$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft File: mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft (raw, json) Hash identifier: EffJ1VivEqW1Y6uXGRR74irkHVy16Owyvf/OCY6g9bc= Subject key identifier: 8A:20:54:41:82:A0:80:F4:95:75:0A:F6:5D:23:FF:9A:FB:56:84:49 Authority key identifier: 98:1F:A2:27:A2:A4:35:C2:B7:6E:06:C9:C4:52:D3:EC:75:19:84:D3 Certificate issuer: /CN=A91536B7/serialNumber=981FA227A2A435C2B76E06C9C452D3EC751984D3 Certificate serial: 0718 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft Manifest number: 4FFD Signing time: Sun 20 Apr 2025 16:21:02 +0000 Manifest this update: Sun 20 Apr 2025 16:21:01 +0000 Manifest next update: Sun 27 Apr 2025 16:21:01 +0000 Files and hashes: 1: mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl (hash: FRen8VEH2AnriRtGmNrDxi0zJhGw9BrTZYiaOGiDXEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 16:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=981FA227A2A435C2B76E06C9C452D3EC751984D3 Validity Not Before: Apr 20 16:21:01 2025 GMT Not After : Apr 27 16:21:01 2025 GMT Subject: CN=68051eee-b0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:43:32:0c:bb:aa:8c:8e:2c:96:33:0f:43:d4: bc:7f:94:da:30:fd:32:2a:65:0d:73:8e:dc:f1:3f: d6:66:4e:ce:80:38:d2:cb:5b:cd:68:2f:6e:52:bd: 40:87:df:4c:5c:ec:a8:3f:7a:e1:12:43:cd:44:6f: 23:02:7d:8c:06:f7:cd:2b:c4:8c:f9:1f:c0:42:8a: 16:c1:a9:7c:f8:3c:17:50:e1:13:7d:b0:60:2e:fc: af:08:00:69:36:32:f9:e4:0b:47:07:f8:76:a3:f0: 72:84:a6:8c:33:aa:a5:11:be:e7:3f:8e:2a:89:7f: 63:3b:21:9f:05:fb:da:39:30:f9:ba:98:c4:15:12: 31:34:d9:db:f1:50:33:23:d1:1e:46:23:29:36:1a: cb:d2:f1:7e:05:51:ec:d2:30:f5:f1:71:3c:0a:06: 9d:b0:16:24:9e:e3:1a:fd:aa:35:e0:29:71:7e:09: f1:c2:1f:71:7c:ee:8f:65:f6:a8:b9:d6:87:89:79: 22:c3:c7:ae:4b:91:fc:cd:40:ce:9c:e7:dd:df:0e: 6a:e9:91:bd:0d:77:7f:42:2a:cd:f0:5b:59:03:a8: 7b:a1:6b:a4:9b:52:87:77:41:cd:4a:0d:16:a9:45: 0f:da:ff:3f:da:07:da:df:4a:8f:25:f0:42:36:9a: 40:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:20:54:41:82:A0:80:F4:95:75:0A:F6:5D:23:FF:9A:FB:56:84:49 X509v3 Authority Key Identifier: keyid:98:1F:A2:27:A2:A4:35:C2:B7:6E:06:C9:C4:52:D3:EC:75:19:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:51:60:bb:00:73:46:ae:40:bc:4f:cf:b7:b4:7a:40:d1:bc: d4:4b:08:c1:92:8d:f4:f9:a6:27:8c:d0:27:97:9f:6f:8d:3b: f2:d8:24:d4:71:68:22:37:4b:70:0d:6c:18:42:bf:47:ae:0d: 71:d3:55:f2:1f:e1:d1:47:b7:f5:00:6b:b1:5a:3f:94:27:b3: 55:22:50:dd:de:03:b2:43:8e:29:cf:9d:40:cb:78:cd:5e:a8: d6:57:a7:b7:dd:e6:ad:e6:84:b3:42:67:48:05:d9:04:0a:ba: 13:6d:8d:75:9d:be:90:0c:aa:f7:4f:e1:f8:56:13:d6:fc:ae: 41:a9:13:cf:23:13:4f:61:b7:5e:55:8e:49:02:76:a9:f5:43: db:54:e7:37:37:d4:28:bf:80:49:b7:4b:07:2b:82:19:9d:53: e1:8f:e0:fb:c5:a4:1c:13:d1:32:7f:3f:57:f6:89:d6:69:bb: c2:e7:4e:52:8f:aa:77:bb:52:2b:dd:f2:c6:d4:06:9d:d1:17: be:44:60:45:33:ce:92:af:45:2c:1d:57:1b:e2:af:04:f1:bc: 8f:2d:7b:9a:0c:92:45:35:63:70:ea:09:bf:9d:2d:b1:49:72: 84:a6:9e:8c:28:9d:42:ad:5b:77:a5:eb:f2:44:b0:51:aa:fa: db:fa:11:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2QjcxMTAvBgNVBAUTKDk4MUZBMjI3QTJBNDM1QzJCNzZFMDZDOUM0NTJEM0VD NzUxOTg0RDMwHhcNMjUwNDIwMTYyMTAxWhcNMjUwNDI3MTYyMTAxWjAYMRYwFAYD VQQDEw02ODA1MWVlZS1iMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkMyDLuqjI4sljMPQ9S8f5TaMP0yKmUNc47c8T/WZk7OgDjSy1vNaC9uUr1A h99MXOyoP3rhEkPNRG8jAn2MBvfNK8SM+R/AQooWwal8+DwXUOETfbBgLvyvCABp NjL55AtHB/h2o/ByhKaMM6qlEb7nP44qiX9jOyGfBfvaOTD5upjEFRIxNNnb8VAz I9EeRiMpNhrL0vF+BVHs0jD18XE8CgadsBYknuMa/ao14Clxfgnxwh9xfO6PZfao udaHiXkiw8euS5H8zUDOnOfd3w5q6ZG9DXd/QirN8FtZA6h7oWukm1KHd0HNSg0W qUUP2v8/2gfa30qPJfBCNppA5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIogVEGC oID0lXUK9l0j/5r7VoRJMB8GA1UdIwQYMBaAFJgfoieipDXCt24GycRS0+x1GYTT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZCNy9GMUNEMjdCNDcz QUQxMUU3QUNCRDAyNUVDNEY5QUUwMi9tQi1pSjZLa05jSzNiZ2JKeEZMVDdIVVpo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21CLWlKNktrTmNLM2JnYkp4RkxUN0hVWmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZCNy9GMUNEMjdCNDczQUQxMUU3QUNCRDAyNUVDNEY5QUUwMi9tQi1pSjZLa05j SzNiZ2JKeEZMVDdIVVpoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFUWC7AHNGrkC8T8+3tHpA0bzUSwjBko30+aYnjNAnl59vjTvy2CTU cWgiN0twDWwYQr9Hrg1x01XyH+HRR7f1AGuxWj+UJ7NVIlDd3gOyQ44pz51Ay3jN XqjWV6e33eat5oSzQmdIBdkECroTbY11nb6QDKr3T+H4VhPW/K5BqRPPIxNPYbde VY5JAnap9UPbVOc3N9Qov4BJt0sHK4IZnVPhj+D7xaQcE9Eyfz9X9onWabvC505S j6p3u1Ir3fLG1Aad0Re+RGBFM86Sr0UsHVcb4q8E8byPLXuaDJJFNWNw6gm/nS2x SXKEpp6MKJ1CrVt3pevyRLBRqvrb+hE/ -----END CERTIFICATE-----Generated at Mon Apr 21 04:39:53 2025 by rpki-client