$ rpki-client -vvf rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft File: asd5dN_kUIBzXNuQZqfiRpYEkrc.mft (raw, json) Hash identifier: haK6PLi5YSE5Kjjt9aSaUNvf9y+0T2wqK6d2oWjFiEU= Subject key identifier: 79:09:BC:04:84:86:24:AE:61:DF:33:24:8A:32:BB:C9:74:E1:D4:72 Authority key identifier: 6A:C7:79:74:DF:E4:50:80:73:5C:DB:90:66:A7:E2:46:96:04:92:B7 Certificate issuer: /CN=A91F31A7/serialNumber=6AC77974DFE45080735CDB9066A7E246960492B7 Certificate serial: 103F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft Manifest number: 1038 Signing time: Thu 24 Apr 2025 17:24:08 +0000 Manifest this update: Thu 24 Apr 2025 17:24:08 +0000 Manifest next update: Thu 01 May 2025 17:24:07 +0000 Files and hashes: 1: asd5dN_kUIBzXNuQZqfiRpYEkrc.crl (hash: QCpELK7TW6WMdfvjJndayFoo/ka6B1vBdjzs5xBoE/s=) 2: DDEC8C2A39AA11E9B0166376C4F9AE02.roa (hash: Xl08iUFukXE24X8fvGUzm4LLhTQ/xSXJRNuZF2QZScI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.crl rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4159 (0x103f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F31A7, serialNumber=6AC77974DFE45080735CDB9066A7E246960492B7 Validity Not Before: Apr 24 17:24:08 2025 GMT Not After : May 1 17:24:07 2025 GMT Subject: CN=680a73b8-7632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:ad:e9:6d:be:94:66:a6:ab:72:c4:fa:a4: e8:db:a6:00:05:f0:89:7d:3a:18:47:32:b7:b8:f5: da:2b:98:a7:2e:27:fb:eb:91:59:81:ea:63:7f:8e: 5b:ea:b9:b5:70:68:f6:da:f5:e5:ca:a0:b1:12:de: d4:7c:3c:c8:75:c3:90:da:05:9b:f4:9a:be:07:7f: 12:c3:09:6d:eb:69:ae:78:f0:e7:32:17:a0:d5:d4: 10:4c:b7:fe:dc:d2:06:66:41:5d:04:4c:51:12:5e: 5f:d8:3e:5b:f3:08:38:b3:e6:49:72:90:02:40:85: 57:a1:6b:9b:5e:b9:d2:e0:b6:70:8a:89:74:62:25: 40:99:ca:66:0b:4a:08:01:5b:ac:cf:b5:f9:d8:78: 39:89:3a:38:1a:5f:21:04:fc:eb:6f:6d:52:dd:ed: 91:dd:47:4c:1b:4d:25:02:29:8b:b2:e5:01:a3:f5: 26:c0:ed:d2:0a:f0:ca:08:a0:a5:f9:4a:b6:a8:a4: 23:1c:e3:7b:4d:41:26:44:0d:57:89:9e:cb:4c:8a: 7a:77:e9:4a:02:eb:8f:6e:86:9b:99:f0:e2:a2:0d: 0b:81:4b:38:52:01:a9:89:7a:9c:ee:97:7b:3c:f7: e7:37:a7:05:3f:6e:7c:6f:8e:6b:cc:1b:36:b3:66: 7f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:09:BC:04:84:86:24:AE:61:DF:33:24:8A:32:BB:C9:74:E1:D4:72 X509v3 Authority Key Identifier: keyid:6A:C7:79:74:DF:E4:50:80:73:5C:DB:90:66:A7:E2:46:96:04:92:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:6b:1a:89:ad:a1:23:d2:c1:58:12:50:75:8f:c0:d5:6a:d5: 1e:d2:09:f7:82:12:ab:44:b2:6f:c3:24:4d:ed:be:b8:0d:f0: d9:a5:08:d7:55:53:5d:b3:3d:19:03:b7:9e:53:f7:91:1c:41: 67:c2:c5:e5:af:f4:af:06:68:7e:5e:83:89:c3:7c:72:1d:23: 05:d9:a0:db:f8:3d:6b:d3:9f:04:d7:2a:b7:e9:cc:ba:77:58: 29:71:4c:e8:47:a0:35:77:cf:cf:72:31:e2:63:63:b9:57:1d: 77:58:b8:2b:ea:d5:3d:2b:76:51:b1:72:93:ec:6a:77:f6:f8: 20:36:3e:bc:bc:6c:bf:ca:c6:8d:37:a3:ec:1d:b0:71:82:53: d3:68:49:f0:75:d8:b4:fc:e1:31:a9:ef:a2:37:a9:87:9d:e7: 05:37:da:6b:43:ab:3d:32:85:88:33:b3:9a:d1:6e:c4:97:23: 27:05:60:64:77:51:e5:c6:78:a9:59:36:26:42:a3:07:a8:95: 3b:0d:3c:dc:a1:6f:1a:75:3d:21:0a:44:1f:0c:44:e1:45:f9: 0f:be:ba:be:01:d6:e8:54:c4:e3:b9:d0:96:21:8e:c8:17:7f: f7:40:11:02:a7:22:be:18:6d:1e:ef:20:6d:67:29:0f:e5:1f: 28:e7:13:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICED8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMxQTcxMTAvBgNVBAUTKDZBQzc3OTc0REZFNDUwODA3MzVDREI5MDY2QTdFMjQ2 OTYwNDkyQjcwHhcNMjUwNDI0MTcyNDA4WhcNMjUwNTAxMTcyNDA3WjAYMRYwFAYD VQQDEw02ODBhNzNiOC03NjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdit6W2+lGamq3LE+qTo26YABfCJfToYRzK3uPXaK5inLif765FZgepjf45b 6rm1cGj22vXlyqCxEt7UfDzIdcOQ2gWb9Jq+B38Swwlt62muePDnMheg1dQQTLf+ 3NIGZkFdBExREl5f2D5b8wg4s+ZJcpACQIVXoWubXrnS4LZwiol0YiVAmcpmC0oI AVusz7X52Hg5iTo4Gl8hBPzrb21S3e2R3UdMG00lAimLsuUBo/UmwO3SCvDKCKCl +Uq2qKQjHON7TUEmRA1XiZ7LTIp6d+lKAuuPboabmfDiog0LgUs4UgGpiXqc7pd7 PPfnN6cFP258b45rzBs2s2Z/3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkJvASE hiSuYd8zJIoyu8l04dRyMB8GA1UdIwQYMBaAFGrHeXTf5FCAc1zbkGan4kaWBJK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzFBNy83QjBCNjc4NDM5 QUExMUU5OEE4RTUyNzZDNEY5QUUwMi9hc2Q1ZE5fa1VJQnpYTnVRWnFmaVJwWUVr cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FzZDVkTl9rVUlCelhOdVFacWZpUnBZRWtyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzFBNy83QjBCNjc4NDM5QUExMUU5OEE4RTUyNzZDNEY5QUUwMi9hc2Q1ZE5fa1VJ QnpYTnVRWnFmaVJwWUVrcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACaxqJraEj0sFYElB1j8DVatUe0gn3ghKrRLJvwyRN7b64DfDZpQjX VVNdsz0ZA7eeU/eRHEFnwsXlr/SvBmh+XoOJw3xyHSMF2aDb+D1r058E1yq36cy6 d1gpcUzoR6A1d8/PcjHiY2O5Vx13WLgr6tU9K3ZRsXKT7Gp39vggNj68vGy/ysaN N6PsHbBxglPTaEnwddi0/OExqe+iN6mHnecFN9prQ6s9MoWIM7Oa0W7ElyMnBWBk d1HlxnipWTYmQqMHqJU7DTzcoW8adT0hCkQfDEThRfkPvrq+AdboVMTjudCWIY7I F3/3QBECpyK+GG0e7yBtZykP5R8o5xM6 -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:48 2025 by rpki-client