$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft File: EdT02sf7qLXBIiQwBTm9xhVEXeU.mft (raw, json) Hash identifier: uxcnYDb/IzKNfizORlP6CAuXp7q/M0vezutJjxgZaI0= Subject key identifier: BF:99:BF:02:4B:95:1C:C2:28:01:64:58:F5:91:33:E4:4A:2B:E1:80 Authority key identifier: 11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 Certificate issuer: /CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft Manifest number: AD Signing time: Sat 03 May 2025 05:28:23 +0000 Manifest this update: Sat 03 May 2025 05:28:22 +0000 Manifest next update: Sat 10 May 2025 05:28:22 +0000 Files and hashes: 1: EdT02sf7qLXBIiQwBTm9xhVEXeU.crl (hash: ZQ+0WbCXHPd1tpbxEBOBIDLZYGrVTQgRN8vDgtsHmX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Validity Not Before: May 3 05:28:22 2025 GMT Not After : May 10 05:28:22 2025 GMT Subject: CN=6815a976-8bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8b:b4:a8:65:7e:15:4c:ab:b7:7c:5b:89:ee: 2a:64:93:84:d6:a8:8a:4b:e2:5c:5f:d3:41:cc:1a: 02:24:56:79:f1:a9:51:a7:ed:49:b6:76:aa:96:4e: f6:51:1d:6a:06:26:93:3a:fb:5c:b1:a5:c4:e5:e7: 49:4e:91:a4:1c:46:ae:80:91:01:fd:db:c3:24:99: ea:6b:03:e5:f4:d3:97:a6:dd:18:90:58:a6:94:08: 55:b8:44:8c:19:0b:37:10:24:bc:f3:d4:08:8f:1b: 27:99:57:42:da:ac:69:65:77:e4:22:01:da:12:44: 25:7f:6d:72:da:00:1b:b8:29:95:4b:ba:51:98:eb: d9:1a:36:77:72:d0:18:c8:a0:2d:50:6a:71:df:43: c9:e1:2d:e3:ed:bc:5f:06:e1:e7:13:ce:f5:c9:05: 19:92:1d:40:f9:0c:b6:94:58:5b:74:8e:15:cb:ce: 05:9e:a2:48:75:d1:19:64:ac:35:08:0a:17:4e:12: 01:e0:fe:27:ae:51:ca:b7:d5:53:c4:d1:be:ff:54: f8:9b:8b:d4:54:37:f7:ce:41:c0:4a:e2:2e:41:c0: fc:4c:c9:22:88:72:00:21:7e:f7:71:19:85:80:e8: f4:91:a8:3a:83:b3:b2:60:10:91:1b:c7:33:14:ea: 2e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:99:BF:02:4B:95:1C:C2:28:01:64:58:F5:91:33:E4:4A:2B:E1:80 X509v3 Authority Key Identifier: keyid:11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:66:92:a6:92:11:b0:5d:bb:32:39:0f:01:52:4d:7b:02:46: 8c:6e:b6:8e:bb:de:cc:bf:ac:7a:62:0c:52:d3:a2:b2:a1:d0: b2:fc:1e:10:bb:26:d8:55:89:f2:70:86:e1:6a:21:5a:30:8b: 20:94:6a:85:a3:b0:1a:60:a6:42:0b:21:88:a6:34:ba:6c:a8: 5d:a2:07:48:05:b3:47:52:e4:30:8b:a6:7b:4f:d8:9f:6a:29: 73:ac:6b:87:ad:06:5c:b3:e4:90:4e:b2:44:c0:3e:19:48:0c: 5c:44:af:a4:73:c1:9a:3c:55:24:f5:c9:56:31:08:73:10:ce: 40:b0:c8:40:64:6d:1e:15:8e:e8:1b:d8:c8:21:90:98:0c:da: b3:46:db:d3:78:b5:cc:76:c6:22:2d:42:8b:8e:79:92:ce:b2: fa:88:83:a9:a8:4a:a1:4e:82:1c:64:e2:6c:32:ba:43:32:3c: 3e:6c:eb:56:aa:c5:5e:90:bf:4f:80:df:0f:05:f1:1e:cd:22: 1e:8a:0f:63:92:3a:a1:cd:51:e4:81:e9:8e:48:15:fb:c5:05: b6:a2:cf:8f:8c:31:98:76:19:dd:b4:9b:b5:4c:14:c9:51:fa: 8f:e2:66:b1:ec:34:75:9c:cb:d8:57:cd:36:c8:fa:82:02:6e: 60:77:0e:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDExRDRGNERBQzdGQkE4QjVDMTIyMjQzMDA1MzlCREM2 MTU0NDVERTUwHhcNMjUwNTAzMDUyODIyWhcNMjUwNTEwMDUyODIyWjAYMRYwFAYD VQQDEw02ODE1YTk3Ni04YmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ou0qGV+FUyrt3xbie4qZJOE1qiKS+JcX9NBzBoCJFZ58alRp+1Jtnaqlk72 UR1qBiaTOvtcsaXE5edJTpGkHEaugJEB/dvDJJnqawPl9NOXpt0YkFimlAhVuESM GQs3ECS889QIjxsnmVdC2qxpZXfkIgHaEkQlf21y2gAbuCmVS7pRmOvZGjZ3ctAY yKAtUGpx30PJ4S3j7bxfBuHnE871yQUZkh1A+Qy2lFhbdI4Vy84FnqJIddEZZKw1 CAoXThIB4P4nrlHKt9VTxNG+/1T4m4vUVDf3zkHASuIuQcD8TMkiiHIAIX73cRmF gOj0kag6g7OyYBCRG8czFOouNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+ZvwJL lRzCKAFkWPWRM+RKK+GAMB8GA1UdIwQYMBaAFBHU9NrH+6i1wSIkMAU5vcYVRF3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi9COEMwQjBBMDI2 QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FMWEJJaVF3QlRtOXhoVkVY ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VkVDAyc2Y3cUxYQklpUXdCVG05eGhWRVhlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi9COEMwQjBBMDI2QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FM WEJJaVF3QlRtOXhoVkVYZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7ZpKmkhGwXbsyOQ8BUk17AkaMbraOu97Mv6x6YgxS06KyodCy/B4Q uybYVYnycIbhaiFaMIsglGqFo7AaYKZCCyGIpjS6bKhdogdIBbNHUuQwi6Z7T9if ailzrGuHrQZcs+SQTrJEwD4ZSAxcRK+kc8GaPFUk9clWMQhzEM5AsMhAZG0eFY7o G9jIIZCYDNqzRtvTeLXMdsYiLUKLjnmSzrL6iIOpqEqhToIcZOJsMrpDMjw+bOtW qsVekL9PgN8PBfEezSIeig9jkjqhzVHkgemOSBX7xQW2os+PjDGYdhndtJu1TBTJ UfqP4max7DR1nMvYV802yPqCAm5gdw79 -----END CERTIFICATE-----Generated at Sat May 3 12:01:48 2025 by rpki-client