$ rpki-client -vvf rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft File: 0KCTtlEHkzVIStC6HXZhX1w2aIo.mft (raw, json) Hash identifier: eaBfYf9h8XRTJF753P38xg60VSYUIEye1mPWNkanWts= Subject key identifier: EE:EC:DF:10:F4:86:C1:4A:4D:D7:C9:4F:44:E2:D0:F5:5C:0A:C7:C9 Authority key identifier: D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A Certificate issuer: /CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Certificate serial: 3307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft Manifest number: 99EB Signing time: Thu 24 Apr 2025 15:16:50 +0000 Manifest this update: Thu 24 Apr 2025 15:16:49 +0000 Manifest next update: Thu 01 May 2025 15:16:49 +0000 Files and hashes: 1: 0KCTtlEHkzVIStC6HXZhX1w2aIo.crl (hash: juNd048gBLpzI8tg+sXA0F6D839I59qjDjD72/iS2kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13063 (0x3307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E275B, serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Validity Not Before: Apr 24 15:16:49 2025 GMT Not After : May 1 15:16:49 2025 GMT Subject: CN=680a55e2-f37d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:e2:1b:d7:84:fe:12:0c:3d:a4:42:91:cd: 0c:25:4d:3f:e6:00:18:19:10:ab:8f:9d:f1:13:6b: 94:fe:ca:0b:f3:1c:46:41:62:69:66:82:5e:4f:3e: c5:b3:fc:e6:ca:8d:4e:f1:3c:44:36:e4:59:ff:6a: 13:70:2e:f9:48:c2:b5:0c:59:ec:5f:ff:91:78:2b: 19:54:73:a5:5f:dd:36:91:ea:b8:72:14:34:07:d3: e0:23:ed:82:81:8d:d4:c3:ed:fa:47:15:3d:89:7e: 0a:96:3f:5d:b8:3c:c0:ec:bd:ec:7f:1d:56:11:71: 94:7b:d8:b2:6a:54:14:3b:b3:1f:f9:62:08:37:43: 87:14:5d:41:42:3f:af:3c:79:d0:04:4e:80:77:66: 7f:97:e7:af:58:b2:93:cd:c8:11:87:88:de:74:4a: 7f:7f:b6:4a:01:44:ef:4a:81:6a:e9:e2:54:46:b4: 08:58:ca:e0:62:1b:8c:fe:3a:53:e7:dd:5b:d3:94: 6b:33:da:cd:57:5f:06:e2:99:5d:61:52:5d:40:65: 2c:42:08:7d:02:f4:bb:86:ce:c3:1c:21:09:39:dc: d6:2d:91:88:2c:be:26:26:8d:f7:b9:40:7d:c0:9a: 1f:68:81:92:2e:ad:c0:d0:a7:f6:7a:1b:bf:3c:47: d7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EC:DF:10:F4:86:C1:4A:4D:D7:C9:4F:44:E2:D0:F5:5C:0A:C7:C9 X509v3 Authority Key Identifier: keyid:D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:65:21:63:1c:ad:20:43:e4:7a:e6:a8:30:30:56:83:28:82: b8:1d:b2:38:f4:1f:36:aa:3d:77:bc:77:b7:4b:52:2a:19:13: 08:ff:c0:51:b9:9f:27:0a:d8:65:5f:ba:c6:8b:e7:2a:ae:45: d6:b1:04:9a:80:31:9d:79:d2:8b:e7:8e:25:3d:c6:b1:39:ee: 6c:96:8e:0c:47:94:41:72:69:4f:0a:76:9b:60:d3:cb:c8:57: 82:9f:9b:de:77:39:1d:a9:71:c0:22:fa:fb:a5:6c:02:68:5b: d5:f5:33:aa:e3:6e:5d:61:f6:f8:f9:5a:b2:92:b5:b4:29:5f: 38:7a:3f:f2:00:95:ca:dd:78:04:06:95:c0:14:e2:41:25:02: 48:68:15:99:29:21:7f:75:c5:19:0c:92:bb:50:90:87:9c:0a: 1b:cf:35:f9:a9:5a:10:fd:7f:b5:86:d9:66:a7:07:a9:be:94: 07:8a:6f:4c:1e:91:00:f4:99:8e:b3:0a:05:f4:1d:fe:18:04: b4:b3:b5:5b:9c:bd:21:d9:0c:70:b5:52:a9:b5:e9:a9:30:c2: a7:1f:29:1d:46:fa:e7:4c:c5:67:6c:88:5a:7d:a3:ec:96:e6: 98:a9:88:c0:50:56:73:4c:ad:8c:ed:c3:da:e2:0e:12:e1:44: f9:3e:7f:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3NUIxMTAvBgNVBAUTKEQwQTA5M0I2NTEwNzkzMzU0ODRBRDBCQTFENzY2MTVG NUMzNjY4OEEwHhcNMjUwNDI0MTUxNjQ5WhcNMjUwNTAxMTUxNjQ5WjAYMRYwFAYD VQQDEw02ODBhNTVlMi1mMzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunHiG9eE/hIMPaRCkc0MJU0/5gAYGRCrj53xE2uU/soL8xxGQWJpZoJeTz7F s/zmyo1O8TxENuRZ/2oTcC75SMK1DFnsX/+ReCsZVHOlX902keq4chQ0B9PgI+2C gY3Uw+36RxU9iX4Klj9duDzA7L3sfx1WEXGUe9iyalQUO7Mf+WIIN0OHFF1BQj+v PHnQBE6Ad2Z/l+evWLKTzcgRh4jedEp/f7ZKAUTvSoFq6eJURrQIWMrgYhuM/jpT 591b05RrM9rNV18G4pldYVJdQGUsQgh9AvS7hs7DHCEJOdzWLZGILL4mJo33uUB9 wJofaIGSLq3A0Kf2ehu/PEfX9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7s3xD0 hsFKTdfJT0Ti0PVcCsfJMB8GA1UdIwQYMBaAFNCgk7ZRB5M1SErQuh12YV9cNmiK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjc1Qi9BQjIwMjIzMDFE QTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6VklTdEM2SFhaaFgxdzJh SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBLQ1R0bEVIa3pWSVN0QzZIWFpoWDF3MmFJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mjc1Qi9BQjIwMjIzMDFEQTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6 VklTdEM2SFhaaFgxdzJhSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5ZSFjHK0gQ+R65qgwMFaDKIK4HbI49B82qj13vHe3S1IqGRMI/8BR uZ8nCthlX7rGi+cqrkXWsQSagDGdedKL544lPcaxOe5slo4MR5RBcmlPCnabYNPL yFeCn5vedzkdqXHAIvr7pWwCaFvV9TOq425dYfb4+VqykrW0KV84ej/yAJXK3XgE BpXAFOJBJQJIaBWZKSF/dcUZDJK7UJCHnAobzzX5qVoQ/X+1htlmpwepvpQHim9M HpEA9JmOswoF9B3+GAS0s7VbnL0h2QxwtVKptempMMKnHykdRvrnTMVnbIhafaPs luaYqYjAUFZzTK2M7cPa4g4S4UT5Pn8R -----END CERTIFICATE-----Generated at Sat Apr 26 07:58:33 2025 by rpki-client