$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: exXtvBmo6dM8Klc18pG0DLa04ZZRzeUZCDDM7LJ0pes= Subject key identifier: DC:C9:4A:A2:9C:C1:CC:C1:5A:0B:95:2C:C0:C8:6E:73:CF:31:27:0B Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0E83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0E7C Signing time: Thu 24 Apr 2025 17:41:15 +0000 Manifest this update: Thu 24 Apr 2025 17:41:14 +0000 Manifest next update: Thu 01 May 2025 17:41:14 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: sVa8iqX09YcXzkUjheFjiSiocf91y4dCUJLQaHwL4XI=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: WbUUTzfSyCpyqPb3jZBov7io1LDDEMhW0G0g1zGhi5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3715 (0xe83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Apr 24 17:41:14 2025 GMT Not After : May 1 17:41:14 2025 GMT Subject: CN=680a77ba-14a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:01:99:c0:01:f8:08:35:9f:82:ba:c1:a9: b9:2e:40:c3:53:a3:4a:35:62:cf:67:84:0a:4b:a0: 10:28:fe:9c:12:76:e4:38:52:ff:e9:23:aa:5b:9a: b6:40:77:ab:3d:06:4a:20:d3:f4:ba:55:a2:b2:bd: 4d:41:ab:0c:17:2c:c9:5a:4e:a6:54:fa:ff:d0:b7: 6c:90:40:ed:8a:2d:b5:d0:0b:2d:bd:fd:d3:80:25: e8:75:ba:90:10:7a:9e:9b:e5:c5:fb:8f:0e:50:1e: fd:50:2a:5c:e7:a5:c4:b1:b8:74:d7:3d:05:12:e4: 0a:73:a3:b2:00:67:d4:6c:9d:08:e9:64:13:08:4c: bb:69:b7:ea:cf:0d:b1:ed:85:65:3c:c6:38:9a:a4: 72:1a:f4:ca:03:7c:bd:cf:fd:7e:5c:9e:eb:f6:e5: 02:ad:48:31:a9:d3:d8:cc:4f:9f:08:46:ad:e2:98: 76:80:82:a5:da:b7:e9:06:c5:dd:59:58:b2:dc:f0: 96:53:44:bb:6c:79:b7:dd:3c:0c:32:e3:b6:e9:c6: 3b:ff:c7:f4:47:98:20:96:11:b4:41:b9:46:0e:e1: 94:b8:f0:d7:ed:83:a0:50:68:ab:0b:f0:c6:b9:20: 42:fe:ad:93:64:b7:65:2e:10:b1:2e:7b:35:c2:18: bd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C9:4A:A2:9C:C1:CC:C1:5A:0B:95:2C:C0:C8:6E:73:CF:31:27:0B X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:df:a7:93:3c:72:f9:18:c9:43:a4:47:28:43:5a:e5:f4:3b: fb:f4:ac:93:e5:e9:f0:48:0a:6a:9b:b7:65:b1:5e:96:7e:0f: 0b:d2:f1:89:7e:7c:da:28:98:66:06:b8:06:a3:1a:6c:3b:87: d4:66:8e:32:95:bf:05:25:b8:09:ae:c6:41:85:9b:36:65:d6: b9:8a:5e:bc:ba:ca:b5:61:ec:65:22:4d:f8:1c:c6:e0:fd:80: 8c:34:b8:da:04:eb:fa:d1:f5:53:7b:eb:46:b9:c8:33:f4:de: d7:98:c6:dc:32:ae:cb:99:ed:89:f6:33:f3:6f:8c:7b:8b:11: 80:08:48:b9:d5:fa:53:4e:af:71:65:07:e9:75:1c:45:85:71: d9:93:78:c7:48:ad:39:57:fb:10:39:7a:3a:de:a7:c2:99:a7: 03:14:96:c4:86:50:be:6c:94:7d:4f:84:25:8a:d4:7f:9e:c7: 30:bc:36:7f:c4:12:71:6a:a2:a6:19:28:f8:70:fb:51:50:07: 9e:6e:f9:44:e6:17:ca:2f:0e:32:df:4e:1e:24:16:d8:00:03: f6:6f:a0:a0:89:78:b6:e0:39:1b:87:44:c9:30:f4:50:be:00: 83:7f:5d:71:07:c5:99:06:36:59:79:6c:b2:cb:a3:77:47:22: 73:15:6a:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUwNDI0MTc0MTE0WhcNMjUwNTAxMTc0MTE0WjAYMRYwFAYD VQQDEw02ODBhNzdiYS0xNGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPEBmcAB+Ag1n4K6wam5LkDDU6NKNWLPZ4QKS6AQKP6cEnbkOFL/6SOqW5q2 QHerPQZKINP0ulWisr1NQasMFyzJWk6mVPr/0LdskEDtii210Astvf3TgCXodbqQ EHqem+XF+48OUB79UCpc56XEsbh01z0FEuQKc6OyAGfUbJ0I6WQTCEy7abfqzw2x 7YVlPMY4mqRyGvTKA3y9z/1+XJ7r9uUCrUgxqdPYzE+fCEat4ph2gIKl2rfpBsXd WViy3PCWU0S7bHm33TwMMuO26cY7/8f0R5gglhG0QblGDuGUuPDX7YOgUGirC/DG uSBC/q2TZLdlLhCxLns1whi9wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzJSqKc wczBWguVLMDIbnPPMScLMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU36eTPHL5GMlDpEcoQ1rl9Dv79KyT5enwSApqm7dlsV6Wfg8L0vGJ fnzaKJhmBrgGoxpsO4fUZo4ylb8FJbgJrsZBhZs2Zda5il68usq1YexlIk34HMbg /YCMNLjaBOv60fVTe+tGucgz9N7XmMbcMq7Lme2J9jPzb4x7ixGACEi51fpTTq9x ZQfpdRxFhXHZk3jHSK05V/sQOXo63qfCmacDFJbEhlC+bJR9T4QlitR/nscwvDZ/ xBJxaqKmGSj4cPtRUAeebvlE5hfKLw4y304eJBbYAAP2b6CgiXi24Dkbh0TJMPRQ vgCDf11xB8WZBjZZeWyyy6N3RyJzFWrV -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:59 2025 by rpki-client