$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft File: pIqTm2fbIrr3fgB7Id87dFtig5A.mft (raw, json) Hash identifier: T4OU2pxpc4vV+Ta3cY36/97i60lQ5pJjR04h6nJN/b0= Subject key identifier: 77:66:CA:DB:86:FE:8F:F6:F2:55:D4:7E:39:8C:18:71:39:F4:64:1C Authority key identifier: A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 Certificate issuer: /CN=A91E1ED2/serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft Manifest number: 064D Signing time: Thu 24 Apr 2025 22:18:07 +0000 Manifest this update: Thu 24 Apr 2025 22:18:07 +0000 Manifest next update: Thu 01 May 2025 22:18:07 +0000 Files and hashes: 1: pIqTm2fbIrr3fgB7Id87dFtig5A.crl (hash: QK0IedMtV0tlEEDihf3EJQgS5dw6scWklaTZds46/Zs=) 2: A3AA461082BE11EB93A19A35C4F9AE02.roa (hash: giAuMNdUQbQxU3qFD/XGoGW0oQf3mtKr16RicuaHSew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1ED2, serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Validity Not Before: Apr 24 22:18:07 2025 GMT Not After : May 1 22:18:07 2025 GMT Subject: CN=680ab89f-fd1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:3e:fe:1e:07:c4:81:0a:57:16:b9:5f:fe:e8: cb:66:6c:06:5a:1b:45:95:de:95:7c:5e:65:1e:91: da:f2:27:82:05:d6:3d:fb:6b:fb:d6:00:3a:d1:1a: 06:0a:bd:84:4c:54:61:9e:43:47:34:bb:42:f0:84: 91:1b:52:f8:75:98:ed:f3:29:4b:b4:b6:0d:1b:7e: ab:e3:6a:34:83:3b:28:c5:d9:9a:21:ce:00:19:95: e2:53:c0:69:41:d3:2e:fd:14:48:95:2f:1d:0e:02: 70:d3:62:83:c8:99:c1:e7:d2:05:33:c2:7b:4b:b7: ed:b6:fd:18:39:e4:ce:a2:6c:12:b3:f2:70:1d:23: 59:bc:c3:84:28:b7:39:31:2f:ee:a3:87:7e:32:51: 58:7c:b2:53:2d:b4:0d:44:59:8b:92:1e:85:17:99: 4f:48:0d:04:95:c0:4d:96:a8:b2:e6:57:18:78:04: 0a:e5:92:2d:60:ca:45:87:bc:15:9c:1f:62:4d:7e: 26:1c:c4:77:b7:e7:cf:46:34:f0:46:f1:24:13:71: cd:2b:97:64:c4:18:91:00:0e:59:ec:93:8a:08:e4: 26:9d:2e:8d:7c:51:43:61:72:4c:9e:a5:93:15:cc: 52:df:a4:47:f1:81:fc:67:d3:c4:7b:35:21:69:1c: e1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:66:CA:DB:86:FE:8F:F6:F2:55:D4:7E:39:8C:18:71:39:F4:64:1C X509v3 Authority Key Identifier: keyid:A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:24:f6:08:fe:24:45:0b:14:e5:3e:bc:e6:a9:bd:b4:d9:98: 12:de:41:30:50:05:ee:df:35:d6:1a:71:36:31:5b:a5:e3:eb: fd:bd:bd:c7:ca:25:3f:24:8e:ce:62:89:36:ea:7b:04:a6:4b: f9:78:e9:0d:ef:fb:31:ae:de:ca:04:74:9e:14:36:d7:35:f0: c4:c5:65:66:0f:ee:39:45:d2:9a:14:94:fe:e2:bd:b2:db:57: d0:d0:65:d8:1a:b7:bb:31:dc:a5:72:db:45:91:47:71:18:c1: 2e:b6:9e:74:d7:10:ec:09:9a:be:16:af:bb:f0:ec:f2:fc:19: f0:c8:94:68:ca:8a:e9:d1:e0:de:ac:64:16:a3:34:94:ef:e9: 63:dd:8e:5f:7a:e2:5e:b5:97:3b:59:70:95:a2:00:e4:91:fb: 1d:ce:95:29:69:f9:26:6c:82:ab:e1:92:2b:86:58:f5:52:1f: 11:8f:b8:cb:79:ee:2a:de:b9:13:74:b1:3e:31:25:80:86:18: ae:b9:d6:6c:e3:dd:09:da:d6:14:c7:53:8b:1d:a5:f9:5b:06: 89:f2:52:51:6e:a9:61:fd:b4:50:cc:4e:1c:3f:89:cf:41:36: c4:65:82:42:65:4d:80:30:d6:60:a8:4f:a6:ed:72:e2:b7:b6: d4:e7:f4:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFFRDIxMTAvBgNVBAUTKEE0OEE5MzlCNjdEQjIyQkFGNzdFMDA3QjIxREYzQjc0 NUI2MjgzOTAwHhcNMjUwNDI0MjIxODA3WhcNMjUwNTAxMjIxODA3WjAYMRYwFAYD VQQDEw02ODBhYjg5Zi1mZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5z7+HgfEgQpXFrlf/ujLZmwGWhtFld6VfF5lHpHa8ieCBdY9+2v71gA60RoG Cr2ETFRhnkNHNLtC8ISRG1L4dZjt8ylLtLYNG36r42o0gzsoxdmaIc4AGZXiU8Bp QdMu/RRIlS8dDgJw02KDyJnB59IFM8J7S7fttv0YOeTOomwSs/JwHSNZvMOEKLc5 MS/uo4d+MlFYfLJTLbQNRFmLkh6FF5lPSA0ElcBNlqiy5lcYeAQK5ZItYMpFh7wV nB9iTX4mHMR3t+fPRjTwRvEkE3HNK5dkxBiRAA5Z7JOKCOQmnS6NfFFDYXJMnqWT FcxS36RH8YH8Z9PEezUhaRzheQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdmytuG /o/28lXUfjmMGHE59GQcMB8GA1UdIwQYMBaAFKSKk5tn2yK6934AeyHfO3RbYoOQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUVEMi8zRkU4REU2Qzgy QkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYklycjNmZ0I3SWQ4N2RGdGln NUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BJcVRtMmZiSXJyM2ZnQjdJZDg3ZEZ0aWc1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUVEMi8zRkU4REU2QzgyQkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYkly cjNmZ0I3SWQ4N2RGdGlnNUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0JPYI/iRFCxTlPrzmqb202ZgS3kEwUAXu3zXWGnE2MVul4+v9vb3H yiU/JI7OYok26nsEpkv5eOkN7/sxrt7KBHSeFDbXNfDExWVmD+45RdKaFJT+4r2y 21fQ0GXYGre7MdylcttFkUdxGMEutp501xDsCZq+Fq+78Ozy/BnwyJRoyorp0eDe rGQWozSU7+lj3Y5feuJetZc7WXCVogDkkfsdzpUpafkmbIKr4ZIrhlj1Uh8Rj7jL ee4q3rkTdLE+MSWAhhiuudZs490J2tYUx1OLHaX5WwaJ8lJRbqlh/bRQzE4cP4nP QTbEZYJCZU2AMNZgqE+m7XLit7bU5/T1 -----END CERTIFICATE-----Generated at Sat Apr 26 04:57:14 2025 by rpki-client