$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: hKsfSUukkmtxH0BcohVUDQ2jwLA5OfotGi+feFfxtsw= Subject key identifier: E3:08:C4:53:9A:72:21:83:D5:FF:31:EC:80:92:3C:3A:E8:18:F0:60 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B0C Signing time: Thu 24 Apr 2025 19:09:34 +0000 Manifest this update: Thu 24 Apr 2025 19:09:34 +0000 Manifest next update: Thu 01 May 2025 19:09:34 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: HFpTRrYjJWDPCanY8Inf/kME0jyMhDZH/EgeLNPxWwQ=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2835 (0xb13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Apr 24 19:09:34 2025 GMT Not After : May 1 19:09:34 2025 GMT Subject: CN=680a8c6e-a735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9e:05:f4:e7:c9:09:9c:65:4c:6c:fc:55:10: d3:d8:f3:68:1c:a5:21:d2:21:d3:35:8a:9e:9d:de: 4b:1e:f1:46:18:bb:9d:fa:23:68:9a:88:f8:d0:e3: 59:66:50:a8:62:78:7a:c6:d2:64:45:18:57:23:cf: 7f:b0:1d:b8:04:5c:8e:fc:84:5f:af:b9:aa:36:fb: a1:68:2f:e9:c4:7a:19:92:20:5d:17:47:36:62:7c: c0:e3:5f:74:84:ed:8f:63:b3:c2:a8:1a:3c:d2:08: d8:c7:95:00:84:c7:1f:b7:a2:d8:df:dc:c3:dc:a7: 51:b9:88:5d:0a:56:d4:35:c3:55:04:bf:2a:3c:3a: 99:49:8c:af:84:c0:79:c7:7c:52:76:37:d4:67:d9: be:d5:4b:45:c5:e0:b2:76:17:8b:28:6a:df:fa:e0: 1a:9f:51:a9:78:6f:07:26:e2:a2:d4:fe:d9:66:d1: fd:53:06:b3:64:75:af:ec:db:fe:6c:36:c7:c4:1f: a2:6a:61:a3:4c:ff:ea:ff:fa:5a:20:de:f0:f2:2c: c2:a4:73:05:95:20:1f:db:83:a9:b1:e2:b4:4b:58: e4:34:a1:1a:81:17:00:58:02:dd:cc:d4:32:10:d1: db:cc:a9:a3:1d:32:35:12:41:ae:14:44:e4:61:24: ab:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:08:C4:53:9A:72:21:83:D5:FF:31:EC:80:92:3C:3A:E8:18:F0:60 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:d7:c9:55:07:ed:6e:0f:c4:20:4f:bc:0a:ba:9e:99:3b:3e: 64:87:a8:fc:82:01:5e:f2:87:54:18:14:4a:88:ee:fb:af:66: 69:5d:76:52:e6:7c:f8:16:1f:ae:97:23:fa:78:16:8f:07:91: 17:eb:bd:d8:9f:5b:7d:c0:d4:ce:ad:90:b0:2e:66:74:98:83: b0:13:72:65:e2:5c:bf:b1:f7:19:f6:e4:c4:15:79:a1:b2:89: 5e:6b:36:6c:8b:dc:00:0a:cb:a2:b6:d6:85:f9:f8:86:be:7d: e8:0a:72:96:2a:1e:56:1c:2e:4d:54:5c:f7:76:80:17:83:89: df:86:68:c5:ff:52:02:40:2d:b8:c6:6c:25:9d:17:67:b2:b3: 95:22:f7:66:a4:4b:33:16:14:12:60:d2:2d:9f:10:a7:08:3f: cd:a0:76:8d:7e:64:58:be:93:c5:e9:25:a6:e1:84:41:9f:0f: 47:e2:dd:4a:a6:b1:35:d3:9f:4c:ce:8d:91:80:5b:5e:31:d1: 83:ee:b2:5d:8a:97:8a:07:4c:45:b4:47:8f:80:7d:7a:8e:e7: 94:cb:8d:29:38:08:d7:38:34:ac:c7:f9:0d:ee:29:b7:87:f1: 86:85:97:44:a0:53:b7:99:52:67:8e:f0:fb:c7:3a:39:64:b6: 39:85:27:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUwNDI0MTkwOTM0WhcNMjUwNTAxMTkwOTM0WjAYMRYwFAYD VQQDEw02ODBhOGM2ZS1hNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Z4F9OfJCZxlTGz8VRDT2PNoHKUh0iHTNYqend5LHvFGGLud+iNomoj40ONZ ZlCoYnh6xtJkRRhXI89/sB24BFyO/IRfr7mqNvuhaC/pxHoZkiBdF0c2YnzA4190 hO2PY7PCqBo80gjYx5UAhMcft6LY39zD3KdRuYhdClbUNcNVBL8qPDqZSYyvhMB5 x3xSdjfUZ9m+1UtFxeCydheLKGrf+uAan1GpeG8HJuKi1P7ZZtH9UwazZHWv7Nv+ bDbHxB+iamGjTP/q//paIN7w8izCpHMFlSAf24OpseK0S1jkNKEagRcAWALdzNQy ENHbzKmjHTI1EkGuFETkYSSrvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMIxFOa ciGD1f8x7ICSPDroGPBgMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm18lVB+1uD8QgT7wKup6ZOz5kh6j8ggFe8odUGBRKiO77r2ZpXXZS 5nz4Fh+ulyP6eBaPB5EX673Yn1t9wNTOrZCwLmZ0mIOwE3Jl4ly/sfcZ9uTEFXmh soleazZsi9wACsuittaF+fiGvn3oCnKWKh5WHC5NVFz3doAXg4nfhmjF/1ICQC24 xmwlnRdnsrOVIvdmpEszFhQSYNItnxCnCD/NoHaNfmRYvpPF6SWm4YRBnw9H4t1K prE1059Mzo2RgFteMdGD7rJdipeKB0xFtEePgH16jueUy40pOAjXODSsx/kN7im3 h/GGhZdEoFO3mVJnjvD7xzo5ZLY5hSfX -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:44 2025 by rpki-client