$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: zVBdlbfdjlUCmsVYyd7vwLdvOzPRH9EV8BoG6Bp8V50= Subject key identifier: 27:22:7C:74:BA:FA:5D:A4:1D:A5:1D:C7:6E:8B:E7:B4:D7:57:D6:0F Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A06 Signing time: Thu 24 Apr 2025 19:44:43 +0000 Manifest this update: Thu 24 Apr 2025 19:44:43 +0000 Manifest next update: Thu 01 May 2025 19:44:43 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: 0MZo15N+bcIbjCSTa7afAnFe7rzED85V73T7NSipEX4=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Apr 24 19:44:43 2025 GMT Not After : May 1 19:44:43 2025 GMT Subject: CN=680a94ab-0f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:96:c1:aa:7e:3b:02:35:7d:8f:96:e5:5b:51: b7:e7:b7:d4:b2:d1:ec:8b:67:6e:94:47:2b:ee:d0: e3:9a:b5:31:42:48:b0:e8:f2:d7:f7:03:72:04:00: 67:73:31:44:f9:c6:7d:9e:75:d8:ac:d2:9e:7e:19: 9a:79:a7:2a:95:c4:65:89:87:6b:da:fd:89:3b:19: 1f:b2:be:13:90:cb:61:f4:02:35:85:1b:d1:be:6e: 9b:a1:09:7f:3c:10:d1:64:0b:0e:6b:18:bb:c6:99: 88:20:7c:86:a6:c4:4e:39:a6:57:02:08:31:59:8d: 12:06:17:46:f4:a3:f7:9e:8d:6c:a3:13:bd:a5:94: 55:d4:41:a8:79:10:33:f3:fd:60:90:f3:27:ae:da: 40:7b:b2:ea:f5:2c:d6:34:83:34:b7:46:63:c0:38: 4b:b1:fb:39:08:c2:4a:d2:2c:ec:e8:d9:2d:f4:13: 54:1a:f3:48:d2:77:eb:78:5b:b6:91:fc:34:a3:83: 78:b6:bb:4d:26:c2:5f:01:c0:b4:7d:bc:74:cf:30: f8:4e:38:0d:cc:60:73:e3:41:b5:3f:30:b5:29:40: 1f:d5:0e:2c:c7:ec:20:15:03:bb:9f:a2:7e:a2:20: 99:d3:f2:f0:5e:1b:79:e6:ee:ae:21:d7:a8:fa:c1: 97:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:22:7C:74:BA:FA:5D:A4:1D:A5:1D:C7:6E:8B:E7:B4:D7:57:D6:0F X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:7a:34:c6:23:fd:c0:be:16:45:6b:87:cf:9f:29:22:60:8b: 40:3a:92:bd:66:61:95:8c:b3:e4:b0:f0:62:43:b1:d3:78:88: 9c:7a:fe:2d:60:bd:53:c1:24:29:32:f5:c6:0a:6f:77:dc:0e: 15:41:4d:64:de:2b:e7:eb:ce:61:18:24:c1:7c:63:5f:ed:bc: d6:68:87:71:fb:73:f9:d6:23:52:4d:ce:be:80:73:84:e3:6f: a5:51:47:81:4f:d4:7d:78:82:de:36:55:40:c1:05:29:d7:b3: 07:24:78:c1:f9:8b:d8:16:5b:07:9d:b5:59:39:ff:ee:38:5e: c1:89:4c:f7:68:a7:48:e9:36:34:d3:76:7e:8f:93:fd:66:2a: 30:72:57:2a:72:d4:01:94:ee:e5:6a:0e:92:0c:f4:05:d8:5c: 1c:27:18:6e:5f:75:40:4a:ec:d6:e3:20:b9:10:98:8b:9c:ac: 9e:98:be:4e:2a:bc:14:9f:c5:f6:da:5f:2a:d6:c6:a6:91:13: 2b:13:6f:48:5c:0b:71:80:68:0f:6e:01:6e:5c:30:2c:d5:27: fc:1c:cb:cb:d1:1a:76:8e:db:0e:5e:f0:73:34:3a:47:2c:60: 5a:b6:14:44:14:fc:90:17:eb:57:13:85:fa:b9:98:70:81:8c: 81:70:ac:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwNDI0MTk0NDQzWhcNMjUwNTAxMTk0NDQzWjAYMRYwFAYD VQQDEw02ODBhOTRhYi0wZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45bBqn47AjV9j5blW1G357fUstHsi2dulEcr7tDjmrUxQkiw6PLX9wNyBABn czFE+cZ9nnXYrNKefhmaeacqlcRliYdr2v2JOxkfsr4TkMth9AI1hRvRvm6boQl/ PBDRZAsOaxi7xpmIIHyGpsROOaZXAggxWY0SBhdG9KP3no1soxO9pZRV1EGoeRAz 8/1gkPMnrtpAe7Lq9SzWNIM0t0ZjwDhLsfs5CMJK0izs6Nkt9BNUGvNI0nfreFu2 kfw0o4N4trtNJsJfAcC0fbx0zzD4TjgNzGBz40G1PzC1KUAf1Q4sx+wgFQO7n6J+ oiCZ0/LwXht55u6uIdeo+sGXQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcifHS6 +l2kHaUdx26L57TXV9YPMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxejTGI/3AvhZFa4fPnykiYItAOpK9ZmGVjLPksPBiQ7HTeIicev4t YL1TwSQpMvXGCm933A4VQU1k3ivn685hGCTBfGNf7bzWaIdx+3P51iNSTc6+gHOE 42+lUUeBT9R9eILeNlVAwQUp17MHJHjB+YvYFlsHnbVZOf/uOF7BiUz3aKdI6TY0 03Z+j5P9ZiowclcqctQBlO7lag6SDPQF2FwcJxhuX3VASuzW4yC5EJiLnKyemL5O KrwUn8X22l8q1samkRMrE29IXAtxgGgPbgFuXDAs1Sf8HMvL0Rp2jtsOXvBzNDpH LGBathREFPyQF+tXE4X6uZhwgYyBcKxx -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:38 2025 by rpki-client