$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: uHE5yj4/NfiIISjfTupDroQKjweWTwEF1SNCs83o3QM= Subject key identifier: 70:B2:D5:37:65:E3:F5:16:69:BC:8B:0F:D0:F2:5A:FF:6B:01:24:9D Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 77 Signing time: Fri 25 Apr 2025 05:45:30 +0000 Manifest this update: Fri 25 Apr 2025 05:45:29 +0000 Manifest next update: Fri 02 May 2025 05:45:29 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: 15a5ebJ80Yowx5IKuY7Kmbn1LJKKw51JgZs3d9/5VGk=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Apr 25 05:45:29 2025 GMT Not After : May 2 05:45:29 2025 GMT Subject: CN=680b2179-5c8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0d:a0:1c:05:ab:89:da:c5:b2:6f:36:dd:ba: e9:67:a0:d5:51:ed:e6:cb:54:0f:e4:1e:c6:8b:1d: 2c:14:0c:c7:23:70:cc:5a:d4:66:99:d6:a1:1f:e1: 39:dd:f1:37:40:8e:28:3d:81:95:eb:99:76:ed:63: 53:8e:16:2c:f5:f8:18:1f:df:0d:3e:89:18:63:fe: da:00:d8:18:7a:d5:c9:0f:96:63:39:07:0b:d9:ef: 4c:bc:e4:a1:45:b6:19:46:b0:9f:f3:54:2d:a3:eb: 18:2a:a4:2e:e2:cc:29:27:97:4a:57:90:4f:61:0a: 96:c7:18:c0:c8:9e:f1:eb:3c:c6:d5:2d:6f:15:53: 36:cb:8e:85:26:e2:4a:f8:50:37:9c:5b:b3:ed:eb: f2:04:bd:21:87:ec:5a:63:38:03:e1:64:73:8f:6c: 28:f8:d9:b2:0b:b2:bd:12:4a:7d:bf:c9:2b:6d:03: f6:c5:56:a7:10:0d:2b:5d:22:83:f8:ec:57:e1:eb: 00:ad:e9:55:71:d9:cd:18:83:5a:d1:1a:cd:b7:0c: 7c:f8:c8:a3:c1:0a:cb:48:7b:f1:28:03:d1:d3:b4: b0:8e:a1:14:af:38:ec:b6:c0:b8:7e:1b:5b:60:a3: 5f:b4:ef:7c:9e:90:bd:52:01:77:a5:73:72:e9:4a: 6a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B2:D5:37:65:E3:F5:16:69:BC:8B:0F:D0:F2:5A:FF:6B:01:24:9D X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c4:a7:da:d6:3e:0f:ac:4a:85:bb:0b:a6:f9:20:28:90:06: 6b:6c:5a:c5:ec:0b:74:01:ff:20:57:8f:0c:33:23:3d:40:b2: f5:1b:10:63:5c:13:ab:f4:e9:1c:86:68:00:bc:1e:89:4e:a2: 17:bf:02:9e:31:aa:74:b2:4f:75:15:7c:d8:56:eb:e2:ce:3f: b9:1b:b7:a6:20:35:c6:58:a5:1c:59:05:9f:fc:4b:0e:ef:2f: 5c:e6:49:c6:09:a7:f3:22:31:0d:2d:18:91:dd:8e:57:fb:17: d5:54:81:a1:28:10:93:05:1f:40:20:a9:53:b2:e1:4d:1a:87: 9a:78:55:96:c6:37:00:f7:b7:12:90:2e:43:00:5c:10:74:4a: 0a:4d:60:fd:fd:93:ac:31:d1:9f:11:d6:91:a2:6b:06:36:81: 74:23:b2:c7:1d:fd:0e:77:46:05:32:78:08:c7:18:93:a8:e1: 1a:d3:20:12:39:2e:17:d3:e3:e5:a4:a8:6a:8e:27:4f:ac:5a: 35:91:f8:2f:ac:ea:e7:9e:15:36:e8:56:71:e7:86:16:18:f9: 64:25:af:2c:b5:25:6d:5f:29:be:1d:5d:6a:c9:d7:5d:aa:f1: 88:3f:21:4d:25:8b:0d:25:02:43:f0:e3:75:6d:f6:55:82:04: 84:87:49:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoMzIxNEUyNjBBNzhGN0QxNjc3RTgzMDEzN0MxMDY1NzMw MDMxQ0Y2NjAeFw0yNTA0MjUwNTQ1MjlaFw0yNTA1MDIwNTQ1MjlaMBgxFjAUBgNV BAMTDTY4MGIyMTc5LTVjOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSDaAcBauJ2sWybzbduulnoNVR7ebLVA/kHsaLHSwUDMcjcMxa1GaZ1qEf4Tnd 8TdAjig9gZXrmXbtY1OOFiz1+Bgf3w0+iRhj/toA2Bh61ckPlmM5BwvZ70y85KFF thlGsJ/zVC2j6xgqpC7izCknl0pXkE9hCpbHGMDInvHrPMbVLW8VUzbLjoUm4kr4 UDecW7Pt6/IEvSGH7FpjOAPhZHOPbCj42bILsr0SSn2/ySttA/bFVqcQDStdIoP4 7Ffh6wCt6VVx2c0Yg1rRGs23DHz4yKPBCstIe/EoA9HTtLCOoRSvOOy2wLh+G1tg o1+073yekL1SAXelc3LpSmpRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcLLVN2Xj 9RZpvIsP0PJa/2sBJJ0wHwYDVR0jBBgwFoAUMhTiYKePfRZ36DATfBBlcwAxz2Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzI3MkI0QzcwNkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhUaVlLZVBmUlozNkRBVGZCQmxjd0F4ejJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzI3MkI0QzcwNkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJa MzZEQVRmQkJsY3dBeHoyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD3Ep9rWPg+sSoW7C6b5ICiQBmtsWsXsC3QB/yBXjwwzIz1AsvUbEGNc E6v06RyGaAC8HolOohe/Ap4xqnSyT3UVfNhW6+LOP7kbt6YgNcZYpRxZBZ/8Sw7v L1zmScYJp/MiMQ0tGJHdjlf7F9VUgaEoEJMFH0AgqVOy4U0ah5p4VZbGNwD3txKQ LkMAXBB0SgpNYP39k6wx0Z8R1pGiawY2gXQjsscd/Q53RgUyeAjHGJOo4RrTIBI5 LhfT4+WkqGqOJ0+sWjWR+C+s6ueeFTboVnHnhhYY+WQlryy1JW1fKb4dXWrJ112q 8Yg/IU0liw0lAkPw43Vt9lWCBISHSc8= -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:28 2025 by rpki-client