$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft File: n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft (raw, json) Hash identifier: PxBRCz/s/orxtxAfUluWxcldmZB8SrUfm5RrEqZj3vc= Subject key identifier: 24:17:89:47:3E:76:28:C2:9B:2D:FF:3E:F1:FA:FA:FF:41:41:E3:41 Authority key identifier: 9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 Certificate issuer: /CN=A91F8282/serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft Manifest number: 1C Signing time: Fri 25 Apr 2025 06:55:46 +0000 Manifest this update: Fri 25 Apr 2025 06:55:46 +0000 Manifest next update: Fri 02 May 2025 06:55:46 +0000 Files and hashes: 1: n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl (hash: N3ycjdvPrFRWn6hwZNTHJ4o6Y8rnshga92IgANXICpw=) 2: 05EBB6CEFEF811EFB0C52572C4F9AE02.roa (hash: hHpuvEEfCl4OhjB2zfY/eTXHBtooIatBX5e91JuXgS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Validity Not Before: Apr 25 06:55:46 2025 GMT Not After : May 2 06:55:46 2025 GMT Subject: CN=680b31f2-483d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ab:ff:ac:d1:aa:cc:d4:9f:3e:8f:c8:fc:3f: a0:5d:ea:41:46:52:b4:8e:d6:c7:32:de:0a:16:a1: c2:cb:36:f7:8f:5e:49:4c:41:df:3c:23:dd:bf:7f: 25:fe:92:23:3d:d5:1c:29:d1:dc:b0:90:09:4a:c0: 42:5a:6c:18:86:a4:b3:c6:2d:a1:b8:89:e2:f6:6d: 0f:bd:95:42:ea:89:bb:26:fe:00:0c:ea:92:e7:cf: ca:53:5c:a3:82:ac:b6:b1:7b:86:96:f0:4d:25:8e: 0c:0a:70:b0:8b:ca:9a:bc:45:1a:31:c4:e2:3f:d9: ff:be:e9:52:4d:22:56:15:c3:ba:72:de:22:fa:f5: f4:6b:ae:80:ca:76:4d:89:95:87:24:40:7c:62:96: 1c:77:d0:8f:26:03:91:d8:8c:55:02:48:41:a7:19: 8a:7f:4e:63:83:91:17:dd:80:30:b0:5b:34:11:c9: 25:36:e6:03:16:f0:71:b5:ba:cc:16:9a:74:38:23: ab:05:4b:2e:11:de:82:7f:2b:76:c4:bd:c0:86:51: 64:4d:01:ed:bd:68:ea:c5:cb:70:d3:75:00:cf:62: 65:3a:6c:9a:ac:7b:0b:c4:37:29:90:06:40:00:8f: 01:06:96:e9:ed:07:68:bd:3f:ec:39:7c:08:3c:11: e2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:17:89:47:3E:76:28:C2:9B:2D:FF:3E:F1:FA:FA:FF:41:41:E3:41 X509v3 Authority Key Identifier: keyid:9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b4:c2:4c:22:e1:ed:f0:1b:46:bb:fb:f9:5f:13:dc:3b:54: 88:8c:82:b8:b1:5e:05:cc:ea:e0:1a:8d:bb:19:67:15:a4:7a: af:f0:2f:96:01:e3:4b:83:90:57:00:05:da:78:04:3c:53:cf: 08:00:95:dc:e1:61:26:e8:a1:ad:0e:f0:ab:90:f6:a6:88:20: bd:18:eb:f9:ed:49:0b:6d:a1:41:f0:fd:fb:91:79:ee:c0:89: f7:e1:7e:62:01:40:99:4d:35:fc:25:9b:0f:0c:95:60:fd:7d: c4:a4:f1:c2:72:45:55:8d:53:13:9d:07:49:32:86:c1:64:7a: 24:e3:74:2b:19:7a:53:c4:f3:84:be:e1:c7:cc:25:c3:e7:20: 47:ac:2a:c3:26:57:ee:b8:79:06:1e:26:f7:32:bd:46:96:30: 7e:61:f3:a2:f5:70:ed:13:07:80:87:8b:fc:ae:e5:9b:14:52: 92:8b:34:7b:7a:3c:7c:19:9b:79:64:99:f5:d8:a7:c3:6b:e0: e7:ed:38:fb:de:00:fc:9b:4d:d3:74:b6:e1:a7:78:19:11:ab: c0:65:ac:e3:16:ef:c3:c8:eb:b3:5e:e7:89:f2:76:c6:40:48: 87:32:8c:e1:d9:08:bf:93:f3:bc:43:c4:45:e4:de:17:dc:bc: e6:ab:a7:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoOUY3QjQyRUYxOEQzNDJGREQ1NkE5RkRDNUYzRDgwMUUy RDJDMUFCNzAeFw0yNTA0MjUwNjU1NDZaFw0yNTA1MDIwNjU1NDZaMBgxFjAUBgNV BAMTDTY4MGIzMWYyLTQ4M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxq/+s0arM1J8+j8j8P6Bd6kFGUrSO1scy3goWocLLNvePXklMQd88I92/fyX+ kiM91Rwp0dywkAlKwEJabBiGpLPGLaG4ieL2bQ+9lULqibsm/gAM6pLnz8pTXKOC rLaxe4aW8E0ljgwKcLCLypq8RRoxxOI/2f++6VJNIlYVw7py3iL69fRrroDKdk2J lYckQHxilhx30I8mA5HYjFUCSEGnGYp/TmODkRfdgDCwWzQRySU25gMW8HG1uswW mnQ4I6sFSy4R3oJ/K3bEvcCGUWRNAe29aOrFy3DTdQDPYmU6bJqsewvENymQBkAA jwEGluntB2i9P+w5fAg8EeLxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJBeJRz52 KMKbLf8+8fr6/0FB40EwHwYDVR0jBBgwFoAUn3tC7xjTQv3Vap/cXz2AHi0sGrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzA2MUFBQjUyRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYzVmFwX2NYejJBSGkwc0dy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbjN0Qzd4alRRdjNWYXBfY1h6MkFIaTBzR3JjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzA2MUFBQjUyRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYz VmFwX2NYejJBSGkwc0dyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC60wkwi4e3wG0a7+/lfE9w7VIiMgrixXgXM6uAajbsZZxWkeq/wL5YB 40uDkFcABdp4BDxTzwgAldzhYSbooa0O8KuQ9qaIIL0Y6/ntSQttoUHw/fuRee7A iffhfmIBQJlNNfwlmw8MlWD9fcSk8cJyRVWNUxOdB0kyhsFkeiTjdCsZelPE84S+ 4cfMJcPnIEesKsMmV+64eQYeJvcyvUaWMH5h86L1cO0TB4CHi/yu5ZsUUpKLNHt6 PHwZm3lkmfXYp8Nr4OftOPveAPybTdN0tuGneBkRq8BlrOMW78PI67Ne54nydsZA SIcyjOHZCL+T87xDxEXk3hfcvOarp1U= -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:19 2025 by rpki-client