$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: diUHCLgIBiedyVHPErhVVEyDdMFvTJzCk6nHudiPpQI= Subject key identifier: 9C:89:8A:4B:E1:FC:13:6A:A7:55:65:9D:C8:CD:9D:0C:41:3E:9B:51 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 33F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 33D7 Signing time: Thu 24 Apr 2025 15:20:36 +0000 Manifest this update: Thu 24 Apr 2025 15:20:35 +0000 Manifest next update: Thu 01 May 2025 15:20:35 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: GXqn/63IDys/580dAoe998D6VR1hRAcTqhEmwa1hE20=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13300 (0x33f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Apr 24 15:20:35 2025 GMT Not After : May 1 15:20:35 2025 GMT Subject: CN=680a56c4-e4bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:e7:7b:88:b8:bd:02:07:b6:1b:d4:c9:7f: db:09:68:3b:cb:1d:3a:17:cd:64:1e:c6:da:38:2d: cb:b8:c1:32:85:11:ca:b7:21:27:fb:b6:02:3b:a3: e9:6c:78:60:f9:0c:dd:13:7f:57:e4:03:12:64:70: 5d:5b:b1:9b:98:ee:a8:f2:e1:b8:b8:ae:5d:a1:c4: 9e:29:ab:d1:49:bb:9c:6f:84:f9:8d:29:70:41:ec: b4:96:35:59:43:dd:77:9a:82:12:05:5d:07:bc:f1: 84:ca:42:a3:98:25:7f:ab:27:4c:c3:08:4a:91:6a: 3d:2c:7d:e3:23:e6:82:b2:de:e2:78:cc:33:03:98: f7:a0:88:29:0a:cd:6d:4a:e3:d3:ed:6e:a8:b4:74: 5a:27:ed:6e:e1:ff:0d:74:57:08:76:fb:0c:aa:ee: 1b:21:e5:30:b7:4e:85:a9:bb:b6:20:27:0e:3d:b1: 9f:f9:86:1b:55:c0:f1:8c:59:81:3c:05:fa:98:52: ad:21:39:15:11:56:b7:54:5a:ef:db:7c:bf:0d:f9: 69:3d:0c:0b:ef:23:5f:4b:cd:c8:0a:9e:c4:d8:18: f7:e0:75:63:90:3c:3a:48:a6:e8:34:e3:a3:b3:72: 02:e6:27:a2:12:7d:63:b0:ba:36:01:ac:76:41:28: 72:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:89:8A:4B:E1:FC:13:6A:A7:55:65:9D:C8:CD:9D:0C:41:3E:9B:51 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:dd:62:1f:42:df:b0:78:09:e4:a8:34:26:4a:5e:59:00:55: d7:bb:ea:9a:64:1b:49:90:2d:0a:2a:8d:ef:b4:09:47:6a:27: 99:bb:e7:d7:ff:90:60:bc:22:da:9b:de:bb:81:18:c9:7a:9d: 49:11:aa:64:6a:eb:da:cb:4f:e8:7a:b0:d7:0e:f9:88:27:fa: 2e:78:08:cf:f6:85:1f:3b:b7:10:8d:b9:a4:84:fd:9b:bb:98: 98:fe:4e:71:41:d2:1a:77:ed:3d:32:8e:b8:ad:c8:c6:69:14: f8:1c:dd:e4:ed:83:ff:08:3a:05:e8:6b:51:03:fa:87:32:5a: eb:8b:41:7d:d8:f3:2c:63:94:2b:ad:d2:bf:8d:49:5a:9c:2c: 13:95:c2:c4:4d:ff:0c:b3:3b:13:01:1b:32:cf:22:b6:3a:c9: 5a:15:92:87:2f:38:54:81:15:16:77:1a:e9:00:db:db:28:41: 40:57:50:3a:ae:6d:03:d5:50:63:34:22:17:54:f8:22:e3:58: 7d:51:a2:1b:21:fb:30:d3:c7:ab:e4:50:22:a6:c6:a5:40:fa: 2f:e7:4c:a8:37:82:c5:2d:a6:66:ad:35:1b:4d:d6:4e:f1:da: ca:83:45:c5:a0:6f:33:b5:a6:c6:e4:52:5d:91:0d:01:90:b8: 32:38:5c:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwNDI0MTUyMDM1WhcNMjUwNTAxMTUyMDM1WjAYMRYwFAYD VQQDEw02ODBhNTZjNC1lNGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIXne4i4vQIHthvUyX/bCWg7yx06F81kHsbaOC3LuMEyhRHKtyEn+7YCO6Pp bHhg+QzdE39X5AMSZHBdW7GbmO6o8uG4uK5docSeKavRSbucb4T5jSlwQey0ljVZ Q913moISBV0HvPGEykKjmCV/qydMwwhKkWo9LH3jI+aCst7ieMwzA5j3oIgpCs1t SuPT7W6otHRaJ+1u4f8NdFcIdvsMqu4bIeUwt06Fqbu2ICcOPbGf+YYbVcDxjFmB PAX6mFKtITkVEVa3VFrv23y/DflpPQwL7yNfS83ICp7E2Bj34HVjkDw6SKboNOOj s3IC5ieiEn1jsLo2Aax2QShytQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyJikvh /BNqp1VlncjNnQxBPptRMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT3WIfQt+weAnkqDQmSl5ZAFXXu+qaZBtJkC0KKo3vtAlHaieZu+fX /5BgvCLam967gRjJep1JEapkauvay0/oerDXDvmIJ/oueAjP9oUfO7cQjbmkhP2b u5iY/k5xQdIad+09Mo64rcjGaRT4HN3k7YP/CDoF6GtRA/qHMlrri0F92PMsY5Qr rdK/jUlanCwTlcLETf8MszsTARsyzyK2OslaFZKHLzhUgRUWdxrpANvbKEFAV1A6 rm0D1VBjNCIXVPgi41h9UaIbIfsw08er5FAipsalQPov50yoN4LFLaZmrTUbTdZO 8drKg0XFoG8ztabG5FJdkQ0BkLgyOFzS -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:53 2025 by rpki-client