$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft File: fJ9yIp7REllMdyLTwhtRBeKfxIo.mft (raw, json) Hash identifier: Rp67uGHlQT8cbHeOFJwFz5LnOtXMuV0qWWK0nN7KwLo= Subject key identifier: 96:5B:19:DA:A3:D7:92:EC:52:C8:0B:14:1A:23:AE:68:0F:57:DF:7D Authority key identifier: 7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A Certificate issuer: /CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft Manifest number: 0159 Signing time: Fri 25 Apr 2025 03:17:14 +0000 Manifest this update: Fri 25 Apr 2025 03:17:14 +0000 Manifest next update: Fri 02 May 2025 03:17:14 +0000 Files and hashes: 1: fJ9yIp7REllMdyLTwhtRBeKfxIo.crl (hash: lK/GpTOjXUm1naoOcQ9o8wL5rVdCIYWr2F5YPOtaZKA=) 2: 0D99319006F011EFA8C8D445C4F9AE02.roa (hash: A4DVK+hVAcm077tOI0UtMRITW1ft4Rq073mjOE1b4lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77AD, serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Validity Not Before: Apr 25 03:17:14 2025 GMT Not After : May 2 03:17:14 2025 GMT Subject: CN=680afeba-ed76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:64:f2:50:b8:9e:3e:62:9d:89:23:d1:d0:5b: 07:09:83:57:d3:dc:07:8d:6d:16:45:b7:ad:73:f6: dc:cd:58:b6:e6:8f:a7:e2:3c:44:58:19:51:4a:1e: 2d:dc:91:55:e0:cf:37:f6:43:c3:d4:23:72:f2:0b: e1:e9:ff:9f:34:b1:b5:d0:65:a8:73:c0:ff:43:23: bb:80:d4:9b:73:f9:09:d3:54:d0:8d:63:69:f5:65: 7c:17:c3:69:fd:a0:08:ff:e7:62:66:ce:d4:be:72: cd:5c:05:b3:2a:55:ea:38:1f:8d:49:96:f6:8d:e2: 13:ca:ab:cd:9f:af:d1:b4:95:22:e9:c5:b5:53:2f: 5e:0b:33:a5:18:a8:c0:0a:71:60:4d:b5:b8:f5:07: 7c:42:0c:30:a1:dc:80:04:20:58:04:03:9a:7c:f9: 6b:16:b5:08:5b:96:e7:3a:83:26:83:98:25:a7:b9: bc:8f:84:4c:f8:80:aa:7a:58:73:12:49:fa:8b:5c: ee:e4:eb:09:35:ce:3a:38:5c:66:f1:9c:85:cf:24: 62:d1:b9:5d:72:d2:9b:a4:d5:4d:d3:ad:ae:25:10: 48:86:75:0a:5b:20:e0:68:fd:99:50:a6:f5:43:01: 22:16:ec:6f:09:b3:87:4c:e2:d2:89:2e:3d:0a:19: 47:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5B:19:DA:A3:D7:92:EC:52:C8:0B:14:1A:23:AE:68:0F:57:DF:7D X509v3 Authority Key Identifier: keyid:7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:06:e5:c0:19:41:73:e4:4f:2d:29:2c:40:d4:81:05:05:70: 3c:c1:f2:5c:64:8c:5f:dc:d7:82:f9:c8:02:fd:e5:b3:0d:3d: 66:e3:c9:ff:c5:40:1b:2a:27:9c:d2:7c:f6:7a:09:a0:fa:62: 5b:ba:62:6f:0c:38:cb:9c:c2:09:82:bc:f9:53:d6:c0:1f:20: c9:6a:42:bf:df:b8:72:41:fc:b3:b2:38:82:5e:5e:e2:ec:c8: 1c:f4:8a:94:64:d7:41:74:46:5c:94:7b:69:86:37:07:6e:cf: 96:a6:d0:57:7d:d6:3e:b1:88:8f:4e:8d:15:0f:e3:28:2d:61: fd:d7:91:7c:0a:5c:8d:24:ba:97:76:76:df:7d:27:2a:21:81: b7:a4:f6:76:3e:97:8a:63:d3:97:47:af:33:e5:13:6e:35:19: dc:74:54:d6:04:38:8a:c6:0b:23:5c:2d:fe:23:bd:99:31:58: aa:01:05:5d:0f:6f:2a:bf:b5:d6:fe:cc:97:86:cd:82:74:7d: 00:3d:75:b5:40:8f:67:38:56:5a:95:9a:7e:25:bf:7f:b8:1a: 19:65:a6:37:7a:cf:75:8a:d2:fa:a1:41:50:c0:2b:cf:2c:6c: 9b:80:21:26:fc:e3:70:b8:c6:13:2d:c2:e7:06:4d:18:2e:19: 58:65:c1:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3QUQxMTAvBgNVBAUTKDdDOUY3MjIyOUVEMTEyNTk0Qzc3MjJEM0MyMUI1MTA1 RTI5RkM0OEEwHhcNMjUwNDI1MDMxNzE0WhcNMjUwNTAyMDMxNzE0WjAYMRYwFAYD VQQDEw02ODBhZmViYS1lZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WTyULiePmKdiSPR0FsHCYNX09wHjW0WRbetc/bczVi25o+n4jxEWBlRSh4t 3JFV4M839kPD1CNy8gvh6f+fNLG10GWoc8D/QyO7gNSbc/kJ01TQjWNp9WV8F8Np /aAI/+diZs7UvnLNXAWzKlXqOB+NSZb2jeITyqvNn6/RtJUi6cW1Uy9eCzOlGKjA CnFgTbW49Qd8QgwwodyABCBYBAOafPlrFrUIW5bnOoMmg5glp7m8j4RM+ICqelhz Ekn6i1zu5OsJNc46OFxm8ZyFzyRi0bldctKbpNVN062uJRBIhnUKWyDgaP2ZUKb1 QwEiFuxvCbOHTOLSiS49ChlHNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZbGdqj 15LsUsgLFBojrmgPV999MB8GA1UdIwQYMBaAFHyfciKe0RJZTHci08IbUQXin8SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdBRC9DRTZDMjM3QTIw QTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVsbE1keUxUd2h0UkJlS2Z4 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKOXlJcDdSRWxsTWR5TFR3aHRSQmVLZnhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzdBRC9DRTZDMjM3QTIwQTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVs bE1keUxUd2h0UkJlS2Z4SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiBuXAGUFz5E8tKSxA1IEFBXA8wfJcZIxf3NeC+cgC/eWzDT1m48n/ xUAbKiec0nz2egmg+mJbumJvDDjLnMIJgrz5U9bAHyDJakK/37hyQfyzsjiCXl7i 7Mgc9IqUZNdBdEZclHtphjcHbs+WptBXfdY+sYiPTo0VD+MoLWH915F8ClyNJLqX dnbffScqIYG3pPZ2PpeKY9OXR68z5RNuNRncdFTWBDiKxgsjXC3+I72ZMViqAQVd D28qv7XW/syXhs2CdH0APXW1QI9nOFZalZp+Jb9/uBoZZaY3es91itL6oUFQwCvP LGybgCEm/ONwuMYTLcLnBk0YLhlYZcEn -----END CERTIFICATE-----Generated at Sat Apr 26 03:42:18 2025 by rpki-client