$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft File: IrN0ThSJpKURK82Mvxepj_HbZnU.mft (raw, json) Hash identifier: 95maGyCdU+7g3mt6AtcODqkyPuxiZPVzEQ0GsEA2Ofk= Subject key identifier: 4C:7B:94:31:C3:20:DF:8B:3D:0D:DC:FA:E1:FE:F8:E0:72:84:21:82 Authority key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 Certificate issuer: /CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Certificate serial: 0301 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft Manifest number: 02FA Signing time: Fri 25 Apr 2025 01:02:57 +0000 Manifest this update: Fri 25 Apr 2025 01:02:56 +0000 Manifest next update: Fri 02 May 2025 01:02:56 +0000 Files and hashes: 1: IrN0ThSJpKURK82Mvxepj_HbZnU.crl (hash: ohyJ2qdbO7/VBcvvrnhBH1S/ajQSblAbwl/eLaeEi1Y=) 2: F2C91F5678BE11EFBB3FC76DC4F9AE02.roa (hash: du3inK9qkjwR/A2n6vO6SMQjDynHJ0y0PAziJifzAng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 769 (0x301) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B54, serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Validity Not Before: Apr 25 01:02:56 2025 GMT Not After : May 2 01:02:56 2025 GMT Subject: CN=680adf41-ccd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e3:4f:16:39:79:f1:b0:e1:6e:6f:85:02:b2: a6:6c:fc:a5:10:fd:56:03:da:70:df:a7:30:14:0d: 8d:93:a3:84:8c:8d:44:c0:ff:30:72:fc:c2:c9:e8: 1d:78:e5:fa:c8:5b:ea:53:c7:2e:5b:b9:7d:ae:51: 8a:bc:7d:43:45:fc:f8:76:3a:71:03:8b:f2:72:52: 31:0e:03:8d:48:ad:58:a9:86:0a:7d:ae:2c:b9:79: e0:bf:5e:57:a9:20:96:f5:2b:1b:9c:39:14:e7:c3: 0d:5f:65:4c:c0:23:21:e3:43:b6:b6:87:b5:2a:ec: e1:84:c4:2d:2b:b5:74:1c:ae:b2:e8:b1:ec:5f:4f: 9b:19:a5:29:8f:42:13:f7:ad:dd:f3:6f:9f:4b:8c: dc:18:a7:81:93:22:44:d1:73:54:ab:97:31:99:3e: 98:b7:ab:e0:29:69:cd:2e:da:08:96:49:7b:f2:ce: 4e:9b:79:e8:81:12:40:a9:07:32:e1:8a:e5:5c:ea: 47:e5:a6:86:33:5a:5d:c1:c8:ff:2c:7a:a1:d3:4d: b5:d6:4a:83:61:48:27:d3:78:10:34:66:6a:f3:04: a8:0d:f2:0b:d6:80:09:b8:c0:7f:77:82:8e:aa:9d: 5c:06:e5:38:63:3f:19:05:40:80:9d:ca:d6:e1:b5: 7d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7B:94:31:C3:20:DF:8B:3D:0D:DC:FA:E1:FE:F8:E0:72:84:21:82 X509v3 Authority Key Identifier: keyid:22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:93:49:44:1d:8f:61:92:d5:ed:a0:27:ec:f1:07:5b:02:1b: 0d:00:1a:7e:ef:6e:bb:93:9c:55:b6:74:1d:ab:bc:84:0e:20: 7c:4e:1f:73:d3:df:31:f7:47:d0:7c:47:49:fa:7e:bc:e1:73: 10:80:4f:0d:5f:70:f6:90:b7:9b:1b:07:21:20:4f:ae:f4:d1: b5:24:85:a3:81:5a:25:70:0a:9d:0c:7b:d5:5c:0e:69:78:40: 2b:70:bd:f0:8d:6d:a3:2a:f4:d4:0a:1d:7e:df:d4:99:21:54: bc:31:7d:aa:22:90:56:28:58:19:f4:f1:01:ac:4f:d8:10:02: 32:18:ad:cb:ba:4a:03:96:32:91:7f:3f:ec:0c:dc:a5:07:00: 51:e7:63:02:3d:ec:76:97:f7:99:10:7e:d0:c5:fd:21:76:4e: 25:b0:eb:ae:0c:40:91:c7:43:f6:68:3a:a7:02:00:07:dd:d7: 7b:80:53:30:c4:75:0f:26:ae:dd:bb:8d:a6:61:b9:bb:2c:27: 3a:83:fd:df:1d:ab:61:8c:be:42:60:45:3b:f6:ec:64:ab:c8: 7b:97:38:c7:09:65:a1:84:96:6b:87:d5:66:7d:4d:fb:56:f2: 11:44:8a:02:6b:19:96:d3:5f:c4:cd:78:c2:bd:01:23:3e:b3: d3:01:74:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNTQxMTAvBgNVBAUTKDIyQjM3NDRFMTQ4OUE0QTUxMTJCQ0Q4Q0JGMTdBOThG RjFEQjY2NzUwHhcNMjUwNDI1MDEwMjU2WhcNMjUwNTAyMDEwMjU2WjAYMRYwFAYD VQQDEw02ODBhZGY0MS1jY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteNPFjl58bDhbm+FArKmbPylEP1WA9pw36cwFA2Nk6OEjI1EwP8wcvzCyegd eOX6yFvqU8cuW7l9rlGKvH1DRfz4djpxA4vyclIxDgONSK1YqYYKfa4suXngv15X qSCW9SsbnDkU58MNX2VMwCMh40O2toe1KuzhhMQtK7V0HK6y6LHsX0+bGaUpj0IT 963d82+fS4zcGKeBkyJE0XNUq5cxmT6Yt6vgKWnNLtoIlkl78s5Om3nogRJAqQcy 4YrlXOpH5aaGM1pdwcj/LHqh00211kqDYUgn03gQNGZq8wSoDfIL1oAJuMB/d4KO qp1cBuU4Yz8ZBUCAncrW4bV9IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEx7lDHD IN+LPQ3c+uH++OByhCGCMB8GA1UdIwQYMBaAFCKzdE4UiaSlESvNjL8XqY/x22Z1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI1NC83MjczNzVCNEQ0 RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBLVVJLODJNdnhlcGpfSGJa blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyTjBUaFNKcEtVUks4Mk12eGVwal9IYlpuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI1NC83MjczNzVCNEQ0RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBL VVJLODJNdnhlcGpfSGJablUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZk0lEHY9hktXtoCfs8QdbAhsNABp+7267k5xVtnQdq7yEDiB8Th9z 098x90fQfEdJ+n684XMQgE8NX3D2kLebGwchIE+u9NG1JIWjgVolcAqdDHvVXA5p eEArcL3wjW2jKvTUCh1+39SZIVS8MX2qIpBWKFgZ9PEBrE/YEAIyGK3LukoDljKR fz/sDNylBwBR52MCPex2l/eZEH7Qxf0hdk4lsOuuDECRx0P2aDqnAgAH3dd7gFMw xHUPJq7du42mYbm7LCc6g/3fHathjL5CYEU79uxkq8h7lzjHCWWhhJZrh9VmfU37 VvIRRIoCaxmW01/EzXjCvQEjPrPTAXTc -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:54 2025 by rpki-client