$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: nSh6JoOdpfcQ0dd+s2JIkld9xYxZRMooVCw0tCrY02s= Subject key identifier: F2:34:2C:DF:B7:1D:92:56:FC:CB:FB:8B:9F:D3:4A:51:B4:B7:97:AA Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 061F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 0619 Signing time: Thu 24 Apr 2025 22:34:36 +0000 Manifest this update: Thu 24 Apr 2025 22:34:35 +0000 Manifest next update: Thu 01 May 2025 22:34:35 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: ZuV1zqKSwfBEIzY211ICDhr6+XpZL9KlXgvLKw3TR4A=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: zydBQ6+XzPsP0D5XfuooCO12kFS+89HKhQ6kY0lGz0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Apr 24 22:34:35 2025 GMT Not After : May 1 22:34:35 2025 GMT Subject: CN=680abc7c-294e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:eb:d9:7e:e4:41:73:5e:95:9f:29:21:8c:12: 62:de:f0:0d:68:7c:1b:9b:ec:5f:b3:c4:a4:20:8a: 2c:e7:c0:15:17:2a:d4:39:86:7a:a4:8b:a0:49:8e: a0:5e:56:07:88:6f:14:61:05:49:06:f7:bc:14:0c: 1a:49:a6:de:92:0e:54:b6:ff:ea:29:df:23:ac:df: 6d:a9:b8:d9:d9:c9:17:6f:c8:4a:cb:1e:8a:4b:6d: 10:34:f2:3f:f7:05:a7:dc:32:d6:60:b1:84:16:a6: 8d:27:aa:b9:d1:d6:81:4d:c7:47:7b:35:6c:17:01: ee:48:7b:f7:0e:34:41:65:b7:d9:74:9a:90:ad:2d: d0:84:c1:82:07:87:c8:9f:a6:60:32:59:b2:09:ca: ab:3d:8a:aa:29:70:24:1a:52:89:65:e0:5d:cf:ee: b5:b9:b1:a4:f0:31:7c:aa:ac:da:46:6c:82:aa:55: 45:b4:5a:2d:78:5e:3c:72:42:05:4b:14:40:0a:35: ab:b0:fa:53:29:cf:0f:8d:95:c6:9e:3c:78:5e:35: c1:29:3e:fe:8a:97:a1:8a:48:c4:fd:b0:62:45:be: 89:cc:68:09:02:e1:ed:76:ae:a9:69:42:c2:97:09: a6:b9:b5:32:b8:c1:53:59:9a:d8:b6:3f:da:af:6d: 9e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:34:2C:DF:B7:1D:92:56:FC:CB:FB:8B:9F:D3:4A:51:B4:B7:97:AA X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:31:a9:eb:a7:64:a2:56:71:4a:28:c9:49:7d:6a:2f:a7:c4: 6b:71:d2:eb:a4:5a:5d:8c:c8:46:91:a4:6f:13:66:18:73:3a: 82:23:3a:02:fa:e0:ad:35:14:09:02:be:1b:41:09:24:79:be: 97:8e:4e:2d:c1:3a:2b:80:45:e9:3a:f8:e5:2b:1e:61:ab:59: 2a:5c:c2:14:e3:95:0a:50:b7:e5:a9:a2:8d:df:ba:32:c6:e9: 94:48:75:c5:0e:f8:c8:51:93:da:63:31:5c:88:31:a0:68:2c: 00:ec:68:9a:66:2a:21:8a:a1:b6:33:48:4f:96:67:24:27:92: d0:5b:33:4a:2f:5d:03:89:e7:bf:9e:3f:8f:f3:13:c4:20:cb: 83:6d:fa:8e:59:bd:db:84:25:20:f6:ed:83:9c:c0:c4:20:61: 65:94:06:bb:d8:f8:04:20:54:90:32:ab:85:3c:91:a6:cb:95: 7d:9a:1a:be:78:1c:35:68:52:c1:23:ea:f3:37:f0:ff:4c:6a: 49:fc:1c:0f:37:8a:55:96:c9:3c:96:8f:c4:bc:b4:a6:cc:be: 1d:97:b5:de:e3:b7:1a:47:48:97:5d:a6:2f:54:0e:3c:28:83: 42:12:5a:f6:fe:ba:2b:34:f6:3b:c4:1f:59:d7:f6:b5:ed:ef: 7e:5d:17:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUwNDI0MjIzNDM1WhcNMjUwNTAxMjIzNDM1WjAYMRYwFAYD VQQDEw02ODBhYmM3Yy0yOTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+vZfuRBc16VnykhjBJi3vANaHwbm+xfs8SkIIos58AVFyrUOYZ6pIugSY6g XlYHiG8UYQVJBve8FAwaSabekg5Utv/qKd8jrN9tqbjZ2ckXb8hKyx6KS20QNPI/ 9wWn3DLWYLGEFqaNJ6q50daBTcdHezVsFwHuSHv3DjRBZbfZdJqQrS3QhMGCB4fI n6ZgMlmyCcqrPYqqKXAkGlKJZeBdz+61ubGk8DF8qqzaRmyCqlVFtFoteF48ckIF SxRACjWrsPpTKc8PjZXGnjx4XjXBKT7+ipehikjE/bBiRb6JzGgJAuHtdq6paULC lwmmubUyuMFTWZrYtj/ar22ekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPI0LN+3 HZJW/Mv7i5/TSlG0t5eqMB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1Manrp2SiVnFKKMlJfWovp8RrcdLrpFpdjMhGkaRvE2YYczqCIzoC +uCtNRQJAr4bQQkkeb6Xjk4twTorgEXpOvjlKx5hq1kqXMIU45UKULflqaKN37oy xumUSHXFDvjIUZPaYzFciDGgaCwA7GiaZiohiqG2M0hPlmckJ5LQWzNKL10Diee/ nj+P8xPEIMuDbfqOWb3bhCUg9u2DnMDEIGFllAa72PgEIFSQMquFPJGmy5V9mhq+ eBw1aFLBI+rzN/D/TGpJ/BwPN4pVlsk8lo/EvLSmzL4dl7Xe47caR0iXXaYvVA48 KINCElr2/rorNPY7xB9Z1/a17e9+XRec -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:27 2025 by rpki-client