$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft File: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft (raw, json) Hash identifier: +20nXB4iDykpU272MhryETJxqZCyahuENX1KOduwjCk= Subject key identifier: E4:62:AA:3C:D2:33:E7:D1:93:EF:83:E8:14:1D:1E:A3:8D:0F:2A:E6 Authority key identifier: B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 Certificate issuer: /CN=A91F3099/serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft Manifest number: 04A3 Signing time: Thu 24 Apr 2025 23:46:23 +0000 Manifest this update: Thu 24 Apr 2025 23:46:23 +0000 Manifest next update: Thu 01 May 2025 23:46:23 +0000 Files and hashes: 1: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl (hash: eKh46jeJWix+bkVLGQkTuqc6UXS3VhnKi1AxOgHLo6A=) 2: 99961F74315E11EC953A8215C4F9AE02.roa (hash: OEZzXzknZfZ5+s266LCfZPiCa3g7F7GJ2hmeU6hbgO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3099, serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Validity Not Before: Apr 24 23:46:23 2025 GMT Not After : May 1 23:46:23 2025 GMT Subject: CN=680acd4f-05ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:06:4a:52:f4:47:41:de:31:5b:66:69:7f:b9: d4:f1:ce:99:e1:f6:91:ca:a4:f3:86:41:fb:c4:bd: b9:6a:54:b6:60:95:8e:a9:e9:b1:7c:08:34:56:d0: 3b:a0:93:0c:2d:9e:9d:a4:fe:b7:02:e4:4e:d5:b9: 40:14:33:74:33:b5:b9:fc:dc:b8:e3:f1:75:17:a1: 57:3e:dd:39:3f:a9:02:2d:2d:ef:a5:6f:a5:4a:5d: 46:fb:13:11:d6:b8:c9:d1:eb:91:55:e6:47:03:eb: d8:64:21:6f:2d:f2:d1:82:b6:9d:52:d6:6a:bb:6b: 94:3d:b4:22:87:6d:8d:e4:b7:1e:9f:d8:73:ba:68: f5:b5:d4:44:91:d0:42:c2:9e:3c:9c:1c:09:6e:d7: b1:0f:5b:d8:cb:bb:11:61:aa:77:87:2d:ac:92:99: d0:a8:8b:ad:26:49:e9:d4:b3:64:20:b7:39:c9:ed: 6e:f8:4a:27:19:20:1a:b5:16:87:9e:6f:e7:a3:1c: 61:d9:04:06:f5:48:46:1c:89:52:1a:d8:32:da:0d: d1:89:78:69:0e:78:2d:14:73:ed:e5:d6:3b:10:ab: 61:3c:a7:db:e0:dc:c7:d7:4f:a3:e3:67:04:cd:4c: d9:08:df:c9:2a:86:5e:9e:5f:a6:7c:ce:94:07:35: ec:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:62:AA:3C:D2:33:E7:D1:93:EF:83:E8:14:1D:1E:A3:8D:0F:2A:E6 X509v3 Authority Key Identifier: keyid:B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:64:5e:12:49:d6:49:3c:20:48:11:77:d1:81:ba:e4:8c:23: 6d:9d:28:2c:cd:58:62:15:14:54:a2:0d:2d:11:9d:d3:ca:87: d2:f9:83:be:c1:3c:8d:e1:08:fb:a5:08:7d:ed:72:07:7e:03: 1d:71:99:cd:d8:b5:72:67:b4:66:12:17:66:15:35:80:b4:75: a0:b3:37:fb:5f:b2:6b:0d:cc:81:2e:6e:6e:87:4c:13:3d:ed: 45:2d:a6:78:2b:2b:b3:2b:c3:0b:18:85:2f:e0:0b:14:03:c2: 6e:56:2e:47:b3:f3:3b:f7:8b:cc:9f:69:13:f5:79:28:a9:31: 3e:51:8a:bc:74:53:40:e8:6d:64:7a:33:ff:57:c5:c8:0b:9c: a6:1d:3c:4a:de:69:44:06:bf:37:cc:e2:95:6a:d3:ba:eb:6a: a4:c3:d2:9f:91:eb:85:cb:e5:f4:29:ee:b2:f3:bd:9b:e3:28: b0:24:c9:f7:e3:ec:d1:1b:9b:d6:e8:ab:2c:c4:65:38:18:75: b0:2b:d2:56:0a:63:32:32:6c:81:d4:e5:c1:c4:f6:ec:c5:42: 47:71:f1:15:d0:f4:22:c2:a2:1a:fe:65:31:de:fe:d8:6b:38: cb:75:6a:de:8e:ba:f6:9d:ff:9b:02:0a:45:d8:d5:cc:63:0c: 57:bc:d4:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwOTkxMTAvBgNVBAUTKEIwRjQ3QTY5NkFDRDc3Qzc0QTM0NzNDNENEMTcxREEz NzIxQ0VDRDAwHhcNMjUwNDI0MjM0NjIzWhcNMjUwNTAxMjM0NjIzWjAYMRYwFAYD VQQDEw02ODBhY2Q0Zi0wNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAZKUvRHQd4xW2Zpf7nU8c6Z4faRyqTzhkH7xL25alS2YJWOqemxfAg0VtA7 oJMMLZ6dpP63AuRO1blAFDN0M7W5/Ny44/F1F6FXPt05P6kCLS3vpW+lSl1G+xMR 1rjJ0euRVeZHA+vYZCFvLfLRgradUtZqu2uUPbQih22N5Lcen9hzumj1tdREkdBC wp48nBwJbtexD1vYy7sRYap3hy2skpnQqIutJknp1LNkILc5ye1u+EonGSAatRaH nm/noxxh2QQG9UhGHIlSGtgy2g3RiXhpDngtFHPt5dY7EKthPKfb4NzH10+j42cE zUzZCN/JKoZenl+mfM6UBzXspwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORiqjzS M+fRk++D6BQdHqONDyrmMB8GA1UdIwQYMBaAFLD0emlqzXfHSjRzxM0XHaNyHOzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzA5OS9FQjRFRkJDNjMx NUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4ZEtOSFBFelJjZG8zSWM3 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NQUjZhV3JOZDhkS05IUEV6UmNkbzNJYzdOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzA5OS9FQjRFRkJDNjMxNUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4 ZEtOSFBFelJjZG8zSWM3TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiZF4SSdZJPCBIEXfRgbrkjCNtnSgszVhiFRRUog0tEZ3TyofS+YO+ wTyN4Qj7pQh97XIHfgMdcZnN2LVyZ7RmEhdmFTWAtHWgszf7X7JrDcyBLm5uh0wT Pe1FLaZ4KyuzK8MLGIUv4AsUA8JuVi5Hs/M794vMn2kT9XkoqTE+UYq8dFNA6G1k ejP/V8XIC5ymHTxK3mlEBr83zOKVatO662qkw9KfkeuFy+X0Ke6y872b4yiwJMn3 4+zRG5vW6KssxGU4GHWwK9JWCmMyMmyB1OXBxPbsxUJHcfEV0PQiwqIa/mUx3v7Y azjLdWrejrr2nf+bAgpF2NXMYwxXvNQT -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:39 2025 by rpki-client