$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: H/svjx8oFcKBmN3YwqnAZ4pEQKaXAbisavIeCc1Fz9o= Subject key identifier: 2C:07:FB:EA:D8:F6:77:3E:6D:F9:A8:63:6E:B8:B5:45:0A:92:8E:43 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3494 Signing time: Sat 26 Apr 2025 14:19:20 +0000 Manifest this update: Sat 26 Apr 2025 14:19:19 +0000 Manifest next update: Sat 03 May 2025 14:19:19 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: kF7SXS6M8uwApP9PFyWNaC6+9NTTIPsSr2V64t+tMk4=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: LKJoEQzPb1sMSVb2vDN9+BembbPiOElHd7gaQSKpvPY=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: 0Rx8HN5jmUeLiu9CtnRcyXpipRICUg/GHNM7vipXeYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Apr 26 14:19:19 2025 GMT Not After : May 3 14:19:19 2025 GMT Subject: CN=680ceb67-6580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5e:7b:42:8f:82:15:43:3b:47:8f:d3:5b:2f: e1:78:2c:22:10:ce:c7:62:c8:65:df:cb:94:d2:9c: c6:02:c9:da:37:18:a2:78:5d:75:3e:1b:86:d2:78: f7:0f:5c:4a:91:b9:2b:c0:b2:25:cf:97:0e:f1:05: fa:45:3f:b1:a6:8e:d9:bc:68:c5:5a:10:8f:32:85: d0:71:92:7a:f5:7f:e3:1d:8e:33:55:62:51:51:f5: 3a:08:a7:12:41:fe:79:88:f8:96:a7:97:b7:f9:e5: a3:26:ca:4f:1d:2d:59:cb:a5:c2:68:e0:e2:8c:c9: 42:bb:fe:5a:18:c8:d0:ff:c9:39:34:71:2f:0c:7f: 39:81:2b:ff:c9:2a:f4:27:ef:b3:ce:5b:8f:5d:e5: 2d:44:f6:b2:59:c5:4f:2a:a6:c7:c4:7a:70:d5:3d: d5:64:bc:1f:cb:c8:b3:34:0d:a8:a9:cf:de:e3:ed: 76:45:5e:b0:58:b2:02:2a:c7:83:1f:ca:59:e5:cd: 85:b2:b2:38:e8:3c:b2:b9:20:cd:e1:32:ec:c1:e9: 24:92:83:45:33:9d:83:07:99:20:a4:5d:65:1e:b8: c3:76:f7:a4:f5:b0:fa:02:0f:c3:88:2b:04:17:1b: 88:f5:5e:83:d0:77:73:ad:f0:02:85:7a:ac:6d:12: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:07:FB:EA:D8:F6:77:3E:6D:F9:A8:63:6E:B8:B5:45:0A:92:8E:43 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:39:ab:0c:da:4c:73:ca:50:2c:d7:bb:01:19:24:ef:a8:4e: d2:6b:d4:51:98:71:7c:9a:25:2a:18:90:1b:49:7f:7a:0c:b1: 8a:9f:9c:cc:7a:73:01:06:f0:62:0f:88:fd:d0:ae:da:1a:ed: 61:3c:01:60:91:f3:ed:ba:19:fa:88:eb:6b:0a:df:30:d8:ff: a6:85:eb:14:5e:3e:d7:4c:82:6e:94:06:eb:b9:2f:af:e9:8e: 57:ba:0f:8d:de:f7:ca:1b:62:55:24:62:d7:59:b7:d3:f3:48: 21:71:63:fe:ee:c6:0d:77:16:ce:a3:52:be:17:c1:24:67:8a: e6:25:37:70:25:7b:31:36:11:5c:23:50:75:0c:48:33:ff:99: 4a:89:5b:df:f1:40:0e:d0:c8:c9:67:28:d5:45:03:89:a6:68: 04:ef:8f:ed:f3:69:41:f9:53:c2:fd:f7:92:ef:ff:3f:f1:4a: 95:75:51:e5:da:c0:9f:54:32:8e:b2:96:1f:f3:68:12:dc:51: 20:3c:7f:91:e6:67:b3:84:a4:5c:04:c0:a8:be:82:2d:19:e5: 87:f8:33:19:5d:13:40:44:9d:b6:66:b0:2b:dd:12:9a:e6:62: 55:4c:38:fd:6f:f2:c0:72:7a:87:9d:80:fd:4a:c9:84:71:b7: 82:8a:d2:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNDI2MTQxOTE5WhcNMjUwNTAzMTQxOTE5WjAYMRYwFAYD VQQDEw02ODBjZWI2Ny02NTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAol57Qo+CFUM7R4/TWy/heCwiEM7HYshl38uU0pzGAsnaNxiieF11PhuG0nj3 D1xKkbkrwLIlz5cO8QX6RT+xpo7ZvGjFWhCPMoXQcZJ69X/jHY4zVWJRUfU6CKcS Qf55iPiWp5e3+eWjJspPHS1Zy6XCaODijMlCu/5aGMjQ/8k5NHEvDH85gSv/ySr0 J++zzluPXeUtRPayWcVPKqbHxHpw1T3VZLwfy8izNA2oqc/e4+12RV6wWLICKseD H8pZ5c2FsrI46DyyuSDN4TLswekkkoNFM52DB5kgpF1lHrjDdvek9bD6Ag/DiCsE FxuI9V6D0HdzrfAChXqsbRJQSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwH++rY 9nc+bfmoY264tUUKko5DMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEOasM2kxzylAs17sBGSTvqE7Sa9RRmHF8miUqGJAbSX96DLGKn5zM enMBBvBiD4j90K7aGu1hPAFgkfPtuhn6iOtrCt8w2P+mhesUXj7XTIJulAbruS+v 6Y5Xug+N3vfKG2JVJGLXWbfT80ghcWP+7sYNdxbOo1K+F8EkZ4rmJTdwJXsxNhFc I1B1DEgz/5lKiVvf8UAO0MjJZyjVRQOJpmgE74/t82lB+VPC/feS7/8/8UqVdVHl 2sCfVDKOspYf82gS3FEgPH+R5mezhKRcBMCovoItGeWH+DMZXRNARJ22ZrAr3RKa 5mJVTDj9b/LAcnqHnYD9SsmEcbeCitK5 -----END CERTIFICATE-----Generated at Sun Apr 27 01:27:50 2025 by rpki-client