$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft File: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft (raw, json) Hash identifier: lvhXnjfan0najziNjXTwsQd75TNqXk14LULoo6M9+U8= Subject key identifier: 55:31:F7:91:E1:E6:E7:59:A9:EE:9A:34:20:C8:AF:EF:06:39:66:CF Authority key identifier: F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 Certificate issuer: /CN=A91F8928/serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft Manifest number: 0C24 Signing time: Thu 24 Apr 2025 18:33:37 +0000 Manifest this update: Thu 24 Apr 2025 18:33:36 +0000 Manifest next update: Thu 01 May 2025 18:33:36 +0000 Files and hashes: 1: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl (hash: jHzn5BatyabtpD2gWBNYJ+yZAIDMEzCa/bJ02lsVZI4=) 2: 93840DE204E611ED89D3B27BC4F9AE02.roa (hash: Tra2m9br+70DR7E4OQkNdt1e6QXjZmJJfqTvZfV9wL0=) 3: 3762D3A44BA311EEA33D4B34C4F9AE02.roa (hash: 7jGf0oL08kyRPkfbbjOTxtmf2H3WTL9jhNs8s/Yud9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8928, serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Validity Not Before: Apr 24 18:33:36 2025 GMT Not After : May 1 18:33:36 2025 GMT Subject: CN=680a8400-dfd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3b:ee:8a:60:f9:10:43:d4:2b:4c:9e:3b:9a: 36:de:da:68:d4:b1:59:d3:7a:2b:30:e2:73:68:93: 95:26:36:37:e5:a7:64:b3:72:c6:2e:aa:34:b4:bf: cf:49:99:bc:39:e2:80:15:ee:ba:5b:33:e5:85:b7: a4:7c:9b:50:fc:43:9d:1a:86:26:a5:df:8d:6c:fd: c0:3d:11:ee:74:8e:cb:dd:26:20:5f:86:5e:65:39: 5a:4a:89:2e:c4:6b:e3:48:fd:00:f2:95:bd:c2:55: 33:cf:7a:53:74:fa:e8:6c:df:4b:b7:bc:8b:2d:16: 24:0e:2a:a4:d7:57:55:05:1a:e8:f5:61:b8:4c:5a: 5e:21:7b:b2:72:eb:d1:43:98:58:12:61:73:f3:68: 22:ce:2d:52:e1:41:95:40:90:9c:68:61:b0:0e:ec: d3:a4:9d:87:68:4f:ae:37:4d:85:c7:f3:57:60:86: db:09:8a:74:71:c4:15:25:84:4b:a6:9a:76:c4:82: 50:3a:0e:15:61:c5:67:23:0a:11:9d:03:87:28:9b: ff:d7:5b:a8:9e:4b:b3:57:19:ef:e7:e8:c0:71:05: e2:fd:fe:e2:8d:47:84:b7:70:19:3c:33:2a:f8:b1: be:4d:2b:04:9d:c4:01:4f:a4:2f:01:0b:4d:c1:81: c1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:31:F7:91:E1:E6:E7:59:A9:EE:9A:34:20:C8:AF:EF:06:39:66:CF X509v3 Authority Key Identifier: keyid:F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ce:27:ae:f0:2a:f3:6d:db:1c:76:e3:e9:98:43:6f:16:77: 4d:20:de:55:76:a0:8c:0e:e3:44:38:16:e8:e8:f8:b1:b2:2a: 9a:b3:4d:f4:3e:07:fe:4a:ac:87:8c:7d:ab:13:c6:12:93:bc: c1:89:5d:d8:7b:a5:2e:36:dd:e5:5a:33:3a:50:bc:20:43:1d: a6:47:be:c3:89:91:fe:ed:cf:0e:1a:e8:85:41:2c:e9:39:91: d8:fa:52:a9:2f:af:cc:4c:96:0c:53:ce:44:6b:65:bc:2b:87: 38:7d:55:d9:48:9f:96:8b:3f:c5:08:d7:c7:16:62:10:28:99: 0c:c7:56:3d:63:f5:3f:45:84:f4:c4:5a:9f:88:53:e7:6a:54: f3:03:14:37:da:d9:0c:81:bf:b1:9c:0d:34:d4:54:d0:4b:b9: bd:98:e2:e2:1e:02:83:3d:3c:c8:29:7b:09:dc:be:3a:ae:73: 85:a4:e7:82:c0:e7:55:82:f4:a9:7d:91:81:0e:32:fe:4e:00: 4a:f8:56:65:14:e6:75:80:a6:4a:d9:7f:a3:8d:1c:f7:48:4e: 71:20:67:1d:a5:4a:b2:13:2c:09:30:64:19:d0:c7:e1:34:46: d4:11:ad:8c:be:fa:da:df:76:25:a5:84:eb:09:75:ef:c1:99: 44:9f:1e:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5MjgxMTAvBgNVBAUTKEY1QzlEMzBFOUQwNzcxQ0QwN0U1MUIyRTRBNTJCNTIy NTNBQkQwMjYwHhcNMjUwNDI0MTgzMzM2WhcNMjUwNTAxMTgzMzM2WjAYMRYwFAYD VQQDEw02ODBhODQwMC1kZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTvuimD5EEPUK0yeO5o23tpo1LFZ03orMOJzaJOVJjY35adks3LGLqo0tL/P SZm8OeKAFe66WzPlhbekfJtQ/EOdGoYmpd+NbP3APRHudI7L3SYgX4ZeZTlaSoku xGvjSP0A8pW9wlUzz3pTdProbN9Lt7yLLRYkDiqk11dVBRro9WG4TFpeIXuycuvR Q5hYEmFz82gizi1S4UGVQJCcaGGwDuzTpJ2HaE+uN02Fx/NXYIbbCYp0ccQVJYRL ppp2xIJQOg4VYcVnIwoRnQOHKJv/11uonkuzVxnv5+jAcQXi/f7ijUeEt3AZPDMq +LG+TSsEncQBT6QvAQtNwYHB/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUx95Hh 5udZqe6aNCDIr+8GOWbPMB8GA1UdIwQYMBaAFPXJ0w6dB3HNB+UbLkpStSJTq9Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODkyOC80REE3QkIyMDBC NUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNjMEg1UnN1U2xLMUlsT3Iw Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljblREcDBIY2MwSDVSc3VTbEsxSWxPcjBDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODkyOC80REE3QkIyMDBCNUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNj MEg1UnN1U2xLMUlsT3IwQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADzieu8CrzbdscduPpmENvFndNIN5VdqCMDuNEOBbo6Pixsiqas030 Pgf+SqyHjH2rE8YSk7zBiV3Ye6UuNt3lWjM6ULwgQx2mR77DiZH+7c8OGuiFQSzp OZHY+lKpL6/MTJYMU85Ea2W8K4c4fVXZSJ+Wiz/FCNfHFmIQKJkMx1Y9Y/U/RYT0 xFqfiFPnalTzAxQ32tkMgb+xnA001FTQS7m9mOLiHgKDPTzIKXsJ3L46rnOFpOeC wOdVgvSpfZGBDjL+TgBK+FZlFOZ1gKZK2X+jjRz3SE5xIGcdpUqyEywJMGQZ0Mfh NEbUEa2Mvvra33YlpYTrCXXvwZlEnx49 -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:33 2025 by rpki-client