$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft File: 4190GdVyqG920uv3gpq22dA0CQU.mft (raw, json) Hash identifier: EKf5jHA3tJjHM7qDg6BO0V5PyoLPxaJRoRvubc2tm6Y= Subject key identifier: 94:B2:0F:A0:EC:AE:8E:EE:39:5B:F1:23:10:2C:09:F9:32:97:59:D5 Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft Manifest number: 0147 Signing time: Fri 25 Apr 2025 03:22:09 +0000 Manifest this update: Fri 25 Apr 2025 03:22:09 +0000 Manifest next update: Fri 02 May 2025 03:22:09 +0000 Files and hashes: 1: 4190GdVyqG920uv3gpq22dA0CQU.crl (hash: vJD0pEK4GRW4/9a1XG9OaY+oP4HNs3xJ3oIou3fAaqM=) 2: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (hash: VdVGiGXj8WmtMijPMpgRK+Rb6MVhazNJnLJSMdY7Rjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Apr 25 03:22:09 2025 GMT Not After : May 2 03:22:09 2025 GMT Subject: CN=680affe1-99ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:10:d3:35:20:a7:d0:88:56:dd:c7:49:13:6c: c9:89:3e:08:c0:22:02:6d:9e:47:55:2b:78:42:31: c2:9f:a7:9b:78:6a:17:d2:50:36:21:53:75:31:1e: 0a:b5:b3:0e:34:b8:8b:be:0b:38:55:23:1e:78:a7: bc:b7:7f:d4:16:05:75:55:6f:f4:0c:6d:09:5c:64: 4c:57:c6:60:44:9f:8e:b8:d5:21:8f:5a:79:48:34: aa:25:70:60:c9:b7:65:f9:3e:a4:bd:ac:27:85:88: 8a:f8:a6:0b:64:fb:b7:c2:db:b3:34:7d:a0:ba:fc: 49:f2:b0:72:93:b0:7b:c8:4e:19:1f:ab:41:45:07: 41:6a:8e:a9:e7:8c:32:ca:a6:ae:36:fc:7f:c7:42: fd:55:f1:27:c7:4d:16:ce:dc:c9:d9:5c:6e:4c:50: 7b:d8:7a:98:2a:36:ba:3a:56:32:2e:97:e6:9c:3d: 74:35:0c:38:b0:d8:69:9d:e9:46:4e:01:12:34:47: 52:c4:50:ca:10:12:44:8e:4b:30:1f:8c:51:2e:92: a3:15:54:4d:c2:10:0c:42:bc:f5:7f:94:ff:21:ee: 52:f0:4b:93:8c:e2:fc:d9:13:38:10:19:68:dc:59: 57:bd:10:c9:10:fc:f2:b8:99:a5:f0:9c:43:e6:67: 6e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B2:0F:A0:EC:AE:8E:EE:39:5B:F1:23:10:2C:09:F9:32:97:59:D5 X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:14:44:94:13:d3:92:10:ad:a3:40:85:61:43:29:2b:ae:d1: e5:a0:0b:dc:90:09:79:5c:25:6a:42:53:38:21:9a:bd:0d:8c: 73:b1:d0:25:23:88:10:d3:a8:07:ad:8c:2c:d4:f3:f1:15:f7: f2:0f:07:e2:d2:45:f6:e2:b6:f5:b3:d1:63:27:c2:c3:fb:3c: 6c:1c:8e:81:db:fb:49:1a:32:46:a3:93:4f:cc:1b:33:91:29: 61:51:b3:d8:d6:48:ec:99:0b:45:8c:90:31:10:8b:fe:46:60: de:b2:a2:bb:ea:db:30:b2:e6:e5:7a:4b:14:c9:ab:05:27:3f: 20:78:93:50:bc:a5:36:89:24:7a:fe:2a:0d:ae:f4:4f:55:53: 4a:43:37:d3:9d:46:48:8b:2a:1c:67:76:67:17:84:d5:c1:65: 60:d2:0d:61:6b:63:dc:cc:e4:68:1f:79:69:8e:f7:78:b4:3b: 8a:02:49:0e:53:4f:2b:ef:35:a4:ee:fa:01:c8:81:99:21:72: 23:06:0b:b6:6c:ec:cf:f1:5c:7a:20:b9:09:f7:bf:ab:55:03: 94:fc:36:cd:36:d0:92:42:e3:86:31:07:98:04:5d:15:87:48: 6a:6a:63:6a:1a:32:f9:33:33:ca:00:ba:71:4d:46:58:a6:5e: 07:41:eb:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUwNDI1MDMyMjA5WhcNMjUwNTAyMDMyMjA5WjAYMRYwFAYD VQQDEw02ODBhZmZlMS05OWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRDTNSCn0IhW3cdJE2zJiT4IwCICbZ5HVSt4QjHCn6ebeGoX0lA2IVN1MR4K tbMONLiLvgs4VSMeeKe8t3/UFgV1VW/0DG0JXGRMV8ZgRJ+OuNUhj1p5SDSqJXBg ybdl+T6kvawnhYiK+KYLZPu3wtuzNH2guvxJ8rByk7B7yE4ZH6tBRQdBao6p54wy yqauNvx/x0L9VfEnx00WztzJ2VxuTFB72HqYKja6OlYyLpfmnD10NQw4sNhpnelG TgESNEdSxFDKEBJEjkswH4xRLpKjFVRNwhAMQrz1f5T/Ie5S8EuTjOL82RM4EBlo 3FlXvRDJEPzyuJml8JxD5mduYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSyD6Ds ro7uOVvxIxAsCfkyl1nVMB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGNS8zM0Y3MjU4NjJEMTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFH OTIwdXYzZ3BxMjJkQTBDUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABFESUE9OSEK2jQIVhQykrrtHloAvckAl5XCVqQlM4IZq9DYxzsdAl I4gQ06gHrYws1PPxFffyDwfi0kX24rb1s9FjJ8LD+zxsHI6B2/tJGjJGo5NPzBsz kSlhUbPY1kjsmQtFjJAxEIv+RmDesqK76tswsubleksUyasFJz8geJNQvKU2iSR6 /ioNrvRPVVNKQzfTnUZIiyocZ3ZnF4TVwWVg0g1ha2PczORoH3lpjvd4tDuKAkkO U08r7zWk7voByIGZIXIjBgu2bOzP8Vx6ILkJ97+rVQOU/DbNNtCSQuOGMQeYBF0V h0hqamNqGjL5MzPKALpxTUZYpl4HQetV -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:58 2025 by rpki-client