$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: C57jRFNnmHZ7quvrkBi6kO7RA6yHT4cuZcHDd2BfH7Q= Subject key identifier: 03:CF:16:3C:58:90:FF:2A:B0:52:F7:2B:DD:CE:DD:95:20:3B:0F:50 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 21F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 21C8 Signing time: Thu 24 Apr 2025 15:54:55 +0000 Manifest this update: Thu 24 Apr 2025 15:54:54 +0000 Manifest next update: Thu 01 May 2025 15:54:54 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: uzRh9da6leGDJTklT3xOzBmAs09a9fSYVbHTliwGhNM=) 2: F9BC88C6F38311EF90CAA20AC4F9AE02.roa (hash: fb84lPls0wjQ0oNDS58EpVom+5LQYW23G3f1sIUbG5I=) 3: 1DE1EBA25F0E11EF88D4A280C4F9AE02.roa (hash: CHZ8BUCP+ogBpGKfLieugzwCJ7wbfBVhmhSN5UggfIs=) 4: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8693 (0x21f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Apr 24 15:54:54 2025 GMT Not After : May 1 15:54:54 2025 GMT Subject: CN=680a5ecf-65e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ab:c1:0b:b1:40:2b:d3:fd:25:0f:69:e0:98: 04:07:95:e0:ef:f8:ae:38:f7:c2:4d:8a:e9:0c:b7: 82:ae:12:67:83:1e:1d:1c:44:59:12:89:79:1b:93: f4:34:b6:c7:cd:a6:59:0f:f6:43:8a:17:76:63:6c: e9:6f:3b:c6:58:a7:9d:6d:b1:2b:4d:90:d6:16:2a: 47:88:f7:0e:4d:c9:87:aa:b3:95:eb:c9:1f:9f:27: 7d:07:7d:c5:aa:e0:f6:53:52:c1:08:65:f3:aa:4f: ca:54:61:8e:c5:3c:56:bd:88:4a:f7:91:f0:0d:ff: f4:4f:13:b0:5f:0e:8f:b6:ab:1c:c2:1e:3a:af:f7: ee:76:3a:11:e5:48:a4:80:66:f7:65:e6:b8:82:a7: c1:c7:f9:00:c5:8f:ed:b1:73:db:f9:b8:86:3e:bf: 44:6b:c5:4a:3d:90:3e:ab:5f:7a:3f:3a:d1:4a:3c: a2:bf:46:c4:2e:a4:44:53:01:37:7f:f1:04:c2:47: 15:56:84:75:45:c7:ad:d7:04:6b:63:da:7c:03:fe: d0:bb:c3:8d:22:f9:b6:a4:5d:e8:c9:ff:20:08:9d: b3:9c:15:3f:7d:94:8c:e6:ce:fa:f4:bd:08:ed:a2: 27:24:26:ce:ad:13:7e:08:72:cb:f6:82:51:dc:3f: 84:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CF:16:3C:58:90:FF:2A:B0:52:F7:2B:DD:CE:DD:95:20:3B:0F:50 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:c9:61:9d:fd:c8:30:06:77:d0:8b:37:70:6e:c5:3d:9c:1b: 7f:32:43:9e:4e:e2:f3:92:e6:03:6f:92:33:74:9c:b6:5b:98: 9b:f2:65:d3:f3:11:cd:9f:ed:a8:a4:d3:a1:8c:9f:4b:d5:5f: 69:71:a0:ca:e3:54:2c:db:65:8d:35:31:50:cd:17:dd:07:c2: b2:2a:1d:d3:57:87:bf:0a:78:64:5c:e3:4c:86:1f:1d:ee:e9: 0a:b5:9e:a0:f1:d1:2c:fc:72:67:a3:47:e1:d0:1b:55:c9:15: 23:36:d5:88:03:c0:b9:de:4e:e8:48:98:7a:4a:86:ce:3c:e6: 24:d1:f4:42:6c:e4:09:4b:29:2e:a0:0c:82:a0:62:f7:6f:d4: db:dc:a6:83:96:fc:b5:9f:33:28:5e:c3:61:70:9b:9b:ed:fe: 2a:a2:b2:f1:f3:4b:44:79:05:f4:29:d9:fe:17:22:df:f0:26: 81:2d:0c:66:9b:a4:39:f7:42:a8:00:5b:a3:c4:5f:70:bf:f2: c5:d2:39:67:30:19:8a:d3:1f:4a:ba:c3:c7:a2:ee:c2:79:75: 6c:54:6c:28:06:04:d6:e3:03:d1:05:dd:11:a9:e5:a1:ee:29: a9:bd:99:93:9b:29:72:8b:0c:56:74:53:ed:fe:a6:44:3c:25: 0e:02:d6:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwNDI0MTU1NDU0WhcNMjUwNTAxMTU1NDU0WjAYMRYwFAYD VQQDEw02ODBhNWVjZi02NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6vBC7FAK9P9JQ9p4JgEB5Xg7/iuOPfCTYrpDLeCrhJngx4dHERZEol5G5P0 NLbHzaZZD/ZDihd2Y2zpbzvGWKedbbErTZDWFipHiPcOTcmHqrOV68kfnyd9B33F quD2U1LBCGXzqk/KVGGOxTxWvYhK95HwDf/0TxOwXw6Ptqscwh46r/fudjoR5Uik gGb3Zea4gqfBx/kAxY/tsXPb+biGPr9Ea8VKPZA+q196PzrRSjyiv0bELqREUwE3 f/EEwkcVVoR1Rcet1wRrY9p8A/7Qu8ONIvm2pF3oyf8gCJ2znBU/fZSM5s769L0I 7aInJCbOrRN+CHLL9oJR3D+E/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPPFjxY kP8qsFL3K93O3ZUgOw9QMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6yWGd/cgwBnfQizdwbsU9nBt/MkOeTuLzkuYDb5IzdJy2W5ib8mXT 8xHNn+2opNOhjJ9L1V9pcaDK41Qs22WNNTFQzRfdB8KyKh3TV4e/CnhkXONMhh8d 7ukKtZ6g8dEs/HJno0fh0BtVyRUjNtWIA8C53k7oSJh6SobOPOYk0fRCbOQJSyku oAyCoGL3b9Tb3KaDlvy1nzMoXsNhcJub7f4qorLx80tEeQX0Kdn+FyLf8CaBLQxm m6Q590KoAFujxF9wv/LF0jlnMBmK0x9KusPHou7CeXVsVGwoBgTW4wPRBd0RqeWh 7impvZmTmylyiwxWdFPt/qZEPCUOAtYF -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:56 2025 by rpki-client