$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: eDuteca32AcTA7gxVKWPk1DNG+PNgXmdrESkh0/R4XM= Subject key identifier: 49:B1:F3:3D:8E:B1:18:F6:E6:8C:E1:F6:61:45:E4:34:49:CD:6A:A1 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05C5 Signing time: Thu 24 Apr 2025 22:51:13 +0000 Manifest this update: Thu 24 Apr 2025 22:51:12 +0000 Manifest next update: Thu 01 May 2025 22:51:12 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: MdyFN7OBT3bpIQr23HZikh700BeD2c6PaCw5W6n9kOE=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Apr 24 22:51:12 2025 GMT Not After : May 1 22:51:12 2025 GMT Subject: CN=680ac060-5651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6c:35:37:1d:19:7f:34:2b:c9:7a:92:07:d5: 18:a9:cf:6e:12:fa:fa:a3:47:67:e5:11:29:0b:ef: 09:ea:50:b1:6d:d0:58:75:2e:8a:5e:5a:15:57:28: ad:de:8d:c7:fb:57:e6:32:ce:f2:9f:4b:09:a6:87: e7:da:5a:35:5d:70:24:3e:d3:8e:f3:9b:78:8f:36: 68:57:7c:f7:0c:9a:42:e5:a8:15:d5:56:4e:d3:81: 0c:85:b2:03:1f:64:bd:38:f5:ff:e7:c5:7b:e0:8b: 08:6b:99:0e:92:98:c7:ea:bc:f9:6e:7f:88:41:67: 62:9d:bd:ec:5b:85:9d:1e:1f:ae:74:04:11:34:36: f9:21:f0:fb:b1:f7:c1:20:68:e2:65:ad:0d:59:97: a1:8d:a5:99:ef:bb:60:51:02:6f:51:4c:23:f0:16: 02:92:8d:d8:81:5c:e9:fd:51:ee:dd:03:49:b0:63: b9:58:21:45:56:16:2f:57:70:da:49:0e:00:d6:ec: 5b:ff:8f:48:d2:d5:51:a6:54:0b:6e:76:14:fe:cd: 33:9c:f1:ba:24:0b:60:29:e2:ae:d6:52:e1:0b:c0: 1e:8a:a4:74:05:f7:79:8f:9e:b0:85:f8:e2:27:81: f4:10:1d:e2:ed:a1:b4:05:04:02:5e:45:01:ad:46: 2c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B1:F3:3D:8E:B1:18:F6:E6:8C:E1:F6:61:45:E4:34:49:CD:6A:A1 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:22:77:52:99:35:4f:3f:0b:5e:b4:52:2d:75:26:3c:79:84: ff:a4:37:d6:b5:6a:e3:d1:f3:d0:df:f9:c4:60:b5:55:2f:8a: 0c:3b:1e:28:fe:1d:60:51:ab:77:5e:5c:e4:a5:21:f3:b8:09: e1:d8:2c:08:55:12:8e:8c:f4:3d:5d:bf:de:90:c0:a1:17:12: 49:8d:93:7b:e1:e2:d8:87:f6:6b:22:0a:32:71:e8:66:29:12: 7d:a1:b1:07:74:a3:dc:42:61:76:86:31:6d:cf:4a:42:5f:24: 0c:af:90:30:5d:33:87:a4:6e:6b:fc:2a:67:de:9a:c8:5e:c9: 31:9c:2c:20:5a:76:3c:fa:b5:b4:52:d8:bd:1a:15:72:d6:35: 01:3e:89:6d:43:0b:ad:67:cc:8c:ba:de:27:6f:d1:54:7d:2d: 2f:54:70:52:1b:ce:ac:9a:10:9d:3b:e2:62:21:87:97:6f:39: 2b:4a:43:42:fe:e2:e1:2a:f0:77:53:79:23:7e:34:a2:0a:dd: 90:5a:57:29:4d:37:f0:70:ea:5f:f1:07:fe:bb:84:80:0a:6d: 4a:9d:be:f9:92:d5:f3:6d:0b:06:b4:72:6c:0a:ba:4e:37:dd: 1f:05:43:6b:56:e2:82:f2:dd:49:6c:53:cf:e1:95:99:62:db: ae:ee:97:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNDI0MjI1MTEyWhcNMjUwNTAxMjI1MTEyWjAYMRYwFAYD VQQDEw02ODBhYzA2MC01NjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGw1Nx0ZfzQryXqSB9UYqc9uEvr6o0dn5REpC+8J6lCxbdBYdS6KXloVVyit 3o3H+1fmMs7yn0sJpofn2lo1XXAkPtOO85t4jzZoV3z3DJpC5agV1VZO04EMhbID H2S9OPX/58V74IsIa5kOkpjH6rz5bn+IQWdinb3sW4WdHh+udAQRNDb5IfD7sffB IGjiZa0NWZehjaWZ77tgUQJvUUwj8BYCko3YgVzp/VHu3QNJsGO5WCFFVhYvV3Da SQ4A1uxb/49I0tVRplQLbnYU/s0znPG6JAtgKeKu1lLhC8AeiqR0Bfd5j56whfji J4H0EB3i7aG0BQQCXkUBrUYsjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmx8z2O sRj25ozh9mFF5DRJzWqhMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJIndSmTVPPwtetFItdSY8eYT/pDfWtWrj0fPQ3/nEYLVVL4oMOx4o /h1gUat3XlzkpSHzuAnh2CwIVRKOjPQ9Xb/ekMChFxJJjZN74eLYh/ZrIgoycehm KRJ9obEHdKPcQmF2hjFtz0pCXyQMr5AwXTOHpG5r/Cpn3prIXskxnCwgWnY8+rW0 Uti9GhVy1jUBPoltQwutZ8yMut4nb9FUfS0vVHBSG86smhCdO+JiIYeXbzkrSkNC /uLhKvB3U3kjfjSiCt2QWlcpTTfwcOpf8Qf+u4SACm1Knb75ktXzbQsGtHJsCrpO N90fBUNrVuKC8t1JbFPP4ZWZYtuu7pf3 -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:48 2025 by rpki-client