$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft File: bBl9pJIs_dxOmMiEbgOn19DkC3E.mft (raw, json) Hash identifier: Ldy9xCj27UnrIOWQs4Ni9qHKZvKIsGWpiYSofaoYMqE= Subject key identifier: DF:4A:82:97:EA:BE:76:1E:A2:05:28:C8:50:52:61:9F:A7:17:12:05 Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 0669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft Manifest number: 0658 Signing time: Thu 24 Apr 2025 22:13:57 +0000 Manifest this update: Thu 24 Apr 2025 22:13:56 +0000 Manifest next update: Thu 01 May 2025 22:13:56 +0000 Files and hashes: 1: bBl9pJIs_dxOmMiEbgOn19DkC3E.crl (hash: YAdJx7oOdgvG9yVKDZHyQnH9tdeWWgZdLmOTEKs5sYY=) 2: ECCDCA04809A11EB9093216EC4F9AE02.roa (hash: qTJ268wwQytdjg2xmDrgJYTCKvbgN+TXWt8f/k8okt0=) 3: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (hash: zfaY1cNWt+kwCxFOi06ByxEpzX/DlmwX7UsrdOWHxWY=) 4: 7D6F53547F0411EBB8CAEE2BC4F9AE02.roa (hash: MuS1D/2+8EGkgIkIccTnkaRbLVS0UhbQOaZ6Z/zRhQ0=) 5: 08C849682F6E11EDA8ABA74BC4F9AE02.roa (hash: IpyajZd4jSVUSR24GGQE7LMlZvvtmRcKtdSc4wuIgfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1641 (0x669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1, serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: Apr 24 22:13:56 2025 GMT Not After : May 1 22:13:56 2025 GMT Subject: CN=680ab7a5-20a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e2:28:66:b9:8e:81:ae:9e:f4:ad:54:8e:1d: 73:d7:8c:7a:63:06:ff:a4:89:b6:0e:d4:f6:bc:02: ba:d4:50:62:a2:a4:1d:09:df:a6:e7:76:e0:5f:e3: d7:88:d1:4f:fa:b0:0e:9d:85:08:76:26:12:19:a5: f5:ee:51:11:dd:39:1f:84:c2:0c:fc:a0:33:cf:71: 6b:85:95:6c:22:54:09:9a:8a:41:75:b3:66:ad:1a: 0c:be:a8:ac:1c:40:19:bf:ca:28:95:30:44:22:fb: 0c:10:3e:3a:69:16:ce:b2:55:3c:78:e3:27:c0:46: 19:62:46:d8:3d:88:97:1a:e9:4e:da:da:91:73:52: 16:64:0d:2e:9e:d7:ab:77:b9:22:02:54:ca:8d:a1: 92:1d:74:f5:37:31:3f:40:a1:76:f0:c0:9f:f7:fb: 6b:11:22:e5:9f:ee:5c:57:1f:3c:ea:45:1b:20:26: c7:ae:d6:70:15:75:df:70:2e:43:27:85:21:af:4f: 92:fb:7b:2d:1b:07:0b:9a:5d:1b:97:65:84:85:7f: 52:7f:59:49:1a:71:04:f7:aa:b5:47:ac:34:09:5e: 65:2d:c2:ce:86:20:ae:de:34:d5:7d:bc:9f:c8:8a: c8:d5:42:0a:57:53:a9:87:01:dd:2d:26:74:1b:a4: 00:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:4A:82:97:EA:BE:76:1E:A2:05:28:C8:50:52:61:9F:A7:17:12:05 X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:82:c4:c5:2e:ff:f9:d7:30:cb:f3:8a:14:8c:98:1c:12:e5: 08:e2:ab:d0:70:48:47:8a:c4:d1:10:67:17:5d:0d:c3:d0:0c: 73:3d:14:36:93:6f:63:50:5b:bc:73:2e:fb:8d:35:7e:37:8b: 19:76:dc:1b:1f:02:8d:3a:55:17:5b:f5:a9:0e:a2:e0:2c:9a: 19:25:34:93:9b:dd:fc:cd:e4:83:c7:14:53:1b:57:e2:d9:1f: 0d:89:47:c6:9d:68:24:f8:64:86:a7:f9:16:99:b1:0d:74:fb: c2:4c:25:9a:19:be:74:c7:7e:18:8b:9c:ab:48:84:b4:70:79: f5:ab:2b:c3:71:bf:d3:27:9f:76:02:61:a2:b7:93:9c:88:47: 83:cf:62:1d:4d:68:93:2c:3d:45:58:e6:c3:2e:c7:94:06:26: 2d:a6:79:3f:2a:83:b7:b1:1b:d3:f4:d6:ce:ce:3b:2f:ad:45: dc:27:ae:df:72:65:c8:bc:df:18:39:fd:f0:87:5f:59:1e:a7: 6d:2b:4b:b1:b5:8a:0e:86:95:ce:0a:c2:04:7a:4a:61:9b:c1: f1:fb:4d:95:ea:68:fe:55:68:c5:cb:ab:d6:41:ef:20:f4:a2: 03:d7:e4:c5:65:d5:0e:be:53:5f:be:3e:4b:03:df:0b:9a:9c: 80:29:4c:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjUwNDI0MjIxMzU2WhcNMjUwNTAxMjIxMzU2WjAYMRYwFAYD VQQDEw02ODBhYjdhNS0yMGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOIoZrmOga6e9K1Ujh1z14x6Ywb/pIm2DtT2vAK61FBioqQdCd+m53bgX+PX iNFP+rAOnYUIdiYSGaX17lER3TkfhMIM/KAzz3FrhZVsIlQJmopBdbNmrRoMvqis HEAZv8oolTBEIvsMED46aRbOslU8eOMnwEYZYkbYPYiXGulO2tqRc1IWZA0unter d7kiAlTKjaGSHXT1NzE/QKF28MCf9/trESLln+5cVx886kUbICbHrtZwFXXfcC5D J4Uhr0+S+3stGwcLml0bl2WEhX9Sf1lJGnEE96q1R6w0CV5lLcLOhiCu3jTVfbyf yIrI1UIKV1OphwHdLSZ0G6QA5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9Kgpfq vnYeogUoyFBSYZ+nFxIFMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjJFMS8zRjY5Q0M2NjdGMDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19k eE9tTWlFYmdPbjE5RGtDM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkgsTFLv/51zDL84oUjJgcEuUI4qvQcEhHisTREGcXXQ3D0AxzPRQ2 k29jUFu8cy77jTV+N4sZdtwbHwKNOlUXW/WpDqLgLJoZJTSTm938zeSDxxRTG1fi 2R8NiUfGnWgk+GSGp/kWmbENdPvCTCWaGb50x34Yi5yrSIS0cHn1qyvDcb/TJ592 AmGit5OciEeDz2IdTWiTLD1FWObDLseUBiYtpnk/KoO3sRvT9NbOzjsvrUXcJ67f cmXIvN8YOf3wh19ZHqdtK0uxtYoOhpXOCsIEekphm8Hx+02V6mj+VWjFy6vWQe8g 9KID1+TFZdUOvlNfvj5LA98LmpyAKUwZ -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:06 2025 by rpki-client