$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft File: cL0eSV4lCyLieYKWlpeFotd9c38.mft (raw, json) Hash identifier: ri7UZFWKBKKdthhBu6BRHn6sd5z2lKLnex0zCF0QfBk= Subject key identifier: 52:BA:67:BE:00:BD:DD:8D:B2:36:95:21:8C:1D:25:F5:73:E4:BA:99 Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 0733 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft Manifest number: 0724 Signing time: Thu 24 Apr 2025 21:37:35 +0000 Manifest this update: Thu 24 Apr 2025 21:37:34 +0000 Manifest next update: Thu 01 May 2025 21:37:34 +0000 Files and hashes: 1: cL0eSV4lCyLieYKWlpeFotd9c38.crl (hash: goDtLH9Fh6cxEpKL/Mtkxy5YGBw4yXwlXcKuMQiZKwg=) 2: AEFB1B262FB111EB89A04D37C4F9AE02.roa (hash: Wg8lhii6fS+ISW5JHYHpOa6pzoQlnpj7gMJiQaNStNA=) 3: D992CDCE2FBC11EB8E017F5CC4F9AE02.roa (hash: qKRjykDno1daJfQQjFQDgdcngx+c1WC/QlLs58bkJD4=) 4: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (hash: BkTcuyEezWUWEkhN6v2tftRUBORfyEfzklVup25IVEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: Apr 24 21:37:34 2025 GMT Not After : May 1 21:37:34 2025 GMT Subject: CN=680aaf1f-3485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:68:2a:7c:b6:8a:d9:38:4d:e0:e2:50:8d:ef: 64:00:80:ac:30:5e:d3:88:c6:92:be:25:7a:37:b6: 2f:01:06:67:6a:66:ad:82:66:24:7c:8d:06:e3:f5: 9b:df:ae:31:fe:c7:28:13:58:59:70:2b:48:0c:f2: 5c:62:45:23:ba:0b:30:62:b9:55:ad:11:79:11:e0: bf:b1:df:fc:0d:fb:a4:96:74:dd:67:30:6e:ea:8b: 9e:a1:2f:f4:dc:46:74:aa:24:31:4a:b2:24:dc:24: 0d:03:45:23:1c:f8:d9:44:f8:b4:9e:72:ea:53:c4: c8:8d:ad:fe:34:17:0d:66:02:7c:a4:7a:61:cd:bf: 96:4d:fb:2c:bb:3f:99:9b:c0:bd:c8:d1:33:46:59: 5a:8a:a3:a5:0f:6c:e2:74:86:e8:fa:d3:18:a6:d3: 58:a4:8e:d1:ad:6d:22:0c:14:6e:2f:91:be:c9:7d: 5d:2b:c7:b4:fb:a3:e9:b4:1d:7e:12:2c:f4:13:f6: 48:f3:ff:7c:cf:9b:d1:59:96:67:9e:60:b9:cc:44: b0:66:eb:72:c7:bc:ce:14:5f:b2:50:c7:9f:3a:02: b0:11:dd:f9:dc:06:cd:f3:c9:94:1b:a5:2c:e2:2a: 26:d0:83:b1:0f:b3:85:ad:43:d9:af:24:e7:61:20: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BA:67:BE:00:BD:DD:8D:B2:36:95:21:8C:1D:25:F5:73:E4:BA:99 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:2b:32:94:e1:34:e1:c5:34:07:b7:60:e3:99:d8:ad:40:ca: 2d:b6:d3:52:e0:2e:23:a2:b0:75:5c:11:33:6d:a7:f9:3d:06: ab:b3:92:78:89:de:6f:e8:32:53:51:df:ee:b2:a4:0d:47:a1: a1:5b:a4:17:fb:62:ba:74:2b:a8:c3:02:12:34:fa:0f:a4:02: fa:18:e1:4a:08:93:d3:c3:bc:fb:6c:1c:34:18:da:05:19:35: ae:6e:97:68:a5:aa:d3:63:b4:13:9d:dc:5f:9e:1e:0f:29:46: bc:38:d8:e6:a8:1f:f0:68:7b:0a:8d:c9:e5:cb:42:18:65:b8: 9a:a1:87:a2:6f:4f:08:65:6f:9f:69:fd:3c:93:c3:d6:69:fa: 71:5f:42:9a:b3:6e:78:94:8f:b1:11:51:a7:db:a4:53:19:38: 95:d9:6f:3b:d3:53:2f:98:74:82:26:2b:e2:bc:5d:da:02:04: 86:9a:7e:d9:15:53:a0:d0:b8:4d:e3:21:99:73:ce:9c:bd:1b: cf:64:20:50:74:45:48:9a:47:e1:36:55:4f:6e:22:ea:25:70: f3:da:29:79:29:ad:84:75:39:4d:b2:85:e7:0b:d1:46:36:5d: 5d:7b:2c:8f:3d:16:20:90:1b:75:62:5f:94:e9:87:d2:9d:f0: 1d:b0:d4:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUwNDI0MjEzNzM0WhcNMjUwNTAxMjEzNzM0WjAYMRYwFAYD VQQDEw02ODBhYWYxZi0zNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WgqfLaK2ThN4OJQje9kAICsMF7TiMaSviV6N7YvAQZnamatgmYkfI0G4/Wb 364x/scoE1hZcCtIDPJcYkUjugswYrlVrRF5EeC/sd/8DfuklnTdZzBu6oueoS/0 3EZ0qiQxSrIk3CQNA0UjHPjZRPi0nnLqU8TIja3+NBcNZgJ8pHphzb+WTfssuz+Z m8C9yNEzRllaiqOlD2zidIbo+tMYptNYpI7RrW0iDBRuL5G+yX1dK8e0+6PptB1+ Eiz0E/ZI8/98z5vRWZZnnmC5zESwZutyx7zOFF+yUMefOgKwEd353AbN88mUG6Us 4iom0IOxD7OFrUPZryTnYSC+3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFK6Z74A vd2NsjaVIYwdJfVz5LqZMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFDNC9GQzY3MkI3MjJGQUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5 TGllWUtXbHBlRm90ZDljMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9KzKU4TThxTQHt2DjmditQMotttNS4C4jorB1XBEzbaf5PQars5J4 id5v6DJTUd/usqQNR6GhW6QX+2K6dCuowwISNPoPpAL6GOFKCJPTw7z7bBw0GNoF GTWubpdoparTY7QTndxfnh4PKUa8ONjmqB/waHsKjcnly0IYZbiaoYeib08IZW+f af08k8PWafpxX0Kas254lI+xEVGn26RTGTiV2W8701MvmHSCJivivF3aAgSGmn7Z FVOg0LhN4yGZc86cvRvPZCBQdEVImkfhNlVPbiLqJXDz2il5Ka2EdTlNsoXnC9FG Nl1deyyPPRYgkBt1Yl+U6YfSnfAdsNR3 -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:20 2025 by rpki-client