$ rpki-client -vvf rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft File: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft (raw, json) Hash identifier: WTiLbvb0CJ7z7lLAnfeRqzcW321iA3I4O9ILxf8VOlo= Subject key identifier: 77:09:52:8B:A3:F0:D9:89:B9:03:AB:B4:22:00:8F:43:BB:71:5B:B4 Authority key identifier: FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68 Certificate issuer: /CN=A91230B8/serialNumber=FBBAB690ADFE10EF434B718954F17387D6384668 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft Manifest number: 01AA Signing time: Fri 11 Apr 2025 02:38:55 +0000 Manifest this update: Fri 11 Apr 2025 02:38:54 +0000 Manifest next update: Fri 18 Apr 2025 02:38:54 +0000 Files and hashes: 1: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl (hash: EslQZBaIOFmNlEnkRJUB8qaWG9/V8wKGSaBMywwXW0c=) 2: B966D678C0C611EE8F5F0458C4F9AE02.roa (hash: J2faMLBlgt9GzAmsM2dSN7aVP9JzekH0nQNt2xO6dtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 02:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91230B8, serialNumber=FBBAB690ADFE10EF434B718954F17387D6384668 Validity Not Before: Apr 11 02:38:54 2025 GMT Not After : Apr 18 02:38:54 2025 GMT Subject: CN=67f880bf-c8d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e5:f8:d9:70:56:87:a6:71:f0:1e:ae:b3:15: 9a:84:9c:1e:b0:22:8b:07:96:d0:43:f6:e0:71:7b: ba:b4:65:8f:5e:04:d0:3a:91:5c:3b:59:46:29:5e: 5d:d3:35:59:95:cd:9c:31:21:38:3a:b6:20:d5:2a: 9e:31:0e:21:cb:6a:69:a5:44:ec:6c:f0:83:e9:17: ac:0d:20:53:9c:f8:47:de:7a:a0:0f:b5:bf:e5:b9: 02:de:42:8f:de:91:43:52:51:cb:34:01:fb:6c:3c: ed:da:8c:b8:b1:fe:b6:84:ee:67:5d:d7:d0:20:c2: 52:cd:cc:e9:3b:d5:e6:a1:d8:e7:20:c1:b5:f4:14: a7:0f:ec:a8:74:3d:60:f5:10:ff:94:cf:0f:ea:48: 2e:c9:3a:50:95:2c:1c:25:e5:20:15:15:ee:a1:8a: 29:94:44:9f:31:cd:35:35:bf:7f:8a:b7:29:a5:de: 69:8e:19:2d:c7:df:5f:fd:04:24:ad:a1:0e:65:3d: 4f:c2:45:c5:2b:b7:82:33:55:41:06:12:4d:84:08: 96:9e:be:be:a0:81:53:4f:de:bd:d6:b3:44:3f:ea: a1:6b:34:5d:55:c1:69:9c:6c:1e:3f:23:e5:e1:4e: 95:14:ef:ce:71:a2:93:b9:a2:24:57:27:a2:9c:0a: cc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:09:52:8B:A3:F0:D9:89:B9:03:AB:B4:22:00:8F:43:BB:71:5B:B4 X509v3 Authority Key Identifier: keyid:FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:2e:03:8c:c6:20:d8:51:83:bb:29:7f:2b:d7:d2:8c:61:8f: e6:c7:8b:e4:a0:11:fa:9e:91:eb:7e:14:ce:83:d3:43:58:97: 5a:10:61:b8:77:0e:2f:53:a4:f4:38:f8:e2:54:c3:c0:18:11: 88:39:ef:03:72:fe:d3:63:31:e2:34:99:02:30:95:aa:79:65: f7:70:bd:ef:b5:97:16:86:34:96:e8:0f:61:03:bd:22:0f:14: 9b:cb:40:d3:45:10:39:a4:74:bf:bb:aa:e0:54:fc:52:4d:57: 9e:d1:30:56:12:68:19:07:1e:e5:ff:df:52:f6:c9:b9:fc:ec: de:33:4f:33:02:bf:9c:69:d3:7b:18:94:79:f6:2b:e1:76:14: 06:ad:18:28:81:5d:e7:9c:96:82:f3:b5:72:a5:3a:30:74:c0: 99:15:e2:fa:10:49:bd:63:2c:da:64:37:3e:52:19:d6:57:79: 93:a7:b4:a6:cf:d0:ee:49:14:e6:c8:c3:b3:44:9d:93:5b:15: db:02:62:b2:d7:ab:3d:92:a4:36:5f:2d:d6:2f:fe:ad:c1:37: 9e:51:a6:bd:65:78:2e:39:da:4e:18:6e:fb:d3:3e:0a:cb:51: 03:b0:55:33:55:81:39:47:6b:c1:9c:f6:7d:1b:1e:11:1f:39: d3:25:13:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwQjgxMTAvBgNVBAUTKEZCQkFCNjkwQURGRTEwRUY0MzRCNzE4OTU0RjE3Mzg3 RDYzODQ2NjgwHhcNMjUwNDExMDIzODU0WhcNMjUwNDE4MDIzODU0WjAYMRYwFAYD VQQDEw02N2Y4ODBiZi1jOGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+X42XBWh6Zx8B6usxWahJwesCKLB5bQQ/bgcXu6tGWPXgTQOpFcO1lGKV5d 0zVZlc2cMSE4OrYg1SqeMQ4hy2pppUTsbPCD6ResDSBTnPhH3nqgD7W/5bkC3kKP 3pFDUlHLNAH7bDzt2oy4sf62hO5nXdfQIMJSzczpO9XmodjnIMG19BSnD+yodD1g 9RD/lM8P6kguyTpQlSwcJeUgFRXuoYoplESfMc01Nb9/ircppd5pjhktx99f/QQk raEOZT1PwkXFK7eCM1VBBhJNhAiWnr6+oIFTT9691rNEP+qhazRdVcFpnGwePyPl 4U6VFO/OcaKTuaIkVyeinArMSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcJUouj 8NmJuQOrtCIAj0O7cVu0MB8GA1UdIwQYMBaAFPu6tpCt/hDvQ0txiVTxc4fWOEZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzBCOC9GMUY4OTBGMDk2 NTkxMUVEOENDNzhBNjBDNEY5QUUwMi8tN3Eya0szLUVPOURTM0dKVlBGemg5WTRS bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy03cTJrSzMtRU85RFMzR0pWUEZ6aDlZNFJtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzBCOC9GMUY4OTBGMDk2NTkxMUVEOENDNzhBNjBDNEY5QUUwMi8tN3Eya0szLUVP OURTM0dKVlBGemg5WTRSbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALLgOMxiDYUYO7KX8r19KMYY/mx4vkoBH6npHrfhTOg9NDWJdaEGG4 dw4vU6T0OPjiVMPAGBGIOe8Dcv7TYzHiNJkCMJWqeWX3cL3vtZcWhjSW6A9hA70i DxSby0DTRRA5pHS/u6rgVPxSTVee0TBWEmgZBx7l/99S9sm5/OzeM08zAr+cadN7 GJR59ivhdhQGrRgogV3nnJaC87VypTowdMCZFeL6EEm9YyzaZDc+UhnWV3mTp7Sm z9DuSRTmyMOzRJ2TWxXbAmKy16s9kqQ2Xy3WL/6twTeeUaa9ZXguOdpOGG770z4K y1EDsFUzVYE5R2vBnPZ9Gx4RHznTJRPg -----END CERTIFICATE-----Generated at Sun Apr 13 02:19:09 2025 by rpki-client