$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft File: mFpmWpz7T1ygDsqL_rgGML9PSBY.mft (raw, json) Hash identifier: 4zRt1J34HEEsUVcR6U/s6Glx/MWYlDcSZC4QGDTo6oY= Subject key identifier: 77:14:12:E6:1F:B5:03:B5:4C:E1:2B:6F:B0:5B:8F:32:64:98:0E:7D Authority key identifier: 98:5A:66:5A:9C:FB:4F:5C:A0:0E:CA:8B:FE:B8:06:30:BF:4F:48:16 Certificate issuer: /CN=A91E6D5D/serialNumber=985A665A9CFB4F5CA00ECA8BFEB80630BF4F4816 Certificate serial: 2527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft Manifest number: 9EFA Signing time: Thu 24 Apr 2025 14:29:54 +0000 Manifest this update: Thu 24 Apr 2025 14:29:54 +0000 Manifest next update: Thu 01 May 2025 14:29:54 +0000 Files and hashes: 1: mFpmWpz7T1ygDsqL_rgGML9PSBY.crl (hash: bWaCYu2ICDFARnCkON10tm4baVj3sfMj/xtWlg5m7/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9511 (0x2527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=985A665A9CFB4F5CA00ECA8BFEB80630BF4F4816 Validity Not Before: Apr 24 14:29:54 2025 GMT Not After : May 1 14:29:54 2025 GMT Subject: CN=680a4ae2-27ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dd:28:8c:a0:24:41:ef:d8:10:bd:b4:5b:1f: 94:0f:90:fd:39:59:36:97:61:b4:9a:42:a3:a2:1d: 87:e8:c7:03:8b:fd:8b:d1:5f:be:94:e9:58:29:99: 7f:55:66:7f:ab:26:fc:eb:12:63:e7:23:e5:8a:f8: b6:c9:d2:3d:c2:3b:e4:7b:3a:4d:03:d1:8a:d2:b0: dc:d6:ce:80:10:d3:fd:cb:da:8b:96:c7:49:14:6b: ad:83:88:08:f1:2a:96:82:ee:3b:4d:fe:c3:3d:42: 5a:d8:af:af:72:91:af:80:34:cb:12:8d:f0:d8:89: 55:92:c1:3d:ce:69:34:e0:38:63:01:e0:6a:53:86: 1d:5e:44:c2:2b:02:2a:e0:2f:f4:79:79:52:2f:d1: fd:eb:0f:41:bd:54:14:06:17:f6:2c:9c:c6:28:c8: 96:7e:80:e2:cc:9f:01:5c:1a:6b:85:66:2b:16:81: ff:07:87:89:2d:ee:58:0a:3d:a0:55:69:71:8f:b9: f7:41:5d:79:4a:ec:45:91:b0:a6:03:6a:fb:36:96: ad:ab:ef:9d:f6:03:33:4b:23:26:6b:5b:12:83:32: 33:c3:9e:b5:11:f2:e8:a8:fe:64:b1:6b:c6:97:65: 37:9b:a8:6a:d9:43:f3:74:16:14:2a:8f:84:41:a1: 41:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:14:12:E6:1F:B5:03:B5:4C:E1:2B:6F:B0:5B:8F:32:64:98:0E:7D X509v3 Authority Key Identifier: keyid:98:5A:66:5A:9C:FB:4F:5C:A0:0E:CA:8B:FE:B8:06:30:BF:4F:48:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ad:7c:40:38:c0:1a:f5:ce:44:67:0d:88:b5:c9:d9:a8:f7: d0:e1:08:83:78:4a:9a:ac:7c:06:be:b4:a4:f8:e6:a4:42:19: ca:ad:f5:28:11:c1:d3:72:85:57:5e:61:d3:2d:47:20:27:d0: 37:d8:c4:4c:aa:d6:2d:d2:2b:1e:ed:78:41:d2:65:c8:19:79: e3:e3:19:d5:af:3b:07:10:a6:f6:0c:88:13:6e:0f:66:e8:84: fa:bc:b8:82:05:0a:27:81:2a:83:be:99:29:b7:4e:3d:1e:a5: 1c:e0:69:2c:b5:c2:67:c8:87:b3:fb:39:19:38:05:72:7a:eb: 96:a7:7e:b3:1f:11:29:92:09:37:18:d1:2a:c2:83:9d:4f:aa: 65:01:a1:e5:af:0e:90:e8:7c:42:7f:0d:b0:e2:c0:b3:62:03: 62:63:39:5f:a3:ad:1c:3b:87:89:1b:7c:32:a4:08:ac:1a:6d: 07:09:dd:11:8c:3a:0d:a3:74:ae:5f:f7:3c:bb:8f:84:10:d8: 07:ed:e7:42:03:0a:d0:a2:c8:bc:cf:15:96:04:f6:f4:4c:77: 0d:81:9d:24:92:ff:3d:ea:04:17:c0:98:05:43:ca:a1:a2:1b: 0c:fb:1b:9d:11:22:40:18:da:4a:e3:b0:7e:4e:7a:c9:3d:3c: 10:ed:c0:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDk4NUE2NjVBOUNGQjRGNUNBMDBFQ0E4QkZFQjgwNjMw QkY0RjQ4MTYwHhcNMjUwNDI0MTQyOTU0WhcNMjUwNTAxMTQyOTU0WjAYMRYwFAYD VQQDEw02ODBhNGFlMi0yN2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt0ojKAkQe/YEL20Wx+UD5D9OVk2l2G0mkKjoh2H6McDi/2L0V++lOlYKZl/ VWZ/qyb86xJj5yPlivi2ydI9wjvkezpNA9GK0rDc1s6AENP9y9qLlsdJFGutg4gI 8SqWgu47Tf7DPUJa2K+vcpGvgDTLEo3w2IlVksE9zmk04DhjAeBqU4YdXkTCKwIq 4C/0eXlSL9H96w9BvVQUBhf2LJzGKMiWfoDizJ8BXBprhWYrFoH/B4eJLe5YCj2g VWlxj7n3QV15SuxFkbCmA2r7Npatq++d9gMzSyMma1sSgzIzw561EfLoqP5ksWvG l2U3m6hq2UPzdBYUKo+EQaFBIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcUEuYf tQO1TOErb7BbjzJkmA59MB8GA1UdIwQYMBaAFJhaZlqc+09coA7Ki/64BjC/T0gW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9tRnBtV3B6N1QxeWdEc3FMX3JnR01MOVBT QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21GcG1XcHo3VDF5Z0RzcUxfcmdHTUw5UFNCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9tRnBtV3B6N1Qx eWdEc3FMX3JnR01MOVBTQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBerXxAOMAa9c5EZw2ItcnZqPfQ4QiDeEqarHwGvrSk+OakQhnKrfUo EcHTcoVXXmHTLUcgJ9A32MRMqtYt0ise7XhB0mXIGXnj4xnVrzsHEKb2DIgTbg9m 6IT6vLiCBQongSqDvpkpt049HqUc4GkstcJnyIez+zkZOAVyeuuWp36zHxEpkgk3 GNEqwoOdT6plAaHlrw6Q6HxCfw2w4sCzYgNiYzlfo60cO4eJG3wypAisGm0HCd0R jDoNo3SuX/c8u4+EENgH7edCAwrQosi8zxWWBPb0THcNgZ0kkv896gQXwJgFQ8qh ohsM+xudESJAGNpK47B+TnrJPTwQ7cA5 -----END CERTIFICATE-----Generated at Sat Apr 26 06:15:43 2025 by rpki-client