$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft File: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft (raw, json) Hash identifier: NUxQxGb4B4ZFBAGazsnhmVFCIYrcPYWjeZiWZG8bDE8= Subject key identifier: 2D:F3:0D:CC:D9:A1:B5:B0:1F:1D:8B:8D:B3:00:4A:8E:FC:40:40:2D Authority key identifier: 44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47 Certificate issuer: /CN=A91F3C11/serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447 Certificate serial: 0971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft Manifest number: 0971 Signing time: Thu 24 Apr 2025 14:59:58 +0000 Manifest this update: Thu 24 Apr 2025 14:59:58 +0000 Manifest next update: Thu 01 May 2025 14:59:58 +0000 Files and hashes: 1: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl (hash: 6oneC9pqTFLkL5npVM5X/rFHppqMBU8V5abOMBQlXio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2417 (0x971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C11, serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447 Validity Not Before: Apr 24 14:59:58 2025 GMT Not After : May 1 14:59:58 2025 GMT Subject: CN=680a51ee-97ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:18:9f:00:d3:cc:16:fa:db:dd:0a:02:82:2e: 1a:99:55:96:e5:02:23:d2:e0:c6:02:7e:8e:b9:4e: f4:d9:8e:98:f7:8c:e2:b6:4b:2e:68:2a:39:7c:dc: 6c:90:50:ea:38:02:96:0d:39:57:a8:ab:37:b7:18: 8f:81:50:9e:15:08:ed:38:a7:57:ec:88:df:dd:cf: f3:da:e0:1c:eb:e0:47:22:3a:04:0c:42:5b:cc:33: a8:85:fa:4a:fa:46:91:ef:0c:c6:58:8d:67:43:ae: 79:2e:40:1a:39:6a:b0:0d:a9:38:f8:5a:0a:a2:00: 3e:9f:dc:1e:78:96:c2:05:2c:04:e7:3e:c2:ad:7e: c2:bb:bb:b7:a5:9d:1d:f2:44:9d:d7:d8:4e:89:b7: 49:fd:ef:3f:db:8d:dd:27:c1:83:5b:8f:73:aa:0e: c6:a2:5c:cc:3c:ca:b5:7b:4b:25:68:47:ec:78:34: 39:78:62:c2:85:3b:27:4f:47:fb:8f:c9:4b:a4:81: 0a:83:ba:3c:d7:b5:2e:f5:f2:f4:e1:c5:10:a7:19: 84:ef:c3:ee:18:54:38:ab:dd:35:47:82:15:e8:91: 49:19:9d:94:65:3b:97:7b:0a:06:5e:99:e1:32:8b: 66:23:ef:eb:32:a4:5c:fa:4e:99:e7:b1:d5:d0:44: e8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F3:0D:CC:D9:A1:B5:B0:1F:1D:8B:8D:B3:00:4A:8E:FC:40:40:2D X509v3 Authority Key Identifier: keyid:44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:53:7b:c4:53:6f:45:74:21:e0:83:1a:4b:79:1a:e0:30:09: 1a:d7:d3:99:d5:11:9f:bf:07:95:10:ef:b9:cf:0d:45:d4:e8: 75:0e:87:c9:39:19:a1:83:26:ea:80:9b:de:ee:72:72:b3:19: cd:af:47:72:2f:10:e9:d5:67:87:77:66:8e:a9:0e:44:9d:69: 1e:3e:e2:a5:29:ce:d3:c3:8f:67:32:e4:7c:a0:d1:b1:65:12: df:7b:29:f5:db:06:87:5a:ae:08:65:f0:ca:47:69:e7:56:bf: d0:43:24:ef:59:ce:ad:c6:04:45:5c:4e:7e:db:32:27:7b:3d: 65:b5:db:5e:b3:bc:39:d6:f2:c2:cb:78:92:0b:68:c3:98:f1: 67:de:a8:9c:bf:ea:83:60:ce:b3:27:e1:04:bb:1f:04:ab:1e: c2:e3:f1:76:9e:33:e6:ce:33:25:e7:d5:e8:15:77:b9:3d:d9: 37:c3:7c:48:72:0d:94:c3:1d:16:6d:ee:5d:a6:3d:d5:bc:39: f2:bf:46:d1:00:87:03:49:5a:d7:93:bd:0d:f2:57:89:f3:26: 4a:44:9f:c6:2b:7a:dc:49:ba:27:08:ac:0b:67:f2:9f:ad:3b: 44:8e:08:8c:6a:21:71:1c:d1:9a:72:99:b0:14:b2:52:83:49: 55:e8:00:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDMTExMTAvBgNVBAUTKDQ0RjhEMTUzQjc3QjA5MkIxMUVERjAwQTkzRTRCQjY0 MDkxQzI0NDcwHhcNMjUwNDI0MTQ1OTU4WhcNMjUwNTAxMTQ1OTU4WjAYMRYwFAYD VQQDEw02ODBhNTFlZS05N2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BifANPMFvrb3QoCgi4amVWW5QIj0uDGAn6OuU702Y6Y94zitksuaCo5fNxs kFDqOAKWDTlXqKs3txiPgVCeFQjtOKdX7Ijf3c/z2uAc6+BHIjoEDEJbzDOohfpK +kaR7wzGWI1nQ655LkAaOWqwDak4+FoKogA+n9weeJbCBSwE5z7CrX7Cu7u3pZ0d 8kSd19hOibdJ/e8/243dJ8GDW49zqg7GolzMPMq1e0slaEfseDQ5eGLChTsnT0f7 j8lLpIEKg7o817Uu9fL04cUQpxmE78PuGFQ4q901R4IV6JFJGZ2UZTuXewoGXpnh MotmI+/rMqRc+k6Z57HV0EToeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3zDczZ obWwHx2LjbMASo78QEAtMB8GA1UdIwQYMBaAFET40VO3ewkrEe3wCpPku2QJHCRH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0MxMS81MTk4RkI5NjhG N0IxMUVBOUFDQjdFN0ZDNEY5QUUwMi9SUGpSVTdkN0NTc1I3ZkFLay1TN1pBa2NK RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQalJVN2Q3Q1NzUjdmQUtrLVM3WkFrY0pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0MxMS81MTk4RkI5NjhGN0IxMUVBOUFDQjdFN0ZDNEY5QUUwMi9SUGpSVTdkN0NT c1I3ZkFLay1TN1pBa2NKRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChU3vEU29FdCHggxpLeRrgMAka19OZ1RGfvweVEO+5zw1F1Oh1DofJ ORmhgybqgJve7nJysxnNr0dyLxDp1WeHd2aOqQ5EnWkePuKlKc7Tw49nMuR8oNGx ZRLfeyn12waHWq4IZfDKR2nnVr/QQyTvWc6txgRFXE5+2zInez1ltdtes7w51vLC y3iSC2jDmPFn3qicv+qDYM6zJ+EEux8Eqx7C4/F2njPmzjMl59XoFXe5Pdk3w3xI cg2Uwx0Wbe5dpj3VvDnyv0bRAIcDSVrXk70N8leJ8yZKRJ/GK3rcSbonCKwLZ/Kf rTtEjgiMaiFxHNGacpmwFLJSg0lV6AAu -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:57 2025 by rpki-client