$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: sTzoyqty2i6EHmC+mtK9xObYq0cn5UNgQKCx1Xezy48= Subject key identifier: 84:30:45:BB:34:2C:DC:AF:02:32:92:2D:60:5E:1A:B3:32:B0:22:FE Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0C52 Signing time: Thu 24 Apr 2025 18:17:42 +0000 Manifest this update: Thu 24 Apr 2025 18:17:41 +0000 Manifest next update: Thu 01 May 2025 18:17:41 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: WfkrVCpw1F1vPTdE3xAZXTyk0heV+DCEeG6Tg1bEiG4=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: 3at8OHhr3TWPa09hDLUXiFFjg44cS/0xW9KQOVKngqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5, serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: Apr 24 18:17:41 2025 GMT Not After : May 1 18:17:41 2025 GMT Subject: CN=680a8046-3ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:63:e7:60:86:44:c3:77:34:53:d0:a1:cc:23: e8:4a:33:ba:80:3a:a5:8a:15:64:38:2e:8c:b1:ae: 3b:2b:b4:d6:e0:47:e2:4c:6d:f4:0f:71:07:d1:be: 90:06:11:ce:57:88:c9:3f:f8:a6:d1:33:69:64:9c: 36:9b:09:ec:3b:bb:82:87:a0:eb:9e:58:db:02:a0: 7e:bb:4b:ca:e2:ba:89:12:01:6c:0b:6d:c7:79:22: 28:6b:e8:80:39:0b:ef:7d:be:59:89:6c:a6:a5:40: 7e:c8:8b:b9:f8:0b:6d:6f:f1:73:1a:50:d5:62:84: 86:dc:32:12:40:57:06:17:73:34:8b:28:31:97:ba: f2:33:2f:e7:17:8f:f8:36:3f:1b:ff:0b:ff:1c:24: d5:a3:28:05:41:50:ff:5f:e2:3d:d6:dd:2b:22:64: dc:ca:72:c3:66:29:99:ea:f9:26:59:a4:a7:fd:82: 67:1a:4d:95:5c:63:b2:1f:d7:9c:4d:f1:c9:b8:80: c3:ac:fa:84:c1:11:33:f4:f7:5a:aa:df:b8:3f:b1: d5:e7:c5:bf:53:15:ac:3d:05:d1:a0:34:7e:25:bb: 02:0a:44:1b:2c:fe:04:48:33:ca:c8:ca:16:27:ba: b8:3f:0f:1a:67:bb:aa:08:0c:fd:41:e3:70:ec:4d: 53:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:30:45:BB:34:2C:DC:AF:02:32:92:2D:60:5E:1A:B3:32:B0:22:FE X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a1:ac:4b:c8:10:7e:fb:6b:07:3d:e0:f8:bf:49:35:65:d6: 7b:ad:6e:0c:93:25:57:51:5e:60:ce:d6:fd:b6:c9:39:fd:94: f9:1a:c8:9a:19:b4:52:29:3b:6c:57:c7:a7:f3:28:4d:e8:6c: 03:4d:31:cc:1f:41:c8:b8:e3:3f:08:76:87:d3:0b:e7:ec:d1: cf:0e:42:af:ea:01:c3:c9:b9:ae:d2:29:df:da:78:61:82:8e: 26:1e:c2:92:b4:67:f9:67:ae:d6:6c:1c:ce:26:73:6a:f9:ab: 3c:21:95:2d:6c:57:eb:7b:dc:78:e9:66:bb:04:48:2c:3b:50: a2:36:d0:2b:b2:90:1a:d5:c0:95:62:b3:18:28:64:c4:9b:5b: 51:29:25:70:a7:54:44:aa:54:2e:7b:94:0c:30:5b:58:d7:c0: 9d:85:e1:d5:f8:b6:b5:c5:e9:25:79:74:74:74:8b:12:e1:19: ec:b4:ee:92:ec:5c:7e:ca:70:93:9b:d0:19:7d:33:71:ae:9c: fe:d4:c9:60:2b:52:fc:a8:2c:e2:84:c8:0f:47:0e:8a:2b:22: 81:fa:32:d9:f8:55:ac:2e:07:e6:69:b7:c1:85:ac:d0:5e:d3: 6d:05:0f:b3:e5:f7:26:f9:97:80:6c:e1:14:38:bc:99:f3:15: 31:c8:57:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjUwNDI0MTgxNzQxWhcNMjUwNTAxMTgxNzQxWjAYMRYwFAYD VQQDEw02ODBhODA0Ni0zYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mPnYIZEw3c0U9ChzCPoSjO6gDqlihVkOC6Msa47K7TW4EfiTG30D3EH0b6Q BhHOV4jJP/im0TNpZJw2mwnsO7uCh6DrnljbAqB+u0vK4rqJEgFsC23HeSIoa+iA OQvvfb5ZiWympUB+yIu5+Attb/FzGlDVYoSG3DISQFcGF3M0iygxl7ryMy/nF4/4 Nj8b/wv/HCTVoygFQVD/X+I91t0rImTcynLDZimZ6vkmWaSn/YJnGk2VXGOyH9ec TfHJuIDDrPqEwREz9Pdaqt+4P7HV58W/UxWsPQXRoDR+JbsCCkQbLP4ESDPKyMoW J7q4Pw8aZ7uqCAz9QeNw7E1TlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQwRbs0 LNyvAjKSLWBeGrMysCL+MB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfoaxLyBB++2sHPeD4v0k1ZdZ7rW4MkyVXUV5gztb9tsk5/ZT5Gsia GbRSKTtsV8en8yhN6GwDTTHMH0HIuOM/CHaH0wvn7NHPDkKv6gHDybmu0inf2nhh go4mHsKStGf5Z67WbBzOJnNq+as8IZUtbFfre9x46Wa7BEgsO1CiNtArspAa1cCV YrMYKGTEm1tRKSVwp1REqlQue5QMMFtY18CdheHV+La1xekleXR0dIsS4RnstO6S 7Fx+ynCTm9AZfTNxrpz+1MlgK1L8qCzihMgPRw6KKyKB+jLZ+FWsLgfmabfBhazQ XtNtBQ+z5fcm+ZeAbOEUOLyZ8xUxyFfd -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:57 2025 by rpki-client