$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft File: N3hUTiRpVIvwm1Td2APX19kPfmI.mft (raw, json) Hash identifier: sXpJfaRdwi0eIJpnLAl8aFq5PjnsP23c/OdsqTZnvp8= Subject key identifier: F6:A8:16:B0:36:34:6B:6F:59:58:FA:2F:F0:57:45:2E:C7:08:DE:E1 Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft Manifest number: D0 Signing time: Fri 25 Apr 2025 04:41:48 +0000 Manifest this update: Fri 25 Apr 2025 04:41:48 +0000 Manifest next update: Fri 02 May 2025 04:41:47 +0000 Files and hashes: 1: N3hUTiRpVIvwm1Td2APX19kPfmI.crl (hash: KlWGK4UdEr2lThvg5uESuqHFtZ2sIh87i5LTFABMg04=) 2: 1EC90968E1F211EEA360BE22C4F9AE02.roa (hash: XRFVx29hjFc5pKNr7AkvLob3HQjLTaD9Ns3C1RRvN4w=) 3: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (hash: elMINW9VmQY5nycCbQ/QKtRjE+I0nxMVlzRRTvQng4k=) 4: 1DDBD99AE1F211EEA360BE22C4F9AE02.roa (hash: E3gtntzxmL6luEWEYnHzIxmyJjY7WSBf3VBE5/D496g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA, serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Apr 25 04:41:48 2025 GMT Not After : May 2 04:41:47 2025 GMT Subject: CN=680b128c-5a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fa:50:71:16:7c:54:e7:4d:ac:e3:12:be:75: c6:10:8e:e1:5e:d3:8e:c7:28:dc:a2:5e:bb:6e:16: 25:f6:11:c6:25:3c:ef:25:8f:31:23:3d:91:2c:02: c7:b8:98:89:86:37:dd:5f:0a:5f:79:e1:60:f0:3b: f1:d1:cb:12:de:de:da:4a:cd:b1:b0:b0:f4:f7:ea: 28:cf:46:89:51:31:be:02:e4:d6:4e:51:e8:22:84: a2:b3:4d:97:99:06:15:74:2a:b7:ec:c8:65:31:dd: 8b:3b:5b:31:3c:fa:83:a6:50:d6:a8:fc:ed:52:0c: 82:97:8a:69:a9:4b:58:bf:ae:c4:97:b4:c2:02:d8: 97:60:f6:63:45:11:56:2d:b9:de:03:11:d6:3b:8d: 0f:bf:bd:b6:0c:50:b0:bb:0b:a7:31:11:d5:77:e5: 62:96:bd:6c:f7:cd:8d:58:73:a8:0d:f9:da:eb:e1: 5a:60:39:a6:7f:8b:29:5f:ca:ef:b6:6a:e2:73:15: 26:b6:94:85:5e:c9:86:20:e6:ad:dc:2a:f9:a7:f5: 95:82:82:a2:8b:fc:4c:d6:30:5f:5b:ea:bd:a9:33: d9:d5:0a:b9:ce:1e:68:95:40:ec:c5:48:96:0f:1a: f3:19:f4:9d:06:bd:75:1e:58:3a:7b:f5:c3:1c:4d: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A8:16:B0:36:34:6B:6F:59:58:FA:2F:F0:57:45:2E:C7:08:DE:E1 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:9b:a4:62:d9:e3:31:c5:9c:84:10:38:50:17:22:7d:6a:dc: 44:d7:51:55:d3:f2:28:42:ad:e4:ad:b6:da:a6:07:14:26:95: 92:d5:77:60:0e:77:5f:71:62:e9:48:88:3b:9d:45:75:be:6d: 5c:34:6a:b7:e2:55:84:e2:79:9d:6d:03:24:f0:5d:a4:ba:ab: db:57:c0:c2:79:06:e0:c6:54:08:29:b5:47:56:65:af:90:b2: a9:9f:8a:8a:03:7a:2b:40:cf:1e:7d:9c:61:7d:0d:be:66:54: d9:d5:da:76:3e:11:1f:d4:3f:69:03:d2:9a:c5:e5:e2:01:ad: 21:1f:da:7d:9a:ed:f0:b1:61:bf:f8:90:33:c0:04:36:98:e8: a8:41:3e:45:bf:36:d0:d7:66:05:c0:57:b8:33:c8:34:9d:4e: d5:3d:67:e3:2d:85:28:87:65:85:dd:d0:1d:96:55:c3:25:a9: 6c:db:8e:d1:4a:fd:0e:d6:1a:83:b2:ab:84:e6:d4:a7:33:9d: d5:6f:4c:f0:33:80:6f:ff:7a:cd:c0:22:70:86:af:87:19:28: 5f:dc:cb:51:39:80:ea:26:fe:71:16:62:22:02:13:03:26:a1: 0e:13:6a:1e:d4:bb:3e:e1:6d:48:1a:be:db:da:30:c2:fd:cd: ad:b6:0b:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjUwNDI1MDQ0MTQ4WhcNMjUwNTAyMDQ0MTQ3WjAYMRYwFAYD VQQDEw02ODBiMTI4Yy01YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/pQcRZ8VOdNrOMSvnXGEI7hXtOOxyjcol67bhYl9hHGJTzvJY8xIz2RLALH uJiJhjfdXwpfeeFg8Dvx0csS3t7aSs2xsLD09+ooz0aJUTG+AuTWTlHoIoSis02X mQYVdCq37MhlMd2LO1sxPPqDplDWqPztUgyCl4ppqUtYv67El7TCAtiXYPZjRRFW LbneAxHWO40Pv722DFCwuwunMRHVd+Vilr1s982NWHOoDfna6+FaYDmmf4spX8rv tmricxUmtpSFXsmGIOat3Cr5p/WVgoKii/xM1jBfW+q9qTPZ1Qq5zh5olUDsxUiW DxrzGfSdBr11Hlg6e/XDHE0+8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaoFrA2 NGtvWVj6L/BXRS7HCN7hMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJ dndtMVRkMkFQWDE5a1BmbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCym6Ri2eMxxZyEEDhQFyJ9atxE11FV0/IoQq3krbbapgcUJpWS1Xdg DndfcWLpSIg7nUV1vm1cNGq34lWE4nmdbQMk8F2kuqvbV8DCeQbgxlQIKbVHVmWv kLKpn4qKA3orQM8efZxhfQ2+ZlTZ1dp2PhEf1D9pA9KaxeXiAa0hH9p9mu3wsWG/ +JAzwAQ2mOioQT5FvzbQ12YFwFe4M8g0nU7VPWfjLYUoh2WF3dAdllXDJals247R Sv0O1hqDsquE5tSnM53Vb0zwM4Bv/3rNwCJwhq+HGShf3MtROYDqJv5xFmIiAhMD JqEOE2oe1Ls+4W1IGr7b2jDC/c2ttgtN -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:40 2025 by rpki-client