy/knSOys/QWbFCaZtvNq T72jk0KG38LwhhwwZfIhiIBfHxm7XPtJY6iuebzwKO7sT+1MGK2oBsG7/DBuotQq s6Oi48H+2k4If0Rgzg0xrpFivDN61gIgcaNLhmWMkmJJYOFtDfc+vBBQHKUW3SxS Y/bRxRluzZiEiOYOBzQQOGNp5N4vEOub -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:55 2025 by rpki-client