$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft File: aecBsfM0KSOA56u5AcNCYzLGqlo.mft (raw, json) Hash identifier: JfLvEBqxOIUNto4x4865auaZbnbj3+Ipa9ApCFLe754= Subject key identifier: 12:4D:C2:80:0A:B0:55:04:9B:5F:01:97:98:F8:53:D4:A3:1F:D0:C0 Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 15BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft Manifest number: 15AC Signing time: Thu 24 Apr 2025 16:48:00 +0000 Manifest this update: Thu 24 Apr 2025 16:47:59 +0000 Manifest next update: Thu 01 May 2025 16:47:59 +0000 Files and hashes: 1: aecBsfM0KSOA56u5AcNCYzLGqlo.crl (hash: n9LXyKCwQDGj7bbPz7V+pIBWEk7LS4IiN7DCny+HfRk=) 2: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (hash: jy3Wft/F/5UxXAXx08sOlZkwBarb1srk+Xi5m/F+Ac0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5562 (0x15ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA, serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Validity Not Before: Apr 24 16:47:59 2025 GMT Not After : May 1 16:47:59 2025 GMT Subject: CN=680a6b3f-4141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1b:9a:9a:0a:a5:8b:92:0e:b2:95:a9:5c:86: 6c:f7:e1:79:b7:82:0a:d0:a6:d9:4e:fe:93:a2:71: 9e:14:78:98:36:78:3e:a7:6f:74:ed:aa:f8:f3:c2: 8c:d0:11:9a:13:72:ed:55:bf:4a:78:89:b8:2f:07: f0:d6:71:ab:16:e3:aa:0b:d3:b3:11:6f:e8:04:dd: 37:c8:ef:c8:7c:c6:49:47:d1:2a:68:58:9d:55:ce: fe:76:48:1d:a8:0c:f4:4d:85:3d:0a:09:35:cd:4b: e0:15:1a:fb:e4:a8:b1:f6:24:a9:41:75:a2:80:d5: 82:18:30:ee:30:85:43:ff:2a:a0:a2:df:03:e9:4d: ad:07:f4:9b:b7:8e:23:c8:fc:66:14:fa:d7:32:ef: 1b:52:8f:46:e2:a9:e1:5e:c4:20:d5:ff:91:ce:a6: 67:25:d1:91:d7:f5:d3:b7:26:2b:86:a2:9b:4a:cd: 70:9e:a2:8d:78:c5:03:f5:45:fb:d3:bd:b7:ee:17: 8a:da:d7:6d:69:47:d5:f7:01:ac:a1:0f:84:b9:b9: dd:e8:8d:24:6b:e6:84:96:8a:95:fe:e1:0e:b7:b4: 83:d1:c4:3b:b2:c5:66:d4:3e:87:6d:a2:bb:c1:44: bc:dc:9f:d8:7e:27:e7:5f:db:ee:47:d5:ff:f5:20: 6f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4D:C2:80:0A:B0:55:04:9B:5F:01:97:98:F8:53:D4:A3:1F:D0:C0 X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:0e:58:1d:da:ca:97:e4:07:ca:97:98:97:d3:e2:4d:9f:2e: 89:b6:42:b7:87:fe:38:65:e8:51:21:2c:a3:30:a6:6e:94:7a: 95:ac:4e:e3:06:6a:75:c4:41:0e:41:a0:80:41:ae:3b:19:67: 5d:27:6c:ba:0a:60:ee:3c:8c:d6:99:3f:5d:73:83:49:ed:35: b5:7d:f6:f7:58:07:f7:97:f2:59:4e:d8:69:cb:25:3a:5a:86: c1:de:4c:6d:56:a8:81:54:e1:4a:c7:8a:75:bf:8d:46:44:75: 96:21:aa:33:02:27:d3:99:f6:22:21:b1:4b:f0:d4:4d:6f:39: 81:1a:db:c3:a5:bd:92:37:2a:2e:6c:1c:42:e4:79:da:72:1b: 09:32:70:6c:bc:0e:6e:ba:6e:94:86:b5:f8:4f:6f:ea:c5:a9: 2f:8a:d0:71:61:6b:c6:b1:b8:00:c0:ea:91:a5:d5:dc:a5:fa: 9d:d0:c6:6d:60:ca:bd:e3:1d:5b:56:f0:0a:41:a7:29:88:44: 70:f8:f7:2c:ee:c4:38:1a:45:7c:8c:c1:70:93:84:08:b2:b1: 0f:a0:7a:5f:15:cc:0c:12:bc:55:67:23:1d:0e:19:f1:81:90: c4:88:d8:60:e1:ae:69:8b:9f:d6:da:08:b3:24:7d:62:a9:c7: 56:39:ff:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjUwNDI0MTY0NzU5WhcNMjUwNTAxMTY0NzU5WjAYMRYwFAYD VQQDEw02ODBhNmIzZi00MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRuamgqli5IOspWpXIZs9+F5t4IK0KbZTv6TonGeFHiYNng+p2907ar488KM 0BGaE3LtVb9KeIm4Lwfw1nGrFuOqC9OzEW/oBN03yO/IfMZJR9EqaFidVc7+dkgd qAz0TYU9Cgk1zUvgFRr75Kix9iSpQXWigNWCGDDuMIVD/yqgot8D6U2tB/Sbt44j yPxmFPrXMu8bUo9G4qnhXsQg1f+RzqZnJdGR1/XTtyYrhqKbSs1wnqKNeMUD9UX7 07237heK2tdtaUfV9wGsoQ+Eubnd6I0ka+aEloqV/uEOt7SD0cQ7ssVm1D6HbaK7 wUS83J/YfifnX9vuR9X/9SBvEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJNwoAK sFUEm18Bl5j4U9SjH9DAMB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDRFQS82ODkwMzM5NjJCNDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtT T0E1NnU1QWNOQ1l6TEdxbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJDlgd2sqX5AfKl5iX0+JNny6JtkK3h/44ZehRISyjMKZulHqVrE7j Bmp1xEEOQaCAQa47GWddJ2y6CmDuPIzWmT9dc4NJ7TW1ffb3WAf3l/JZTthpyyU6 WobB3kxtVqiBVOFKx4p1v41GRHWWIaozAifTmfYiIbFL8NRNbzmBGtvDpb2SNyou bBxC5HnachsJMnBsvA5uum6UhrX4T2/qxakvitBxYWvGsbgAwOqRpdXcpfqd0MZt YMq94x1bVvAKQacpiERw+Pcs7sQ4GkV8jMFwk4QIsrEPoHpfFcwMErxVZyMdDhnx gZDEiNhg4a5pi5/W2gizJH1iqcdWOf/D -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:50 2025 by rpki-client