$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: XrZNaqsKUhxJqGh/Q8KFt3IMGW0kR/dSO7/Q8IP3xL8= Subject key identifier: 1E:5B:0B:21:5C:87:E5:8F:ED:AB:08:4F:CA:F0:A9:D0:45:16:5D:1B Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0AF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0BC4 Signing time: Thu 24 Apr 2025 19:18:17 +0000 Manifest this update: Thu 24 Apr 2025 19:18:16 +0000 Manifest next update: Thu 01 May 2025 19:18:16 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: dNLx0m6XMHDNCDK3xVXaXTH1frviGqZ4UYCasvr/3XM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2807 (0xaf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Apr 24 19:18:16 2025 GMT Not After : May 1 19:18:16 2025 GMT Subject: CN=680a8e79-77a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:27:4e:32:79:3f:46:4f:f7:28:d2:4c:ac:16: 4c:5a:8e:aa:90:6f:74:85:af:ff:56:a1:41:6b:4d: 12:5e:aa:31:47:bd:84:ff:79:20:ee:5f:aa:ca:15: b9:7a:48:85:c5:e6:33:27:f6:bc:6b:4d:b4:d0:37: 47:36:f9:f3:e3:53:67:8f:86:26:a0:06:96:dd:93: f8:76:d7:b1:9a:b8:47:f0:25:79:44:15:5c:65:73: 7c:e0:bd:13:65:85:40:6e:8b:3f:91:a0:a8:8f:94: b1:08:80:2d:e9:80:95:dc:a2:41:04:4a:4d:4b:14: 4f:dc:c0:ea:06:33:34:cf:9c:aa:5d:25:59:52:a2: 94:fc:fe:67:26:e9:db:60:2d:d7:ed:18:42:3e:78: bc:4c:4c:d7:59:4d:8c:69:39:1c:77:db:f6:0b:06: 8d:85:e2:36:7a:67:d0:53:8c:b8:fd:8d:e2:a3:7c: 93:6b:11:22:5d:e2:c0:a0:bd:fb:c1:76:64:8a:fd: ee:f8:5a:8c:d3:3d:e9:46:a6:b5:1c:e9:03:4f:70: 7a:16:f7:78:be:5e:a5:09:a8:db:01:d0:7c:9b:02: c2:8d:10:9a:aa:e2:34:af:94:5b:68:71:c3:f1:98: de:95:99:14:b1:de:84:9c:eb:f1:af:e7:2e:13:09: e5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5B:0B:21:5C:87:E5:8F:ED:AB:08:4F:CA:F0:A9:D0:45:16:5D:1B X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:96:85:dc:19:49:af:32:02:91:44:6d:6b:a3:de:2a:1c:3e: d8:c0:e3:e2:70:5d:27:d4:61:17:c1:50:45:5e:c9:77:78:a1: e2:9e:a7:2d:2e:f7:38:66:41:64:3b:8e:ec:67:fa:b4:e4:5c: f3:24:a4:0d:ff:07:f3:f7:5a:91:3a:ae:ef:74:9b:7e:2e:3a: b0:4c:14:c5:bb:e1:78:43:75:4f:61:50:ba:dd:0d:23:d1:ae: ee:fe:e8:9b:b2:41:ad:3d:e6:6d:7a:13:69:c1:8f:1f:77:c9: a7:13:3a:0d:06:1e:35:5a:74:f3:42:65:37:49:af:6d:84:2b: 2b:9a:7f:53:c4:ca:b9:9d:fb:19:38:bf:5d:f5:75:cb:38:24: ff:55:98:87:02:e8:0a:1b:1d:83:b0:21:f5:de:5e:c8:bd:d6: ba:ba:c8:1c:07:46:05:93:d9:cf:23:08:6f:a1:04:1a:73:ca: 51:a1:a2:79:8f:fa:c0:f8:91:e6:4f:ec:78:eb:7c:f4:06:78: 63:12:39:ad:8c:9c:8d:dc:6d:22:fe:8c:8d:66:60:1a:7e:52: ba:9c:bb:a5:fd:37:71:52:2e:f7:33:b1:19:f4:d3:75:df:07: 82:97:9b:1c:67:46:a1:c9:dd:0f:c0:97:4b:15:4a:cb:ad:b1: b2:34:0a:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwNDI0MTkxODE2WhcNMjUwNTAxMTkxODE2WjAYMRYwFAYD VQQDEw02ODBhOGU3OS03N2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSdOMnk/Rk/3KNJMrBZMWo6qkG90ha//VqFBa00SXqoxR72E/3kg7l+qyhW5 ekiFxeYzJ/a8a0200DdHNvnz41Nnj4YmoAaW3ZP4dtexmrhH8CV5RBVcZXN84L0T ZYVAbos/kaCoj5SxCIAt6YCV3KJBBEpNSxRP3MDqBjM0z5yqXSVZUqKU/P5nJunb YC3X7RhCPni8TEzXWU2MaTkcd9v2CwaNheI2emfQU4y4/Y3io3yTaxEiXeLAoL37 wXZkiv3u+FqM0z3pRqa1HOkDT3B6Fvd4vl6lCajbAdB8mwLCjRCaquI0r5RbaHHD 8ZjelZkUsd6EnOvxr+cuEwnlBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5bCyFc h+WP7asIT8rwqdBFFl0bMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGloXcGUmvMgKRRG1ro94qHD7YwOPicF0n1GEXwVBFXsl3eKHinqct Lvc4ZkFkO47sZ/q05FzzJKQN/wfz91qROq7vdJt+LjqwTBTFu+F4Q3VPYVC63Q0j 0a7u/uibskGtPeZtehNpwY8fd8mnEzoNBh41WnTzQmU3Sa9thCsrmn9TxMq5nfsZ OL9d9XXLOCT/VZiHAugKGx2DsCH13l7Ivda6usgcB0YFk9nPIwhvoQQac8pRoaJ5 j/rA+JHmT+x463z0BnhjEjmtjJyN3G0i/oyNZmAaflK6nLul/TdxUi73M7EZ9NN1 3weCl5scZ0ahyd0PwJdLFUrLrbGyNApV -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:39 2025 by rpki-client