$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft File: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft (raw, json) Hash identifier: F+ty9/v4nORyqI/PQkOuqk+lvlAmbAihUV4BiSAHZkA= Subject key identifier: E7:E3:C0:C0:17:CB:25:1A:FE:22:A2:00:D8:A6:B0:1B:56:8A:72:0D Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft Manifest number: 01B2 Signing time: Fri 25 Apr 2025 02:23:25 +0000 Manifest this update: Fri 25 Apr 2025 02:23:25 +0000 Manifest next update: Fri 02 May 2025 02:23:25 +0000 Files and hashes: 1: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl (hash: olGbyDDyrBbtobuuTJfm74fTBXAMmzUfFxrofx+8wWo=) 2: F04A74EC90C511EDA07C3025C4F9AE02.roa (hash: hWCgt4KmPIBt7/S3B9mMUj5grxgOnMh8nytxnRCNTBY=) 3: 63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa (hash: 1lAGETSydBwVjG0hesN1/ViGN9eOR/26uzUYMFoxaT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696, serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Apr 25 02:23:25 2025 GMT Not After : May 2 02:23:25 2025 GMT Subject: CN=680af21d-1f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c5:4e:d1:3b:70:05:7b:a8:87:22:ed:92:96: f1:7c:2e:67:31:3a:9f:9b:00:ff:e8:fe:95:8e:74: 2c:db:dd:7d:fc:df:78:d9:73:21:b0:2e:61:f0:b6: cb:e8:d4:15:2a:9b:a1:8d:a8:d5:e7:f4:88:49:38: 7a:35:7b:73:98:2e:63:f1:17:ef:7e:5e:08:34:49: ec:e8:e8:c3:f7:72:d8:7a:30:8b:ec:b4:df:36:5b: 07:6e:25:b1:d8:6e:c9:62:9b:b6:2e:a2:b4:f4:51: 29:40:84:0b:88:17:e7:e4:ad:61:e0:06:5f:74:06: dc:ca:8b:5a:ff:aa:87:89:0a:55:51:38:6f:82:e8: ab:b6:3c:07:2b:85:28:c5:01:01:8a:62:ee:3d:97: bb:81:85:6a:5a:ed:2d:86:c3:0f:7b:1c:4d:ef:3d: d5:1b:9b:8a:14:72:0f:69:27:de:9e:7e:62:aa:44: 02:e2:e6:1c:90:5b:b8:8a:42:a2:ff:be:2f:f7:e5: 1f:37:b6:b7:c0:de:e9:0c:29:63:44:84:a5:2d:ec: da:5a:e9:6c:aa:6b:07:17:65:cb:6d:34:40:31:b2: ac:81:68:6f:f2:7e:54:68:84:92:ee:cf:e4:49:a0: bb:88:4a:bc:d1:ea:f7:c0:e4:65:a6:ec:dc:48:46: ac:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E3:C0:C0:17:CB:25:1A:FE:22:A2:00:D8:A6:B0:1B:56:8A:72:0D X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:1d:76:0f:65:52:c0:d8:8b:d5:89:a9:b3:46:7c:99:b1:bf: 50:1f:4d:68:a5:11:04:b0:2e:40:61:60:29:3e:1d:00:bb:c4: d4:05:c8:60:04:b0:06:e7:a8:6f:9e:80:08:5f:15:bb:7f:ca: 4d:74:f9:a4:79:7a:ca:7f:a4:91:b0:6d:32:3b:6f:6e:21:68: 0a:48:48:90:79:46:36:11:ce:21:92:62:30:50:cd:8d:76:7f: 81:d9:9f:5b:88:19:78:17:36:f5:2e:83:53:aa:ae:ec:1f:c2: c4:e9:68:ff:63:1e:ab:b7:aa:31:cc:12:99:79:ee:b3:8e:f4: 96:2c:0f:cf:01:f6:8d:27:4f:73:ec:f5:02:5e:9c:03:91:41: a1:2f:69:6f:04:d2:4b:ca:7c:cf:98:f5:d4:cb:c8:f5:33:c1: 80:27:c9:46:b4:c5:de:aa:65:50:d1:21:6f:04:b2:ef:c9:48: b9:43:0b:06:3d:0c:1a:c2:eb:5c:b0:3a:f8:a0:f3:5a:6d:b3: 50:30:ba:52:e3:4c:10:f1:d6:46:dc:9a:aa:ee:c0:f6:8f:86: 7b:76:3b:19:0b:1f:84:6a:c8:57:96:d5:c6:35:78:ce:0f:6c: a5:24:bd:2a:a9:43:45:d5:06:14:48:82:38:c5:2c:8a:8f:33: f8:a2:d1:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2OTYxMTAvBgNVBAUTKDI3Qjg3MjJDODU5Q0E0RjZGMDNFQzFFMDYxRkRENEMz QjlCNDk3RTUwHhcNMjUwNDI1MDIyMzI1WhcNMjUwNTAyMDIyMzI1WjAYMRYwFAYD VQQDEw02ODBhZjIxZC0xZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysVO0TtwBXuohyLtkpbxfC5nMTqfmwD/6P6VjnQs2919/N942XMhsC5h8LbL 6NQVKpuhjajV5/SISTh6NXtzmC5j8Rfvfl4INEns6OjD93LYejCL7LTfNlsHbiWx 2G7JYpu2LqK09FEpQIQLiBfn5K1h4AZfdAbcyota/6qHiQpVUThvguirtjwHK4Uo xQEBimLuPZe7gYVqWu0thsMPexxN7z3VG5uKFHIPaSfenn5iqkQC4uYckFu4ikKi /74v9+UfN7a3wN7pDCljRISlLezaWulsqmsHF2XLbTRAMbKsgWhv8n5UaISS7s/k SaC7iEq80er3wORlpuzcSEaskwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfjwMAX yyUa/iKiANimsBtWinINMB8GA1UdIwQYMBaAFCe4ciyFnKT28D7B4GH91MO5tJfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY5Ni9ENkExMUM0QTkw QkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQYndQc0hnWWYzVXc3bTBs LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY5Ni9ENkExMUM0QTkwQkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQ YndQc0hnWWYzVXc3bTBsLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlHXYPZVLA2IvViamzRnyZsb9QH01opREEsC5AYWApPh0Au8TUBchg BLAG56hvnoAIXxW7f8pNdPmkeXrKf6SRsG0yO29uIWgKSEiQeUY2Ec4hkmIwUM2N dn+B2Z9biBl4Fzb1LoNTqq7sH8LE6Wj/Yx6rt6oxzBKZee6zjvSWLA/PAfaNJ09z 7PUCXpwDkUGhL2lvBNJLynzPmPXUy8j1M8GAJ8lGtMXeqmVQ0SFvBLLvyUi5QwsG PQwawutcsDr4oPNabbNQMLpS40wQ8dZG3Jqq7sD2j4Z7djsZCx+EashXltXGNXjO D2ylJL0qqUNF1QYUSII4xSyKjzP4otH4 -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:58 2025 by rpki-client