$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft File: CK7T4dy27XdCMDzv9H3gLZKz7eU.mft (raw, json) Hash identifier: w/doZmPkFhT+X3Mpl17MFYBl/0YVXfbgOb9KOVz3vzw= Subject key identifier: E3:7B:33:A7:B6:86:A5:38:6D:20:7D:AD:D8:F5:24:3D:CA:8D:A8:FD Authority key identifier: 08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5 Certificate issuer: /CN=A91ED073/serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft Manifest number: 01CB Signing time: Fri 25 Apr 2025 02:04:09 +0000 Manifest this update: Fri 25 Apr 2025 02:04:08 +0000 Manifest next update: Fri 02 May 2025 02:04:08 +0000 Files and hashes: 1: CK7T4dy27XdCMDzv9H3gLZKz7eU.crl (hash: Musta9gF5H7GsNhYNHZhvCfu91HBmV5P032E5vYGzeI=) 2: 6DDD4756EEC411EEA4BB703CC4F9AE02.roa (hash: 8+VuZ7fIxTmaLVYpnHMJUk/ecoQHiqToC0QiVIOWMis=) 3: 6EB41DC6EEC411EEA4BB703CC4F9AE02.roa (hash: UKZjo7nlv5xaEfM2Q5iGETEP+0bko/kMccsOgiKgCVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED073, serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5 Validity Not Before: Apr 25 02:04:08 2025 GMT Not After : May 2 02:04:08 2025 GMT Subject: CN=680aed99-fb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:91:c2:90:af:89:d0:7d:40:97:e6:45:7e:7e: ed:0d:98:81:43:b4:d0:f4:62:23:fb:5f:15:13:1e: f0:6f:ef:a9:e3:e9:b7:80:24:da:aa:25:5c:c9:d7: fa:18:89:e1:2f:4f:f7:c1:64:71:8f:9b:1e:ad:60: 20:69:66:79:fa:ff:79:75:56:0b:19:73:2e:a1:28: 20:cd:ab:83:53:11:cb:8f:4b:18:07:d8:aa:7b:f7: e1:1a:31:3b:d4:1a:74:75:6f:59:71:35:ed:85:34: 31:c4:1a:a8:bb:a8:dc:f3:ef:df:09:39:b8:19:b7: cd:d3:cc:3d:db:fe:c7:8a:3e:a0:3e:b4:db:37:6d: 0c:0a:b8:6f:6b:b6:73:d0:06:94:aa:1f:5d:7a:d2: 50:5e:86:3f:79:61:67:b0:3e:99:b1:e6:03:4e:18: 49:ab:45:32:f8:a6:58:1b:3e:d2:1e:d8:e8:a0:c0: ac:7f:90:a0:90:da:8f:25:0c:81:f2:91:14:16:a8: c4:6b:10:9c:df:8d:f2:11:e9:c2:8a:9d:0b:fe:05: a4:6c:b7:49:8b:a8:38:2c:d3:1a:da:0f:aa:71:61: e0:3e:33:ed:8a:09:9f:b4:bc:8a:aa:c7:2e:0b:14: df:34:d9:22:1d:50:68:d1:97:45:0a:48:a8:63:9f: b8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:7B:33:A7:B6:86:A5:38:6D:20:7D:AD:D8:F5:24:3D:CA:8D:A8:FD X509v3 Authority Key Identifier: keyid:08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:26:11:f6:7c:d4:00:05:53:d5:e8:38:84:2b:bf:66:e8:39: a9:7b:b8:bd:e5:6c:0d:64:6a:bc:2b:f5:32:d3:8d:dd:71:50: b7:83:cb:fd:dd:81:0e:21:cd:f7:8d:57:65:a0:c5:cd:c7:3f: 52:1d:fd:54:03:9b:08:3d:97:68:61:c6:69:bc:97:b7:7c:14: 70:8a:0f:29:b3:5d:c2:40:5f:ca:20:67:c1:f1:a3:ac:c9:42: 59:02:bd:16:c3:d2:ef:de:31:db:ca:b3:29:2b:7f:b7:e6:65: 9a:df:c2:a5:a9:b6:26:27:f8:cd:33:24:4e:26:ab:9e:85:69: 4f:9c:c5:6c:d1:14:cb:98:1f:4e:38:24:8c:3e:26:4f:f9:22: fe:38:e8:a3:51:af:5e:47:29:cb:63:33:e4:99:6f:ae:11:7a: 80:e0:09:2e:5d:f9:eb:69:3e:17:b1:9e:cd:e3:71:1c:77:ba: ef:44:e0:ab:fd:43:23:cd:b8:10:ae:ba:b9:4f:4d:ef:45:26: a0:b1:1f:3a:9f:8b:76:09:bd:11:ac:7d:3b:2d:e3:26:ba:20: fc:fb:56:34:e3:e7:45:f5:53:06:49:10:84:f8:ed:c3:68:60: 09:fb:6d:29:dc:00:ad:0f:55:e5:dc:e9:0c:88:ff:2c:15:5f: 59:88:f5:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQwNzMxMTAvBgNVBAUTKDA4QUVEM0UxRENCNkVENzc0MjMwM0NFRkY0N0RFMDJE OTJCM0VERTUwHhcNMjUwNDI1MDIwNDA4WhcNMjUwNTAyMDIwNDA4WjAYMRYwFAYD VQQDEw02ODBhZWQ5OS1mYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5HCkK+J0H1Al+ZFfn7tDZiBQ7TQ9GIj+18VEx7wb++p4+m3gCTaqiVcydf6 GInhL0/3wWRxj5serWAgaWZ5+v95dVYLGXMuoSggzauDUxHLj0sYB9iqe/fhGjE7 1Bp0dW9ZcTXthTQxxBqou6jc8+/fCTm4GbfN08w92/7Hij6gPrTbN20MCrhva7Zz 0AaUqh9detJQXoY/eWFnsD6ZseYDThhJq0Uy+KZYGz7SHtjooMCsf5CgkNqPJQyB 8pEUFqjEaxCc343yEenCip0L/gWkbLdJi6g4LNMa2g+qcWHgPjPtigmftLyKqscu CxTfNNkiHVBo0ZdFCkioY5+4EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFON7M6e2 hqU4bSB9rdj1JD3Kjaj9MB8GA1UdIwQYMBaAFAiu0+Hctu13QjA87/R94C2Ss+3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDA3My9GNEI0Q0E1MjY0 QTQxMUVEQTA4NzZCMTZDNEY5QUUwMi9DSzdUNGR5MjdYZENNRHp2OUgzZ0xaS3o3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NLN1Q0ZHkyN1hkQ01EenY5SDNnTFpLejdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDA3My9GNEI0Q0E1MjY0QTQxMUVEQTA4NzZCMTZDNEY5QUUwMi9DSzdUNGR5MjdY ZENNRHp2OUgzZ0xaS3o3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4JhH2fNQABVPV6DiEK79m6Dmpe7i95WwNZGq8K/Uy043dcVC3g8v9 3YEOIc33jVdloMXNxz9SHf1UA5sIPZdoYcZpvJe3fBRwig8ps13CQF/KIGfB8aOs yUJZAr0Ww9Lv3jHbyrMpK3+35mWa38KlqbYmJ/jNMyROJquehWlPnMVs0RTLmB9O OCSMPiZP+SL+OOijUa9eRynLYzPkmW+uEXqA4AkuXfnraT4XsZ7N43Ecd7rvROCr /UMjzbgQrrq5T03vRSagsR86n4t2Cb0RrH07LeMmuiD8+1Y04+dF9VMGSRCE+O3D aGAJ+20p3ACtD1Xl3OkMiP8sFV9ZiPW8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:43 2025 by rpki-client