$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft File: _lDDhdnrGeLvoU-jWtpb3qW0VtM.mft (raw, json) Hash identifier: XdBOYDdHJ95iyuBS6ymJDQ7DVZIu1JaZF2FyXYMqG40= Subject key identifier: 8B:0A:BC:3E:6D:5D:B4:24:87:1C:B1:0E:CD:40:52:F7:2A:F9:B8:9E Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Certificate serial: 057B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft Manifest number: 0552 Signing time: Thu 24 Apr 2025 23:20:55 +0000 Manifest this update: Thu 24 Apr 2025 23:20:54 +0000 Manifest next update: Thu 01 May 2025 23:20:54 +0000 Files and hashes: 1: _lDDhdnrGeLvoU-jWtpb3qW0VtM.crl (hash: 99/B+lUhC92oMBGk6nLhTWd1oghO3/viGU8baf5DTwQ=) 2: 65DFCD4A884D11EE8423C486C4F9AE02.roa (hash: XB3vXSrIjKmm7/h+1aGsOWgWiHrKFGWrKMxR+7JMgKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Validity Not Before: Apr 24 23:20:54 2025 GMT Not After : May 1 23:20:54 2025 GMT Subject: CN=680ac757-8ffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:59:ef:b1:b2:29:d6:21:bd:dd:eb:ac:68:30: 07:53:32:4a:7f:0d:fd:bb:c0:25:0f:93:d8:31:6b: 41:dd:a1:c9:1d:46:24:31:8f:15:4d:49:f4:c9:b6: b7:26:e0:76:5e:69:85:96:55:f9:5d:4b:45:14:4d: 09:d3:64:5c:b4:a3:c3:59:2e:40:3f:20:26:34:45: 03:ef:65:ea:ff:97:e0:2a:02:68:9b:4d:5b:63:3d: 27:4a:ee:a3:29:bf:fa:7d:62:8b:66:55:49:0b:e0: b1:99:14:e1:d4:7b:2f:6e:9e:3b:bb:68:95:57:ba: ce:30:2f:3d:be:3b:c0:e0:e9:7c:d7:f8:10:38:f0: 0a:0b:a2:43:26:37:0c:12:68:3e:74:24:36:d7:46: 77:a8:0f:84:e6:60:3f:d9:ba:42:b7:78:43:d6:db: 5f:27:99:12:f0:48:69:ff:66:3a:90:97:66:2c:c3: 7f:b1:b8:aa:a1:54:14:11:f2:30:69:66:2b:a1:c7: 2c:5b:8f:a3:8b:25:9d:ab:eb:8a:be:b6:bb:2e:1a: 1c:b0:c5:67:41:5c:a7:cd:90:61:b2:1b:32:ea:03: cb:74:50:be:4d:42:b5:5d:03:5a:71:3d:d8:19:bf: 3e:a7:bf:4c:0d:f8:9b:2b:ca:22:48:9e:cc:5a:24: 98:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0A:BC:3E:6D:5D:B4:24:87:1C:B1:0E:CD:40:52:F7:2A:F9:B8:9E X509v3 Authority Key Identifier: keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:e9:35:bc:66:6e:18:26:f7:6e:1e:d3:67:17:6a:d1:45:f1: ec:02:dc:89:b7:66:1a:f1:2b:61:31:65:61:58:9c:09:aa:f1: c6:a9:a6:79:3e:0b:e8:dc:b6:06:d8:5f:ed:2e:e8:37:b6:00: 69:65:87:14:de:29:58:43:7b:01:da:71:b5:80:13:96:1f:95: 83:10:9b:af:86:f6:e1:9d:fa:0b:41:c4:98:28:ba:64:2d:fe: 66:cd:c4:2d:c1:45:d3:55:b6:fc:3a:7d:f9:14:55:db:cf:a5: 55:e2:b5:03:a8:b0:2f:dd:2d:6c:c2:5f:d6:54:ff:f3:54:59: c0:2b:f5:12:8f:00:9a:52:11:84:15:66:b5:d7:b9:43:c4:f7: 69:30:ff:65:b6:52:36:3a:dd:3e:38:b7:5e:c0:b9:25:08:f1: cd:d0:e7:08:05:7b:88:4f:43:5a:6f:47:94:8b:9c:e9:8f:4c: 2b:a0:ee:dd:30:67:29:c5:d6:b4:54:b8:21:5a:4a:a1:43:db: 82:f9:fa:ee:85:3a:9f:ae:64:8c:42:26:da:c0:c2:d9:78:d4: f8:11:33:4a:a7:a9:07:47:46:b4:aa:0c:b7:30:23:3b:43:77: 2b:3f:32:56:40:b8:da:d1:29:ab:34:c3:5b:71:02:c6:5e:71: e7:66:3f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjExMTAvBgNVBAUTKEZFNTBDMzg1RDlFQjE5RTJFRkExNEZBMzVBREE1QkRF QTVCNDU2RDMwHhcNMjUwNDI0MjMyMDU0WhcNMjUwNTAxMjMyMDU0WjAYMRYwFAYD VQQDEw02ODBhYzc1Ny04ZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmFnvsbIp1iG93eusaDAHUzJKfw39u8AlD5PYMWtB3aHJHUYkMY8VTUn0yba3 JuB2XmmFllX5XUtFFE0J02RctKPDWS5APyAmNEUD72Xq/5fgKgJom01bYz0nSu6j Kb/6fWKLZlVJC+CxmRTh1Hsvbp47u2iVV7rOMC89vjvA4Ol81/gQOPAKC6JDJjcM Emg+dCQ210Z3qA+E5mA/2bpCt3hD1ttfJ5kS8Ehp/2Y6kJdmLMN/sbiqoVQUEfIw aWYroccsW4+jiyWdq+uKvra7LhocsMVnQVynzZBhshsy6gPLdFC+TUK1XQNacT3Y Gb8+p79MDfibK8oiSJ7MWiSYQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsKvD5t XbQkhxyxDs1AUvcq+bieMB8GA1UdIwQYMBaAFP5Qw4XZ6xni76FPo1raW96ltFbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMS82NkU0RTRGNkZC NDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdlTHZvVS1qV3RwYjNxVzBW dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sRERoZG5yR2VMdm9VLWpXdHBiM3FXMFZ0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMS82NkU0RTRGNkZCNDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdl THZvVS1qV3RwYjNxVzBWdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv6TW8Zm4YJvduHtNnF2rRRfHsAtyJt2Ya8SthMWVhWJwJqvHGqaZ5 Pgvo3LYG2F/tLug3tgBpZYcU3ilYQ3sB2nG1gBOWH5WDEJuvhvbhnfoLQcSYKLpk Lf5mzcQtwUXTVbb8On35FFXbz6VV4rUDqLAv3S1swl/WVP/zVFnAK/USjwCaUhGE FWa117lDxPdpMP9ltlI2Ot0+OLdewLklCPHN0OcIBXuIT0Nab0eUi5zpj0wroO7d MGcpxda0VLghWkqhQ9uC+fruhTqfrmSMQibawMLZeNT4ETNKp6kHR0a0qgy3MCM7 Q3crPzJWQLja0SmrNMNbcQLGXnHnZj8P -----END CERTIFICATE-----Generated at Sat Apr 26 13:46:46 2025 by rpki-client