$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: JM1Cw/eX7Vr3rBFVnpbu5b1HrNUo/iIh+fvICUMX5zs= Subject key identifier: 76:DC:07:13:C5:C5:4A:B0:C7:4D:B2:C1:BE:61:B3:0C:A0:E1:89:80 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 78 Signing time: Sun 27 Apr 2025 05:35:08 +0000 Manifest this update: Sun 27 Apr 2025 05:35:08 +0000 Manifest next update: Sun 04 May 2025 05:35:08 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: iLbUou6MmaTDO2GgGlPiXLf9qvJyggARvnwm3mZoFsc=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 05:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Apr 27 05:35:08 2025 GMT Not After : May 4 05:35:08 2025 GMT Subject: CN=680dc20c-a593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5e:8c:31:6a:a2:bb:87:46:8a:1e:51:c0:64: 0f:16:c7:3d:81:c4:a8:89:b7:fa:8d:95:56:60:c2: 35:c7:f1:8a:f2:f9:76:fc:6c:d0:da:1f:15:e2:a4: 14:75:78:60:5c:79:88:90:66:78:93:33:9d:02:93: 6d:fe:cf:64:f2:cf:94:fa:66:0b:6d:47:78:32:c7: 58:35:16:34:49:92:33:fd:8b:ac:bb:e1:cb:93:7a: c4:85:76:cc:a9:f0:76:06:83:c7:d5:4d:b6:30:82: 95:79:45:fe:3a:55:1a:39:9a:40:9d:b5:0a:3a:24: 78:ce:73:9d:9a:2b:46:a1:24:db:57:9c:d9:0d:3d: c9:a2:90:90:a5:7d:94:67:9e:0f:95:29:68:83:28: a1:f5:8a:ae:c9:ce:a9:fe:63:fd:fa:89:ae:86:a3: d2:27:da:86:c5:7e:0f:bb:80:35:f6:44:e1:c9:ca: 99:14:06:08:68:93:dd:d9:dc:86:7c:0f:9d:5d:23: 86:9c:36:51:68:9e:b8:d5:ab:87:b3:ec:63:9a:78: 53:89:48:c2:1e:26:ac:26:aa:b4:7e:eb:28:b3:7f: 6d:71:72:1d:96:8b:ab:37:b2:78:e7:c2:f2:03:1f: b4:6f:8b:54:24:0c:9f:bd:5d:66:6d:2a:ca:2b:f9: a9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DC:07:13:C5:C5:4A:B0:C7:4D:B2:C1:BE:61:B3:0C:A0:E1:89:80 X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:aa:f7:d4:22:4c:1c:1a:63:83:61:f0:7a:31:3c:53:61:ae: e7:19:a2:2c:ea:66:93:e2:0c:9f:9e:e5:2d:9a:42:0f:12:e2: b2:5d:48:02:d7:af:dd:bb:84:4a:12:94:e5:2c:45:08:a9:a2: 39:e0:b7:08:c3:b3:50:6b:44:a6:65:82:cb:d1:98:78:81:05: 5c:61:4c:66:48:fd:70:c0:e7:e9:a3:b8:85:0c:ee:2e:65:e8: 89:2d:d1:f5:17:25:43:15:ad:8d:80:22:76:34:3e:8f:45:a6: 2c:ca:43:87:22:10:5a:43:bd:9a:13:df:43:74:6c:73:17:a0: 50:bc:11:0c:f8:29:63:58:c6:d8:03:25:19:8a:5f:6e:ee:8d: 42:13:26:7d:85:12:26:ad:da:36:6c:52:e6:c0:f8:ef:2f:b0: 42:21:1f:62:7b:95:63:37:9d:a0:f7:fa:02:c2:ce:28:c3:83: 7c:f3:25:9d:1e:d6:ba:42:69:d9:f3:8c:0c:3a:27:61:73:0c: 3f:72:40:66:e4:60:cb:77:6d:79:33:51:ad:13:28:fb:04:8a: c9:19:96:1a:1b:79:db:2f:89:7b:5a:40:a7:ca:4e:48:48:cb: 12:95:8c:bd:07:b1:bc:98:3b:a1:13:64:7a:ec:a7:8e:f2:b7: ea:fb:b9:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoMzIxNEUyNjBBNzhGN0QxNjc3RTgzMDEzN0MxMDY1NzMw MDMxQ0Y2NjAeFw0yNTA0MjcwNTM1MDhaFw0yNTA1MDQwNTM1MDhaMBgxFjAUBgNV BAMTDTY4MGRjMjBjLWE1OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1XowxaqK7h0aKHlHAZA8Wxz2BxKiJt/qNlVZgwjXH8Yry+Xb8bNDaHxXipBR1 eGBceYiQZniTM50Ck23+z2Tyz5T6ZgttR3gyx1g1FjRJkjP9i6y74cuTesSFdsyp 8HYGg8fVTbYwgpV5Rf46VRo5mkCdtQo6JHjOc52aK0ahJNtXnNkNPcmikJClfZRn ng+VKWiDKKH1iq7Jzqn+Y/36ia6Go9In2obFfg+7gDX2ROHJypkUBghok93Z3IZ8 D51dI4acNlFonrjVq4ez7GOaeFOJSMIeJqwmqrR+6yizf21xch2Wi6s3snjnwvID H7Rvi1QkDJ+9XWZtKsor+amZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdtwHE8XF SrDHTbLBvmGzDKDhiYAwHwYDVR0jBBgwFoAUMhTiYKePfRZ36DATfBBlcwAxz2Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzI3MkI0QzcwNkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhUaVlLZVBmUlozNkRBVGZCQmxjd0F4ejJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzI3MkI0QzcwNkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJa MzZEQVRmQkJsY3dBeHoyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD2q99QiTBwaY4Nh8HoxPFNhrucZoizqZpPiDJ+e5S2aQg8S4rJdSALX r927hEoSlOUsRQipojngtwjDs1BrRKZlgsvRmHiBBVxhTGZI/XDA5+mjuIUM7i5l 6Ikt0fUXJUMVrY2AInY0Po9FpizKQ4ciEFpDvZoT30N0bHMXoFC8EQz4KWNYxtgD JRmKX27ujUITJn2FEiat2jZsUubA+O8vsEIhH2J7lWM3naD3+gLCzijDg3zzJZ0e 1rpCadnzjAw6J2FzDD9yQGbkYMt3bXkzUa0TKPsEiskZlhobedsviXtaQKfKTkhI yxKVjL0HsbyYO6ETZHrsp47yt+r7ucc= -----END CERTIFICATE-----Generated at Mon Apr 28 03:17:53 2025 by rpki-client