$ rpki-client -vvf rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft File: u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft (raw, json) Hash identifier: f71L0/XxZlyiOPvoW1RzLwUAlryXFEYs67+GNDj1Jp0= Subject key identifier: C0:3A:09:DC:34:61:D1:CE:65:0C:70:31:C3:62:93:0A:ED:DB:8C:5C Authority key identifier: BB:5A:BB:59:F3:17:AB:7C:E9:55:41:CA:5A:C5:2F:21:7F:E9:59:31 Certificate issuer: /CN=A91F75E9/serialNumber=BB5ABB59F317AB7CE95541CA5AC52F217FE95931 Certificate serial: 07C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft Manifest number: 07B5 Signing time: Thu 24 Apr 2025 21:01:48 +0000 Manifest this update: Thu 24 Apr 2025 21:01:48 +0000 Manifest next update: Thu 01 May 2025 21:01:48 +0000 Files and hashes: 1: u1q7WfMXq3zpVUHKWsUvIX_pWTE.crl (hash: 9dSXFKisWxKgOfl9M4Y4QwSzrkJQV5YAmwRDZETZEwM=) 2: B3A2D41A071211F0B9531F0DC4F9AE02.roa (hash: 0UTI8vBXyFaaaPE8GDLKNFY+lSRTHbfC3s12YcpVQog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.crl rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1986 (0x7c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F75E9, serialNumber=BB5ABB59F317AB7CE95541CA5AC52F217FE95931 Validity Not Before: Apr 24 21:01:48 2025 GMT Not After : May 1 21:01:48 2025 GMT Subject: CN=680aa6bc-e7d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ad:f4:8a:98:58:04:be:c3:73:6a:c7:89:b5: f7:43:ab:ac:f3:58:f6:3b:25:ba:d6:77:7c:4b:ef: 0e:c8:13:be:12:a1:b3:9c:1d:fd:21:37:5e:96:32: ca:cb:d0:da:49:d6:0c:37:a2:ea:c3:d9:85:74:6e: ee:01:c8:ae:41:44:ab:ce:3e:34:3c:15:72:73:70: 67:85:09:10:35:d4:82:3c:c0:0e:20:be:d7:0a:a0: 38:df:be:75:dd:b3:0a:d5:bd:cd:3e:5e:29:8a:e7: 8c:4c:c1:ee:2f:68:07:79:2b:23:64:f7:9b:11:30: fa:d4:2c:5b:af:88:31:d4:53:8d:e6:3b:17:cb:31: 28:0d:72:05:b0:58:dd:4c:3b:cb:b2:b7:83:6b:93: 48:81:00:06:24:76:12:ed:7d:73:77:0b:33:83:70: 01:02:e8:88:06:0e:83:ac:11:99:24:da:70:f6:f8: 39:29:04:2e:e4:42:e0:10:70:4d:c1:91:89:5e:9b: 6e:6d:f6:fd:bd:64:58:06:c7:39:0c:76:ea:1b:14: 36:19:eb:86:38:61:46:2d:3a:04:c0:9f:a8:a4:65: 2f:c2:93:9f:24:bd:9a:03:dc:85:49:82:6e:32:f2: bd:ad:15:06:c5:bb:e6:a1:25:88:50:dd:51:79:51: 82:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3A:09:DC:34:61:D1:CE:65:0C:70:31:C3:62:93:0A:ED:DB:8C:5C X509v3 Authority Key Identifier: keyid:BB:5A:BB:59:F3:17:AB:7C:E9:55:41:CA:5A:C5:2F:21:7F:E9:59:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:cb:a1:ae:42:10:56:c0:aa:4a:cd:db:95:ea:86:0f:ed:89: 9e:67:ca:5a:ab:5b:17:03:bf:be:75:62:b3:dc:b5:80:8a:08: 17:4a:97:34:eb:26:93:9e:7a:2d:4c:7e:91:6c:2b:86:23:2e: 8b:1e:d0:62:65:b5:ae:6d:53:38:1a:3f:e8:25:54:b8:6d:be: 07:33:86:86:54:fb:3c:dc:69:bd:ea:d0:cd:f8:82:c7:65:7c: f9:4e:59:de:a6:79:8d:6e:a1:28:58:10:3f:e0:a7:1c:bd:92: 52:41:14:7a:55:02:b5:df:35:1a:7a:2f:9a:fb:f0:55:06:39: 55:9a:bf:06:e0:64:c7:72:de:a4:32:84:ce:40:3b:f1:95:30: b3:da:9c:18:6e:88:80:64:7c:26:cb:4d:ca:b3:b6:55:4a:e0: e0:27:6a:19:38:6d:d8:e8:ee:77:eb:37:9e:69:b3:1c:9c:be: d4:ac:6b:3e:44:9a:b3:1b:6f:49:68:34:5d:1c:80:c0:a9:f9: a1:48:b2:d5:1b:75:f4:21:6b:ac:7f:71:9a:22:41:e0:c4:77: 2c:c2:bb:be:57:1b:99:c4:0d:95:85:52:c8:4d:5e:26:b3:f7: fb:13:53:a2:27:1e:e8:d6:b6:28:5a:71:ff:61:13:6b:47:7b: 81:b3:c7:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1RTkxMTAvBgNVBAUTKEJCNUFCQjU5RjMxN0FCN0NFOTU1NDFDQTVBQzUyRjIx N0ZFOTU5MzEwHhcNMjUwNDI0MjEwMTQ4WhcNMjUwNTAxMjEwMTQ4WjAYMRYwFAYD VQQDEw02ODBhYTZiYy1lN2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0a30iphYBL7Dc2rHibX3Q6us81j2OyW61nd8S+8OyBO+EqGznB39ITdeljLK y9DaSdYMN6Lqw9mFdG7uAciuQUSrzj40PBVyc3BnhQkQNdSCPMAOIL7XCqA43751 3bMK1b3NPl4piueMTMHuL2gHeSsjZPebETD61Cxbr4gx1FON5jsXyzEoDXIFsFjd TDvLsreDa5NIgQAGJHYS7X1zdwszg3ABAuiIBg6DrBGZJNpw9vg5KQQu5ELgEHBN wZGJXptubfb9vWRYBsc5DHbqGxQ2GeuGOGFGLToEwJ+opGUvwpOfJL2aA9yFSYJu MvK9rRUGxbvmoSWIUN1ReVGCuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMA6Cdw0 YdHOZQxwMcNikwrt24xcMB8GA1UdIwQYMBaAFLtau1nzF6t86VVBylrFLyF/6Vkx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzVFOS9FNjk0RkM0QUZC RDcxMUVBQkZFRTUyNDZDNEY5QUUwMi91MXE3V2ZNWHEzenBWVUhLV3NVdklYX3BX VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxcTdXZk1YcTN6cFZVSEtXc1V2SVhfcFdURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzVFOS9FNjk0RkM0QUZCRDcxMUVBQkZFRTUyNDZDNEY5QUUwMi91MXE3V2ZNWHEz enBWVUhLV3NVdklYX3BXVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMy6GuQhBWwKpKzduV6oYP7YmeZ8paq1sXA7++dWKz3LWAiggXSpc0 6yaTnnotTH6RbCuGIy6LHtBiZbWubVM4Gj/oJVS4bb4HM4aGVPs83Gm96tDN+ILH ZXz5TlnepnmNbqEoWBA/4KccvZJSQRR6VQK13zUaei+a+/BVBjlVmr8G4GTHct6k MoTOQDvxlTCz2pwYboiAZHwmy03Ks7ZVSuDgJ2oZOG3Y6O536zeeabMcnL7UrGs+ RJqzG29JaDRdHIDAqfmhSLLVG3X0IWusf3GaIkHgxHcswru+VxuZxA2VhVLITV4m s/f7E1OiJx7o1rYoWnH/YRNrR3uBs8dL -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:42 2025 by rpki-client