$ rpki-client -vvf rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft File: M0SkOWDcSkdzux3w_wON9BYPNXo.mft (raw, json) Hash identifier: 8efw6XE9I828jQuT4hUnm8QENHvWhSUD+yQKANCicrA= Subject key identifier: 54:59:40:2A:F1:AE:00:3F:B2:B2:F1:1F:A2:33:F1:32:9D:6B:40:41 Authority key identifier: 33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A Certificate issuer: /CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Certificate serial: 031A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft Manifest number: 0303 Signing time: Mon 21 Apr 2025 00:56:00 +0000 Manifest this update: Mon 21 Apr 2025 00:55:59 +0000 Manifest next update: Mon 28 Apr 2025 00:55:59 +0000 Files and hashes: 1: M0SkOWDcSkdzux3w_wON9BYPNXo.crl (hash: ++AbjAGbraEuu0kGWGus+Qa0+9LZLB1Q7qla5YJFBgk=) 2: 4D03B06C83FA11EF9E6EC075C4F9AE02.roa (hash: NTo3OUYaYtafbk5WWe5U4JEYTgsdV1jOIIMQFUSflQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91676E2, serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Validity Not Before: Apr 21 00:55:59 2025 GMT Not After : Apr 28 00:55:59 2025 GMT Subject: CN=680597a0-4c08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:25:56:69:ef:3b:c8:3a:5f:e2:19:7e:82: 34:f7:a5:de:72:80:4b:c1:72:0e:cd:73:a7:8d:01: be:b4:8e:05:9e:5b:a6:87:1d:e0:20:d0:9f:79:ab: 2c:2c:6e:3b:a3:8f:d5:7b:ef:e4:ed:37:73:d2:64: c4:e9:0b:f1:47:52:24:19:67:b6:5b:9d:20:ca:18: 57:07:82:81:bf:ba:1e:23:db:74:47:09:ba:85:bb: af:da:e2:6a:15:6c:06:6b:6d:27:94:d0:c5:ba:f2: ed:7f:38:43:f2:60:27:70:ef:e8:27:ef:17:f7:a9: 1c:13:40:f3:15:c0:ca:68:aa:36:a9:7d:78:f4:4b: 0d:8e:7a:75:2b:7a:25:35:fc:b3:7e:21:38:39:81: e7:95:46:95:c4:46:00:04:18:93:68:46:d2:0c:73: d5:76:a2:f0:cb:62:97:7c:44:4a:25:2a:6f:b5:78: f1:da:e8:76:05:5f:b9:2f:fc:a9:b4:b9:cc:5c:d9: 95:3b:9a:60:e7:a7:e4:13:df:29:32:c3:68:7a:ee: ad:51:0e:18:97:b3:58:77:06:70:10:b0:3f:0f:f0: c0:80:92:10:d1:5a:85:07:ea:81:a2:71:be:b6:31: 46:23:6b:c8:a8:49:25:a2:f5:b0:97:16:8b:f9:af: ea:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:59:40:2A:F1:AE:00:3F:B2:B2:F1:1F:A2:33:F1:32:9D:6B:40:41 X509v3 Authority Key Identifier: keyid:33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:39:d0:47:03:a2:7e:7b:85:86:c9:9c:0f:cf:48:bc:18:61: 12:d1:55:82:08:90:c3:cd:cf:28:66:07:93:74:96:3c:dc:5e: 64:c2:d4:be:cd:15:88:b3:78:9a:6a:a5:38:21:14:49:28:e9: 76:9c:c4:34:64:67:94:0a:99:9b:51:cd:b4:f3:33:7f:da:4d: fd:06:91:d4:c4:d6:ba:f0:e5:3a:bc:cc:09:10:c2:14:7b:5e: 2c:3d:6e:44:0a:6c:a8:bc:9b:af:63:96:f6:80:92:0b:d8:83: 31:07:30:2f:82:75:81:92:d2:bc:9a:46:39:cd:1a:9a:00:f7: 5f:bd:10:84:a2:a4:87:6d:5a:11:db:e4:3c:3a:3a:e3:5d:e6: e7:c9:67:0b:c3:72:27:62:01:37:c7:0e:30:ad:c5:13:08:06: 11:67:38:35:f5:72:b3:be:f6:2d:3b:82:39:b0:51:64:23:5f: b1:04:03:6d:eb:6f:ff:e4:68:23:76:5f:b7:50:0c:18:83:d1: bc:c4:3d:ba:68:5a:93:b2:9a:90:ec:53:02:11:aa:06:15:04: fd:d9:e7:37:f2:05:5d:7e:b6:66:2d:d7:b3:c3:52:02:57:62: ef:20:b8:2c:17:8b:f6:fb:69:6c:0c:f7:ee:61:56:da:44:54: 70:f0:4c:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc2RTIxMTAvBgNVBAUTKDMzNDRBNDM5NjBEQzRBNDc3M0JCMURGMEZGMDM4REY0 MTYwRjM1N0EwHhcNMjUwNDIxMDA1NTU5WhcNMjUwNDI4MDA1NTU5WjAYMRYwFAYD VQQDEw02ODA1OTdhMC00YzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2klVmnvO8g6X+IZfoI096XecoBLwXIOzXOnjQG+tI4Fnlumhx3gINCfeass LG47o4/Ve+/k7Tdz0mTE6QvxR1IkGWe2W50gyhhXB4KBv7oeI9t0Rwm6hbuv2uJq FWwGa20nlNDFuvLtfzhD8mAncO/oJ+8X96kcE0DzFcDKaKo2qX149EsNjnp1K3ol NfyzfiE4OYHnlUaVxEYABBiTaEbSDHPVdqLwy2KXfERKJSpvtXjx2uh2BV+5L/yp tLnMXNmVO5pg56fkE98pMsNoeu6tUQ4Yl7NYdwZwELA/D/DAgJIQ0VqFB+qBonG+ tjFGI2vIqEklovWwlxaL+a/qOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRZQCrx rgA/srLxH6Iz8TKda0BBMB8GA1UdIwQYMBaAFDNEpDlg3EpHc7sd8P8DjfQWDzV6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzZFMi8yMjU5QTE4NkQ4 NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1NrZHp1eDN3X3dPTjlCWVBO WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00wU2tPV0RjU2tkenV4M3dfd09OOUJZUE5Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzZFMi8yMjU5QTE4NkQ4NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1Nr ZHp1eDN3X3dPTjlCWVBOWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYOdBHA6J+e4WGyZwPz0i8GGES0VWCCJDDzc8oZgeTdJY83F5kwtS+ zRWIs3iaaqU4IRRJKOl2nMQ0ZGeUCpmbUc208zN/2k39BpHUxNa68OU6vMwJEMIU e14sPW5ECmyovJuvY5b2gJIL2IMxBzAvgnWBktK8mkY5zRqaAPdfvRCEoqSHbVoR 2+Q8OjrjXebnyWcLw3InYgE3xw4wrcUTCAYRZzg19XKzvvYtO4I5sFFkI1+xBANt 62//5Ggjdl+3UAwYg9G8xD26aFqTspqQ7FMCEaoGFQT92ec38gVdfrZmLdezw1IC V2LvILgsF4v2+2lsDPfuYVbaRFRw8Exn -----END CERTIFICATE-----Generated at Tue Apr 22 12:43:40 2025 by rpki-client