$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: lGP0OgoFd3Y2+ITzpgxvLPHSND3FfU+y6bG03vbVXPE= Subject key identifier: ED:E2:85:AB:87:BD:0D:54:6A:76:74:5E:5B:80:EF:F7:35:87:C6:F8 Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 0524 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 0524 Signing time: Thu 24 Apr 2025 23:17:51 +0000 Manifest this update: Thu 24 Apr 2025 23:17:50 +0000 Manifest next update: Thu 01 May 2025 23:17:50 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: k8PrGpCh52Y47QAEPxwjbOFU3qb//Kyro3YUmiYjXFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1316 (0x524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705, serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Apr 24 23:17:50 2025 GMT Not After : May 1 23:17:50 2025 GMT Subject: CN=680ac69e-5308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:65:aa:90:ea:92:77:d2:1e:d6:48:d6:da:09: df:97:64:d5:c4:77:e0:cc:a6:a2:c0:06:f4:8b:fb: 49:87:9a:16:de:cc:db:02:1e:3d:96:81:8d:40:eb: 11:ab:45:27:6a:e8:ac:6d:8a:03:9b:c0:c5:4d:c8: 8b:0e:99:af:1c:c1:de:96:9d:cc:42:97:31:98:2a: 12:24:58:97:9c:0d:0e:f6:91:20:ac:f7:0b:f9:27: 47:98:80:ba:bd:71:ac:f5:74:ce:6c:71:39:8b:63: 85:21:d2:cc:8a:54:a9:4b:3f:31:22:5f:52:f1:b5: 29:9e:0d:e5:a2:08:57:12:3b:f3:5c:fc:06:30:b5: e0:70:ba:20:f1:2b:8e:31:78:6c:b3:2c:2a:19:6e: d8:c7:bf:89:f6:b4:8a:27:13:70:01:5f:a0:53:a4: 8e:ee:f9:8c:52:8e:12:36:9f:de:31:6c:86:88:35: c5:6d:a4:03:4b:1f:7d:ee:07:e8:95:27:cd:b9:51: eb:19:ac:a6:98:ef:64:d1:b8:39:a8:05:a3:8e:50: 70:25:9a:60:8f:a9:50:da:ce:b5:fa:26:45:4c:3e: d2:90:17:e9:5f:87:d5:7e:dc:67:53:2a:12:56:1b: e8:af:11:0e:5c:b2:1e:3e:2d:6e:84:11:61:91:9e: 72:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E2:85:AB:87:BD:0D:54:6A:76:74:5E:5B:80:EF:F7:35:87:C6:F8 X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:73:45:21:cd:a6:d0:8d:f4:07:ed:07:9c:58:c8:c3:0c:b2: 63:87:38:51:4f:f2:b1:9c:e1:83:88:e7:16:00:fb:95:b4:0b: ad:3c:96:9e:6c:d3:18:c7:b3:a7:e4:90:54:83:34:eb:f8:88: ca:90:84:90:8e:65:fd:ca:ba:00:93:b5:c1:06:11:59:b0:b1: 6a:8c:c5:7e:64:52:bd:ba:5f:fd:a7:bc:12:41:ad:5b:7c:74: 3e:6b:b6:9b:ea:12:52:84:91:c7:60:43:e0:e2:12:04:f1:ad: a9:9d:ae:6f:e8:ad:b8:86:7a:12:1d:a0:18:a1:b2:4c:fd:10: 7c:ed:cd:68:52:6b:66:17:57:02:7c:75:1b:0f:bc:3c:1a:0a: 31:fc:80:f8:70:ba:f2:a1:96:41:d4:47:c5:18:9f:39:c3:f3: cc:a8:dc:53:aa:79:27:05:e9:af:09:13:6f:a1:74:0f:e7:36: a8:a7:ba:0b:56:5c:4c:05:ac:0b:3c:ab:8b:a7:88:ce:4f:a3: 0c:6f:7b:be:7e:85:95:d1:cd:1e:07:90:27:65:01:f4:17:5f: 36:24:d3:37:09:dc:45:6d:2f:0b:a9:5d:84:30:5c:d0:3b:64: dd:ff:9a:c3:b4:32:17:31:4a:65:6a:f7:d7:48:8b:ef:ba:5b: 63:12:b5:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUwNDI0MjMxNzUwWhcNMjUwNTAxMjMxNzUwWjAYMRYwFAYD VQQDEw02ODBhYzY5ZS01MzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GWqkOqSd9Ie1kjW2gnfl2TVxHfgzKaiwAb0i/tJh5oW3szbAh49loGNQOsR q0UnauisbYoDm8DFTciLDpmvHMHelp3MQpcxmCoSJFiXnA0O9pEgrPcL+SdHmIC6 vXGs9XTObHE5i2OFIdLMilSpSz8xIl9S8bUpng3loghXEjvzXPwGMLXgcLog8SuO MXhssywqGW7Yx7+J9rSKJxNwAV+gU6SO7vmMUo4SNp/eMWyGiDXFbaQDSx997gfo lSfNuVHrGaymmO9k0bg5qAWjjlBwJZpgj6lQ2s61+iZFTD7SkBfpX4fVftxnUyoS VhvorxEOXLIePi1uhBFhkZ5y1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3ihauH vQ1UanZ0XluA7/c1h8b4MB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANc0UhzabQjfQH7QecWMjDDLJjhzhRT/KxnOGDiOcWAPuVtAutPJae bNMYx7On5JBUgzTr+IjKkISQjmX9yroAk7XBBhFZsLFqjMV+ZFK9ul/9p7wSQa1b fHQ+a7ab6hJShJHHYEPg4hIE8a2pna5v6K24hnoSHaAYobJM/RB87c1oUmtmF1cC fHUbD7w8Ggox/ID4cLryoZZB1EfFGJ85w/PMqNxTqnknBemvCRNvoXQP5zaop7oL VlxMBawLPKuLp4jOT6MMb3u+foWV0c0eB5AnZQH0F182JNM3CdxFbS8LqV2EMFzQ O2Td/5rDtDIXMUplavfXSIvvultjErW/ -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:31 2025 by rpki-client