$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: VwEHRLxEqPoHj0KkNZbMksy/c1e3VoMSB97q+EMT7fU= Subject key identifier: E2:6A:16:65:30:D9:0D:7D:89:02:50:56:E4:36:76:F1:5D:86:B6:B0 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0B9C Signing time: Thu 24 Apr 2025 18:53:39 +0000 Manifest this update: Thu 24 Apr 2025 18:53:39 +0000 Manifest next update: Thu 01 May 2025 18:53:39 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: SBjJcrj1x+Bbs9DDF5nyLKxh8tpPM2q517dkixzOsRw=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Apr 24 18:53:39 2025 GMT Not After : May 1 18:53:39 2025 GMT Subject: CN=680a88b3-7051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dc:cb:37:c8:13:b6:80:b8:86:db:56:ec:a9: 3f:22:9f:e6:ce:21:ab:83:a8:cb:7b:ba:c0:21:0b: 0e:84:fa:35:63:48:08:5e:61:70:b4:9b:30:e4:59: 1a:c0:21:95:6e:ab:49:33:a7:bc:4b:75:b0:17:bd: 5f:57:63:93:ea:7b:68:13:aa:34:34:dc:d2:68:af: 7a:50:b9:f3:6b:08:ae:2b:c1:ce:59:d6:f1:59:0d: f7:14:08:30:34:da:27:ba:ea:07:ce:53:7a:a2:7e: f9:8f:f7:d2:a4:1e:4e:3d:e9:1f:d1:da:3f:f9:6a: b9:3e:11:17:8b:de:3a:7d:e6:3a:53:bf:d2:02:34: 5a:e6:6a:21:c1:b8:13:e1:eb:e6:38:d0:fc:89:d0: 0a:ae:9b:ee:27:3e:79:e6:ec:b7:9f:c7:71:59:73: 4b:ea:00:50:3d:44:91:bc:46:14:e1:06:07:b0:3a: 0f:c6:ac:54:52:b5:9a:8f:6e:63:ed:d8:3e:c5:be: 32:1d:0f:58:2c:c2:ff:dc:cb:4c:06:a4:f7:6e:be: 1e:a1:57:fd:61:98:52:82:7f:08:3c:0a:51:c0:b0: aa:d5:99:bf:34:08:d6:2c:9f:66:2d:1b:c5:51:cf: e7:23:3b:8f:31:5b:0e:9b:6b:e9:05:a0:fa:78:67: 51:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6A:16:65:30:D9:0D:7D:89:02:50:56:E4:36:76:F1:5D:86:B6:B0 X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:69:b0:da:c8:96:21:4b:0a:de:14:fb:ec:39:b6:7a:c9:b8: cc:df:c8:3d:47:75:58:40:d7:1b:dd:21:c3:28:ee:b1:94:7b: 1f:95:a9:e2:95:67:a4:16:59:f6:3e:b2:21:45:e4:f4:b7:a4: ac:53:f3:61:5f:86:ef:7d:77:a5:e7:da:46:f9:c5:f5:f8:7e: 46:fd:06:36:30:41:e0:d5:bf:ec:56:b1:5d:7a:63:54:4f:e9: 96:5f:6b:c0:44:94:92:2c:ad:8d:b8:3d:d0:2a:7d:89:1d:6d: 03:e6:11:29:48:dc:26:3e:f2:10:0d:9c:7d:ce:21:88:cf:4f: 0f:53:fa:46:bb:6a:c5:77:ed:2d:39:00:7e:9d:7e:7b:78:29: e2:8d:3e:6b:c1:1b:ad:48:20:56:cb:f9:be:61:f1:ca:ca:b9: d4:14:5e:71:64:4d:51:6e:10:fd:5a:80:8a:47:c7:47:f5:ce: 34:16:29:bc:11:7e:4c:ae:9e:ee:c1:e8:e7:d3:f2:61:e2:ac: bd:6d:7f:60:e6:24:b7:a9:4a:65:ee:02:3f:77:11:1b:28:4c: 6d:fa:5a:f0:ce:56:71:55:be:1c:ce:40:d3:f2:2f:cd:4e:7a: 34:8b:4d:9b:30:64:35:fa:98:34:eb:bf:1a:25:56:2d:5e:be: 26:38:c2:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUwNDI0MTg1MzM5WhcNMjUwNTAxMTg1MzM5WjAYMRYwFAYD VQQDEw02ODBhODhiMy03MDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9zLN8gTtoC4httW7Kk/Ip/mziGrg6jLe7rAIQsOhPo1Y0gIXmFwtJsw5Fka wCGVbqtJM6e8S3WwF71fV2OT6ntoE6o0NNzSaK96ULnzawiuK8HOWdbxWQ33FAgw NNonuuoHzlN6on75j/fSpB5OPekf0do/+Wq5PhEXi946feY6U7/SAjRa5mohwbgT 4evmOND8idAKrpvuJz555uy3n8dxWXNL6gBQPUSRvEYU4QYHsDoPxqxUUrWaj25j 7dg+xb4yHQ9YLML/3MtMBqT3br4eoVf9YZhSgn8IPApRwLCq1Zm/NAjWLJ9mLRvF Uc/nIzuPMVsOm2vpBaD6eGdRHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJqFmUw 2Q19iQJQVuQ2dvFdhrawMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJabDayJYhSwreFPvsObZ6ybjM38g9R3VYQNcb3SHDKO6xlHsflani lWekFln2PrIhReT0t6SsU/NhX4bvfXel59pG+cX1+H5G/QY2MEHg1b/sVrFdemNU T+mWX2vARJSSLK2NuD3QKn2JHW0D5hEpSNwmPvIQDZx9ziGIz08PU/pGu2rFd+0t OQB+nX57eCnijT5rwRutSCBWy/m+YfHKyrnUFF5xZE1RbhD9WoCKR8dH9c40Fim8 EX5Mrp7uwejn0/Jh4qy9bX9g5iS3qUpl7gI/dxEbKExt+lrwzlZxVb4czkDT8i/N Tno0i02bMGQ1+pg0678aJVYtXr4mOMKT -----END CERTIFICATE-----Generated at Sat Apr 26 14:07:57 2025 by rpki-client