$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft File: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft (raw, json) Hash identifier: xOCIfkiAzisGV4Hh+XGBmTSoxhstsGcTXzI2Bo3NPn4= Subject key identifier: EB:1F:91:BD:08:47:67:1F:35:82:5A:D5:21:7E:27:89:D8:13:E2:A5 Authority key identifier: DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE Certificate issuer: /CN=A91E6CCA/serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft Manifest number: 0E Signing time: Fri 25 Apr 2025 07:05:01 +0000 Manifest this update: Fri 25 Apr 2025 07:05:01 +0000 Manifest next update: Fri 02 May 2025 07:05:01 +0000 Files and hashes: 1: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl (hash: cua9HwR9TqVF6OlfBClenlHr0TMfC3/00vsaQNoqvXY=) 2: E9CF18DE0F7111F096BBCF24C4F9AE02.roa (hash: 0kwUuP5urHGVd8jLbBCR4DTFP/4KfdSRWVGXFWx70hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:05:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Validity Not Before: Apr 25 07:05:01 2025 GMT Not After : May 2 07:05:01 2025 GMT Subject: CN=680b341d-e67a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a8:5f:79:e8:b0:e8:00:4e:b1:41:2f:aa:64: d7:40:00:09:7a:3f:1a:45:4d:6d:c8:d2:b9:ed:b9: a2:e6:cd:20:30:4a:a0:a2:6a:5a:74:83:71:ff:8b: 45:7c:14:21:50:63:47:ef:ea:94:25:b2:b6:07:33: 0a:7d:f7:69:5f:e7:d5:0d:0a:1b:80:74:1b:ea:95: 92:80:24:af:4f:df:08:24:b8:e7:20:69:36:9f:30: 7a:d1:af:0f:e7:18:43:25:1d:0e:28:16:33:3a:54: 22:bc:ea:be:ed:b0:96:2f:2f:d0:76:a6:96:6c:1a: 1e:ca:95:ed:56:2b:21:d2:1e:89:dd:2e:a3:38:d6: d8:35:bd:7f:f9:fe:45:20:37:82:ce:b0:d2:50:50: d7:23:5e:56:f5:11:04:dc:89:f3:c5:e2:c4:21:2d: 58:66:15:78:f7:29:d8:f6:86:65:a4:fa:05:1e:92: 03:a1:e2:e2:29:aa:96:13:9f:7c:cf:b5:0e:15:c1: 86:62:e2:0a:36:00:05:02:41:37:60:f4:e7:ba:bc: c5:13:59:8e:62:a3:b5:74:18:d4:56:31:cf:27:9f: 1c:ec:5c:4c:31:a6:b5:53:68:30:08:d6:a0:3f:6e: de:d5:7f:99:6d:1a:b0:8f:c7:27:8f:9e:d8:6d:55: d8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1F:91:BD:08:47:67:1F:35:82:5A:D5:21:7E:27:89:D8:13:E2:A5 X509v3 Authority Key Identifier: keyid:DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:c4:ec:9d:30:e3:07:b7:6c:3d:a4:b8:af:6d:e0:fa:a9:8d: 19:a5:63:43:fb:cc:2c:01:28:b3:eb:b0:74:7b:bf:a7:25:e6: f3:24:2e:be:17:e2:17:ed:d5:d6:11:6b:20:d7:79:6f:89:5c: c8:f3:2e:be:24:ab:4d:1e:57:a7:bc:a2:ec:7d:79:bc:f1:75: 46:36:e7:c0:e3:bd:f5:3a:76:39:da:2f:7d:31:7e:ae:a9:53: d0:33:47:47:04:5a:40:d0:27:55:e2:c7:e4:08:8b:83:90:f6: 54:0e:15:8b:d6:98:71:ca:89:d6:e5:9b:eb:91:63:0c:52:88: c5:fe:db:a8:f8:af:d3:f6:14:46:14:1c:9a:23:e3:62:a8:dd: 79:ae:b7:21:99:5d:cb:8f:93:eb:57:e7:6d:5d:55:5b:04:f6: cf:70:65:31:08:ed:0f:71:5a:36:01:8e:e0:16:b8:67:3a:ed: 84:89:43:55:3c:19:3f:58:67:92:87:c8:bd:bd:74:0d:0b:a6: e8:77:23:5f:1d:27:26:40:3b:29:bd:f8:30:22:b4:a7:b8:a7: 2b:19:2b:4a:cc:04:e1:30:64:58:0e:7f:6d:5b:15:89:cd:d2: 73:8d:8f:23:10:8c:c2:27:5e:55:7c:30:f8:0e:fb:43:23:da: 9d:a3:a8:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoREIxM0ZCQUY3QjNCMzhEQjc2MzBEQjBCOTczNzREQUFE MDMxNUFERTAeFw0yNTA0MjUwNzA1MDFaFw0yNTA1MDIwNzA1MDFaMBgxFjAUBgNV BAMTDTY4MGIzNDFkLWU2N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVqF956LDoAE6xQS+qZNdAAAl6PxpFTW3I0rntuaLmzSAwSqCialp0g3H/i0V8 FCFQY0fv6pQlsrYHMwp992lf59UNChuAdBvqlZKAJK9P3wgkuOcgaTafMHrRrw/n GEMlHQ4oFjM6VCK86r7tsJYvL9B2ppZsGh7Kle1WKyHSHondLqM41tg1vX/5/kUg N4LOsNJQUNcjXlb1EQTcifPF4sQhLVhmFXj3Kdj2hmWk+gUekgOh4uIpqpYTn3zP tQ4VwYZi4go2AAUCQTdg9Oe6vMUTWY5io7V0GNRWMc8nnxzsXEwxprVTaDAI1qA/ bt7Vf5ltGrCPxyePnthtVdhNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6x+RvQhH Zx81glrVIX4nidgT4qUwHwYDVR0jBBgwFoAU2xP7r3s7ONt2MNsLlzdNqtAxWt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzI0MDEwRDUyMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050Mk1Oc0xsemROcXRBeFd0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnhQN3IzczdPTnQyTU5zTGx6ZE5xdEF4V3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzI0MDEwRDUyMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050 Mk1Oc0xsemROcXRBeFd0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACDE7J0w4we3bD2kuK9t4PqpjRmlY0P7zCwBKLPrsHR7v6cl5vMkLr4X 4hft1dYRayDXeW+JXMjzLr4kq00eV6e8oux9ebzxdUY258DjvfU6djnaL30xfq6p U9AzR0cEWkDQJ1Xix+QIi4OQ9lQOFYvWmHHKidblm+uRYwxSiMX+26j4r9P2FEYU HJoj42Ko3XmutyGZXcuPk+tX521dVVsE9s9wZTEI7Q9xWjYBjuAWuGc67YSJQ1U8 GT9YZ5KHyL29dA0Lpuh3I18dJyZAOym9+DAitKe4pysZK0rMBOEwZFgOf21bFYnN 0nONjyMQjMInXlV8MPgO+0Mj2p2jqMI= -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:48 2025 by rpki-client