$ rpki-client -vvf rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft File: q8dSj86PeUX0YPdSdIJB2tVnilo.mft (raw, json) Hash identifier: 7OJup4JTR1AGgRJBRovCKghEu4M8gKAAfWrSvvVLeMk= Subject key identifier: 5F:0B:AF:F6:B3:33:26:AA:5B:F6:82:10:DF:90:E2:B9:52:3C:35:56 Authority key identifier: AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A Certificate issuer: /CN=A91F367D/serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Certificate serial: 0796 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft Manifest number: 0791 Signing time: Thu 24 Apr 2025 21:07:34 +0000 Manifest this update: Thu 24 Apr 2025 21:07:33 +0000 Manifest next update: Thu 01 May 2025 21:07:33 +0000 Files and hashes: 1: q8dSj86PeUX0YPdSdIJB2tVnilo.crl (hash: B05yhR1WBCHoBuxPN/OtsRxOpU+f06UbOkKtIXapMlo=) 2: AC1CD860039511EBBE8C7F47C4F9AE02.roa (hash: bI2YzmE5abFv+G4p73f/qs8eUR6pecodR9lCynJZEoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1942 (0x796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F367D, serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Validity Not Before: Apr 24 21:07:33 2025 GMT Not After : May 1 21:07:33 2025 GMT Subject: CN=680aa815-ed34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:72:8a:76:bb:36:24:5c:e2:f3:b0:35:8c: 4c:c2:e9:3b:e5:6f:b4:ae:15:5c:e1:43:74:05:14: a2:9f:b3:30:a3:b9:18:21:b2:19:0d:b7:62:7e:ce: 9f:6c:49:9d:db:8f:13:05:35:ce:c1:14:9d:93:c0: 7b:0c:78:f7:f9:41:81:19:9a:4b:3e:0a:c9:89:97: c4:45:a1:8b:bf:02:b2:03:30:bd:74:43:8a:2d:f6: c4:5d:e0:cb:f6:bb:07:63:ab:ce:41:c3:d8:4f:fc: b2:34:5d:1c:dd:40:35:89:22:60:54:8d:48:ac:6c: 34:ad:78:48:e5:aa:1c:62:08:6e:1d:8c:87:c1:ba: 24:57:ef:6c:44:7d:d1:fc:a0:05:c1:8a:44:17:d6: 01:7f:14:bf:13:85:f1:3a:e5:d4:e6:a8:56:3c:36: 55:47:b3:30:f0:33:71:70:3e:a4:65:f4:17:d4:51: e9:10:54:26:26:76:98:a2:ed:fa:ea:7e:ab:6c:d9: 46:09:0b:33:38:2d:0c:46:6e:42:92:de:48:da:75: d5:21:cd:45:57:96:8e:88:c2:84:3d:94:ba:98:4b: aa:aa:05:e3:0c:03:4e:52:db:98:01:22:6a:54:68: 55:07:63:2c:5a:25:13:1f:33:a2:42:ae:f5:85:20: 88:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0B:AF:F6:B3:33:26:AA:5B:F6:82:10:DF:90:E2:B9:52:3C:35:56 X509v3 Authority Key Identifier: keyid:AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:68:da:59:ff:52:1e:6b:50:df:3f:b4:35:c1:10:d2:3e:63: 86:e4:8a:7e:63:f4:0c:d7:1e:2e:9f:1e:9b:74:f9:6a:f4:68: 02:cb:87:8f:80:4b:38:13:78:df:1c:c4:8c:49:31:ee:cf:5b: e8:ad:88:e9:83:31:49:17:54:c2:54:85:77:1e:32:a0:2b:c2: 4c:e4:61:c7:d0:e5:bd:51:57:98:be:2e:6c:b4:9d:c8:74:f4: 03:de:39:87:e3:57:b3:eb:85:f7:ff:d3:7c:1b:74:ea:d5:02: 52:bd:83:a3:c8:ca:07:fe:17:bc:71:10:f8:38:c2:ab:a3:10: 7a:13:b7:97:23:09:95:21:ac:83:1a:b6:35:cf:2e:06:69:39: 5e:67:41:bf:ac:ae:55:21:cb:71:32:e6:1e:9e:3b:4a:3e:b8: 20:b0:05:b8:b1:5b:f1:1a:3e:0d:cb:50:13:1e:2f:3e:02:ba: 5f:88:4c:73:ed:4e:a9:b9:30:57:71:d7:92:2e:27:cb:d0:5d: b3:d9:9c:47:db:77:53:d1:dd:3a:2a:98:2b:71:81:e5:14:97: 26:08:69:d8:57:c1:ca:a8:87:fe:25:4c:74:6e:2e:5c:ba:38: 6d:07:03:a1:61:1f:8b:69:70:cb:7c:4c:ab:3b:4a:f3:b0:33: 3d:94:63:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM2N0QxMTAvBgNVBAUTKEFCQzc1MjhGQ0U4Rjc5NDVGNDYwRjc1Mjc0ODI0MURB RDU2NzhBNUEwHhcNMjUwNDI0MjEwNzMzWhcNMjUwNTAxMjEwNzMzWjAYMRYwFAYD VQQDEw02ODBhYTgxNS1lZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyZyina7NiRc4vOwNYxMwuk75W+0rhVc4UN0BRSin7Mwo7kYIbIZDbdifs6f bEmd248TBTXOwRSdk8B7DHj3+UGBGZpLPgrJiZfERaGLvwKyAzC9dEOKLfbEXeDL 9rsHY6vOQcPYT/yyNF0c3UA1iSJgVI1IrGw0rXhI5aocYghuHYyHwbokV+9sRH3R /KAFwYpEF9YBfxS/E4XxOuXU5qhWPDZVR7Mw8DNxcD6kZfQX1FHpEFQmJnaYou36 6n6rbNlGCQszOC0MRm5Ckt5I2nXVIc1FV5aOiMKEPZS6mEuqqgXjDANOUtuYASJq VGhVB2MsWiUTHzOiQq71hSCI1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8Lr/az MyaqW/aCEN+Q4rlSPDVWMB8GA1UdIwQYMBaAFKvHUo/Oj3lF9GD3UnSCQdrVZ4pa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzY3RC85OURBN0FCRTAz OTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVVWDBZUGRTZElKQjJ0Vm5p bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E4ZFNqODZQZVVYMFlQZFNkSUpCMnRWbmlsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzY3RC85OURBN0FCRTAzOTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVV WDBZUGRTZElKQjJ0Vm5pbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYaNpZ/1Iea1DfP7Q1wRDSPmOG5Ip+Y/QM1x4unx6bdPlq9GgCy4eP gEs4E3jfHMSMSTHuz1vorYjpgzFJF1TCVIV3HjKgK8JM5GHH0OW9UVeYvi5stJ3I dPQD3jmH41ez64X3/9N8G3Tq1QJSvYOjyMoH/he8cRD4OMKroxB6E7eXIwmVIayD GrY1zy4GaTleZ0G/rK5VIctxMuYenjtKPrggsAW4sVvxGj4Ny1ATHi8+ArpfiExz 7U6puTBXcdeSLifL0F2z2ZxH23dT0d06KpgrcYHlFJcmCGnYV8HKqIf+JUx0bi5c ujhtBwOhYR+LaXDLfEyrO0rzsDM9lGNb -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:46 2025 by rpki-client