$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: TKq1fjRlyELpz84nHX5gwyTIdUjrasVDA/6cbNFnGBE= Subject key identifier: 1D:F9:19:1D:DE:A6:53:6D:2D:5F:C2:0A:86:7F:D6:28:03:4C:7D:28 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 034B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 0343 Signing time: Fri 25 Apr 2025 00:49:06 +0000 Manifest this update: Fri 25 Apr 2025 00:49:06 +0000 Manifest next update: Fri 02 May 2025 00:49:06 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: 8C7Zi2Jbr6nv8NtpQXL2dH7cAhAyXmazDaog0BZGR4w=) 2: 8FA9D71068D611EEAD2D927FC4F9AE02.roa (hash: KckJvrN2O9+k1z94FA9x81wNFJzF7Y7yD41j1qhB6N4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Apr 25 00:49:06 2025 GMT Not After : May 2 00:49:06 2025 GMT Subject: CN=680adc02-deb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:89:1d:d4:a8:8a:75:9b:48:e9:eb:a9:f7:3d: 3f:3d:d7:a5:09:fa:29:9f:d7:72:24:18:4e:7b:6f: 3f:4b:29:38:cf:81:0a:17:11:10:74:5a:fd:3f:fb: dd:18:8f:45:ce:7d:55:33:3e:ca:38:c3:0d:ec:7d: a4:23:8b:2d:de:38:37:48:0c:54:ec:28:9c:76:71: f0:ca:e3:55:db:9b:ee:11:fb:6f:e6:19:6f:b0:6f: 7c:b1:57:1c:a3:de:f4:29:87:2d:4d:f7:cf:be:d6: 19:93:4c:c9:df:91:8f:c1:44:9c:43:09:ec:48:13: fa:c0:67:b1:20:cb:54:d6:06:ca:78:23:a9:a3:98: a2:fa:56:b6:01:e4:ed:46:52:6f:65:95:e1:f1:02: d2:ed:3d:3d:45:39:a8:ac:df:b5:66:6b:ac:58:e3: 7a:db:23:2b:0c:7e:c7:9e:54:03:6b:f1:a7:d1:df: 54:53:56:21:47:a6:b9:c9:ab:3b:b6:3d:53:79:00: ba:aa:27:87:66:a7:6a:c7:15:c3:67:ab:00:94:dd: 72:32:b0:72:0d:ca:4e:dc:b3:27:76:d2:81:83:56: f4:4e:8f:29:09:77:f9:b8:df:d0:31:6d:b0:3d:f6: 6c:82:40:47:94:aa:59:5a:76:f2:54:59:67:c6:57: 48:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F9:19:1D:DE:A6:53:6D:2D:5F:C2:0A:86:7F:D6:28:03:4C:7D:28 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:60:e1:16:24:bd:c6:7c:43:c7:80:ea:0f:1e:fe:f4:40:24: 94:24:78:b9:16:fe:c6:30:b4:d5:3f:e9:ca:9b:49:be:84:55: 64:c4:ef:e5:b8:ad:0d:09:b8:62:cc:24:b4:b3:93:55:97:0a: 36:aa:16:90:31:14:24:9f:4b:fb:5e:8a:35:f7:97:1f:02:10: d1:77:ca:f1:3d:b8:bf:84:8f:25:56:af:8d:ce:40:e8:d3:3e: 88:a9:bd:0c:cd:fa:0c:4f:92:b8:c9:a9:f6:97:a7:a6:66:37: 10:04:94:dc:63:f0:de:96:7b:f2:7d:21:d7:d2:51:cc:a1:11: 84:8b:72:8b:0b:27:fd:d2:70:da:88:e9:c0:6f:03:05:e4:68: db:36:3c:13:8f:18:4b:9d:87:f0:b5:58:48:bf:d8:35:13:85: 85:3c:a7:7c:13:06:d4:d7:ef:b4:3f:4c:cc:68:3d:16:74:9b: 3f:f8:a3:07:d1:27:a3:47:c1:b6:32:2c:8c:8f:f2:fa:f7:30: 66:23:20:79:72:98:9e:67:51:30:c3:5a:9f:3b:0d:08:94:e8: bd:f7:b2:fe:db:a9:8a:33:f4:6c:93:c8:e8:85:c7:b3:1e:68: 7b:0c:a1:5c:e1:37:c0:90:9f:21:21:a4:b3:3c:f6:5a:1f:6c: de:7a:b3:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNDI1MDA0OTA2WhcNMjUwNTAyMDA0OTA2WjAYMRYwFAYD VQQDEw02ODBhZGMwMi1kZWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYkd1KiKdZtI6eup9z0/PdelCfopn9dyJBhOe28/Syk4z4EKFxEQdFr9P/vd GI9Fzn1VMz7KOMMN7H2kI4st3jg3SAxU7CicdnHwyuNV25vuEftv5hlvsG98sVcc o970KYctTffPvtYZk0zJ35GPwUScQwnsSBP6wGexIMtU1gbKeCOpo5ii+la2AeTt RlJvZZXh8QLS7T09RTmorN+1ZmusWON62yMrDH7HnlQDa/Gn0d9UU1YhR6a5yas7 tj1TeQC6qieHZqdqxxXDZ6sAlN1yMrByDcpO3LMndtKBg1b0To8pCXf5uN/QMW2w PfZsgkBHlKpZWnbyVFlnxldI4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB35GR3e plNtLV/CCoZ/1igDTH0oMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaYOEWJL3GfEPHgOoPHv70QCSUJHi5Fv7GMLTVP+nKm0m+hFVkxO/l uK0NCbhizCS0s5NVlwo2qhaQMRQkn0v7Xoo195cfAhDRd8rxPbi/hI8lVq+NzkDo 0z6Iqb0MzfoMT5K4yan2l6emZjcQBJTcY/DelnvyfSHX0lHMoRGEi3KLCyf90nDa iOnAbwMF5GjbNjwTjxhLnYfwtVhIv9g1E4WFPKd8EwbU1++0P0zMaD0WdJs/+KMH 0SejR8G2MiyMj/L69zBmIyB5cpieZ1Eww1qfOw0IlOi997L+26mKM/Rsk8johcez Hmh7DKFc4TfAkJ8hIaSzPPZaH2zeerN+ -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:02 2025 by rpki-client