$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: FZIiYKzON/57Mtfan8G3A52qFbhNOX586TAF0BquBmU= Subject key identifier: FA:D9:67:52:B8:D2:1C:4F:28:46:A8:15:BF:8F:5E:F0:01:BE:61:05 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: AA Signing time: Fri 25 Apr 2025 05:06:12 +0000 Manifest this update: Fri 25 Apr 2025 05:06:11 +0000 Manifest next update: Fri 02 May 2025 05:06:11 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: XmS/V3e/HXSkW32gMY/elxFzrcdsey4s3UE/6Jb+OC0=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: sXijOKbCJmo7Vc9siLjMj6vbNj9IjkbsFg/cetJYPUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Apr 25 05:06:11 2025 GMT Not After : May 2 05:06:11 2025 GMT Subject: CN=680b1843-3039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e5:5e:3c:42:a0:30:96:12:3d:c7:8d:d1:d6: b6:24:fc:7b:ee:1e:6b:f6:42:1e:7e:91:46:bc:29: 23:53:83:d6:1c:bd:f5:85:91:c3:bb:c9:84:ff:bb: 09:7e:a7:e0:14:80:a8:7a:53:5a:44:6b:84:ee:54: 3f:4a:3b:a3:d7:02:d1:b1:b7:11:aa:11:d6:ae:f7: 57:5e:ef:fd:bd:e7:d0:d3:23:82:6e:2d:0f:78:82: 79:e3:c4:46:b5:0f:de:e7:25:74:42:25:ab:99:7b: 6b:3f:74:28:74:64:1d:44:1a:46:63:13:de:b7:7a: fc:56:7d:c6:85:79:86:6f:21:3c:0b:b8:8b:1d:67: da:bc:d4:74:90:05:a7:12:63:00:7a:13:83:fd:51: 34:58:5c:60:bb:49:0e:a7:8f:a1:a8:72:08:e8:f9: 5e:f8:ed:d7:da:5c:6d:92:ec:5c:dd:9e:7a:4f:1b: 59:bb:20:31:89:9d:5f:fc:91:51:a8:21:fc:11:01: fe:f5:10:3e:7c:62:43:fe:dd:ec:0a:81:01:79:62: 5e:e9:2b:fe:50:98:ca:b6:ea:ea:2a:e5:8c:34:5c: 16:a6:1d:c1:c4:eb:9a:ff:e1:a8:b1:1a:7f:a6:43: 8e:03:2e:02:44:3d:2a:04:ba:61:d3:22:7e:1e:b1: c5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D9:67:52:B8:D2:1C:4F:28:46:A8:15:BF:8F:5E:F0:01:BE:61:05 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:41:57:c6:51:62:aa:70:43:13:f0:a3:0e:66:94:11:ee:4c: d8:ef:64:21:ab:25:f3:62:90:b7:95:40:aa:08:0a:3c:6d:dc: ed:79:88:4c:25:3c:64:c9:ec:8e:2a:eb:e7:90:de:c8:71:21: fd:0f:fd:e8:0c:77:8d:5a:78:1f:44:bb:e2:ef:30:03:b1:40: f1:50:1e:a3:11:5e:b3:ca:dc:5b:c8:1c:a5:b8:5c:ba:09:e9: 44:f7:bf:58:49:59:3f:e5:03:d7:c1:1f:be:97:ad:83:e3:ff: bd:09:ce:88:e5:06:85:ee:06:a7:6b:38:76:45:9d:a6:11:f4: 3d:64:59:f7:1f:ed:96:03:a8:23:c0:bb:36:72:6c:82:ef:a1: 3b:61:2c:ff:05:6a:2e:5a:fc:43:d6:42:02:50:48:48:63:c5: 5d:53:81:af:4e:f7:e7:41:53:0c:66:79:8b:7e:c7:be:b9:e5: b7:91:0d:13:d6:2e:06:7a:4e:2a:29:43:db:88:58:0a:8c:01: 9f:71:63:1f:a7:45:ec:35:d0:9b:03:2c:62:1c:d6:b1:9d:c2: af:88:f8:90:2f:e5:b8:38:7c:59:11:f6:d1:a1:6c:80:f5:db: 93:b3:e0:b5:6d:f6:8a:f3:d5:01:c6:bc:7e:f7:eb:9b:a3:56: 18:f0:ed:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwNDI1MDUwNjExWhcNMjUwNTAyMDUwNjExWjAYMRYwFAYD VQQDEw02ODBiMTg0My0zMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5eVePEKgMJYSPceN0da2JPx77h5r9kIefpFGvCkjU4PWHL31hZHDu8mE/7sJ fqfgFICoelNaRGuE7lQ/Sjuj1wLRsbcRqhHWrvdXXu/9vefQ0yOCbi0PeIJ548RG tQ/e5yV0QiWrmXtrP3QodGQdRBpGYxPet3r8Vn3GhXmGbyE8C7iLHWfavNR0kAWn EmMAehOD/VE0WFxgu0kOp4+hqHII6Ple+O3X2lxtkuxc3Z56TxtZuyAxiZ1f/JFR qCH8EQH+9RA+fGJD/t3sCoEBeWJe6Sv+UJjKturqKuWMNFwWph3BxOua/+GosRp/ pkOOAy4CRD0qBLph0yJ+HrHFhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrZZ1K4 0hxPKEaoFb+PXvABvmEFMB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuQVfGUWKqcEMT8KMOZpQR7kzY72QhqyXzYpC3lUCqCAo8bdzteYhM JTxkyeyOKuvnkN7IcSH9D/3oDHeNWngfRLvi7zADsUDxUB6jEV6zytxbyByluFy6 CelE979YSVk/5QPXwR++l62D4/+9Cc6I5QaF7ganazh2RZ2mEfQ9ZFn3H+2WA6gj wLs2cmyC76E7YSz/BWouWvxD1kICUEhIY8VdU4GvTvfnQVMMZnmLfse+ueW3kQ0T 1i4Gek4qKUPbiFgKjAGfcWMfp0XsNdCbAyxiHNaxncKviPiQL+W4OHxZEfbRoWyA 9duTs+C1bfaK89UBxrx+9+ubo1YY8O2N -----END CERTIFICATE-----Generated at Sat Apr 26 16:18:17 2025 by rpki-client