$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft File: SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft (raw, json) Hash identifier: z+kBl2bjkn8B0Y3K6ZKx4LOtMjExsI4CKBjtbC6lsUM= Subject key identifier: F1:83:59:53:E5:E7:7B:86:CF:6E:4B:6C:29:15:42:0F:67:C9:15:FA Authority key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 Certificate issuer: /CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft Manifest number: 02E3 Signing time: Fri 25 Apr 2025 01:05:51 +0000 Manifest this update: Fri 25 Apr 2025 01:05:51 +0000 Manifest next update: Fri 02 May 2025 01:05:51 +0000 Files and hashes: 1: SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl (hash: zgvx/TPJ/x2IaWVv+Fr9q4tHKFREXYywLSLPMYuFRJQ=) 2: D9EEB222DBFC11EC82E85E69C4F9AE02.roa (hash: IM38OEcY+pvCX+wnXvhRbSuzND147HKpkLnhoMrBbCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB0D0, serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Validity Not Before: Apr 25 01:05:51 2025 GMT Not After : May 2 01:05:51 2025 GMT Subject: CN=680adfef-ab1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5f:7e:31:72:78:ab:28:eb:03:98:a1:85:fd: d2:e3:68:97:a3:12:cf:14:92:83:d9:c7:06:27:61: b8:bd:4c:d8:7b:86:13:b7:13:48:26:60:17:ad:30: d1:ca:6a:5b:2e:93:b9:91:52:a0:b6:a8:fb:6a:df: 35:22:d2:53:c4:ea:d3:dc:a3:8c:da:30:de:09:22: b0:03:f7:d5:71:b9:05:af:1c:80:8b:5c:c4:58:07: 7d:84:ad:54:58:b7:60:c8:5a:ae:9c:76:88:69:6a: fb:b6:10:dd:65:cb:e0:2b:6b:2b:ff:5a:12:3d:3b: eb:92:c4:26:f6:c8:87:89:2f:13:c6:e7:f0:1b:7b: 8b:61:de:4b:45:86:9f:cc:89:ed:64:e0:16:61:f0: af:e3:0d:24:5f:a3:21:8b:f3:51:ec:85:5c:f8:28: 08:63:14:51:42:22:ff:fc:ba:ef:0d:77:9e:0a:53: 34:e9:0d:38:34:0b:06:5f:f3:e6:bb:c8:56:b1:b9: 93:4f:bb:44:c7:29:c8:54:67:77:61:77:15:58:a0: 64:89:f2:9d:fe:02:47:dc:02:84:f6:f9:5f:2e:68: b2:24:ed:34:1d:8e:a4:6f:99:9e:22:bf:7a:d6:90: fe:c8:76:19:12:1f:ee:6f:c1:bf:cc:18:a4:e8:3c: f6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:83:59:53:E5:E7:7B:86:CF:6E:4B:6C:29:15:42:0F:67:C9:15:FA X509v3 Authority Key Identifier: keyid:4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:57:9b:d5:db:0f:31:62:be:ae:01:be:3a:20:e1:ab:b2:5d: 59:e3:0f:5d:f4:f1:1c:7b:73:f4:b3:e1:3a:fb:18:ef:d9:51: 19:76:e2:c3:ce:26:e5:a8:02:33:8b:89:be:ad:65:43:b8:e3: 6f:e4:99:81:1d:e7:38:4f:3a:8e:ed:2f:44:40:d5:5e:37:64: 84:1e:d3:f8:de:0b:49:75:21:b5:cc:94:77:77:ec:14:22:27: 22:ee:e6:93:aa:b4:d8:37:c8:eb:c0:7e:ff:5e:85:fe:16:de: 8d:17:fa:59:20:0b:b0:1d:d2:69:12:61:c8:41:06:b4:26:2f: ec:1e:39:58:07:39:35:fa:8e:4c:2c:b4:35:ed:f7:56:98:bf: 9e:57:55:af:a3:1e:43:80:90:5c:69:11:cd:44:46:4e:dd:e6: ae:91:65:a4:0f:1b:91:2f:fc:e1:f4:8c:b6:b6:db:85:68:25: 93:a5:1d:5f:14:0e:18:74:b6:7e:0f:7e:bb:e0:94:0b:ed:1a: b0:13:c1:a7:e6:45:03:8d:25:b4:cc:c3:9a:f5:cb:ba:cf:4c: 53:0d:d9:87:f2:d5:e8:c4:b2:46:b2:b2:3e:16:f8:e4:70:43: ea:62:ff:ee:e7:9f:12:2e:fb:24:85:35:97:58:3a:42:ca:d8: 62:66:bd:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwRDAxMTAvBgNVBAUTKDRCM0M2OTU2QjA0NDkwMDEwMDg1OEMwREU1MEVCOUE0 NjJCMDhDQzcwHhcNMjUwNDI1MDEwNTUxWhcNMjUwNTAyMDEwNTUxWjAYMRYwFAYD VQQDEw02ODBhZGZlZi1hYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAql9+MXJ4qyjrA5ihhf3S42iXoxLPFJKD2ccGJ2G4vUzYe4YTtxNIJmAXrTDR ympbLpO5kVKgtqj7at81ItJTxOrT3KOM2jDeCSKwA/fVcbkFrxyAi1zEWAd9hK1U WLdgyFqunHaIaWr7thDdZcvgK2sr/1oSPTvrksQm9siHiS8TxufwG3uLYd5LRYaf zIntZOAWYfCv4w0kX6Mhi/NR7IVc+CgIYxRRQiL//LrvDXeeClM06Q04NAsGX/Pm u8hWsbmTT7tExynIVGd3YXcVWKBkifKd/gJH3AKE9vlfLmiyJO00HY6kb5meIr96 1pD+yHYZEh/ub8G/zBik6Dz2GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGDWVPl 53uGz25LbCkVQg9nyRX6MB8GA1UdIwQYMBaAFEs8aVawRJABAIWMDeUOuaRisIzH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjBEMC85M0ZCN0Y0RURC RjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtBRUFoWXdONVE2NXBHS3dq TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N6eHBWckJFa0FFQWhZd041UTY1cEdLd2pNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjBEMC85M0ZCN0Y0RURCRjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtB RUFoWXdONVE2NXBHS3dqTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKV5vV2w8xYr6uAb46IOGrsl1Z4w9d9PEce3P0s+E6+xjv2VEZduLD ziblqAIzi4m+rWVDuONv5JmBHec4TzqO7S9EQNVeN2SEHtP43gtJdSG1zJR3d+wU Iici7uaTqrTYN8jrwH7/XoX+Ft6NF/pZIAuwHdJpEmHIQQa0Ji/sHjlYBzk1+o5M LLQ17fdWmL+eV1Wvox5DgJBcaRHNREZO3eaukWWkDxuRL/zh9Iy2ttuFaCWTpR1f FA4YdLZ+D3674JQL7RqwE8Gn5kUDjSW0zMOa9cu6z0xTDdmH8tXoxLJGsrI+Fvjk cEPqYv/u558SLvskhTWXWDpCythiZr2P -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:07 2025 by rpki-client