$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: /iIrS3JOVTR551ksA4NXieAizDUz4T/Qq5aaS+nFkfk= Subject key identifier: 76:C8:42:85:2D:7A:83:E3:AD:3B:67:CE:AC:41:45:1E:09:99:75:96 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 4B Signing time: Mon 14 Apr 2025 22:49:41 +0000 Manifest this update: Mon 14 Apr 2025 22:49:40 +0000 Manifest next update: Mon 21 Apr 2025 22:49:40 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: mIrYaa5R9zGvXyUYPXjKSCXuzbv8LpBDaLOO3Qv06y4=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 2bzYWZhSZUzBimn1IglwPv7AEhVCAaK8feLQOEL571A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 22:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Apr 14 22:49:40 2025 GMT Not After : Apr 21 22:49:40 2025 GMT Subject: CN=67fd9104-cfff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:14:93:14:58:49:06:08:4f:5b:f4:75:e9:7a: 5c:a3:f2:69:ae:bd:7a:48:cf:90:f8:81:37:54:42: bf:74:d8:f0:95:2c:1b:1d:cd:16:f3:42:95:04:55: 1a:d1:7c:d6:8c:8f:c9:a7:2c:37:1d:c2:b9:cd:99: 2e:ad:0e:2c:35:c5:8c:72:56:12:81:09:09:af:8b: 54:97:80:cb:ab:54:a8:67:96:53:4d:4c:1e:2b:4c: 4c:b3:32:e4:30:86:4a:4d:69:e4:7f:63:c3:7e:96: 2b:24:96:80:3f:70:84:c2:47:49:1b:fc:a8:c2:0a: 23:c8:dd:06:eb:48:f2:3f:5a:b4:00:17:7d:b8:dd: bc:81:ba:fc:2a:b2:7c:a6:90:2c:5b:8f:0a:72:90: 9d:f1:a1:63:df:ad:03:a4:ad:14:52:a5:81:3f:b9: 0b:5e:ef:29:08:e1:d9:a7:b1:0d:42:0f:68:f7:0d: 6b:ac:0d:70:a9:f7:fc:9c:8c:fa:06:47:48:82:52: 36:ab:66:f2:8a:df:4e:b7:c9:1d:e0:a8:fd:35:28: ab:82:60:c0:54:c7:d1:2f:7a:7d:b6:58:96:23:6a: 22:d4:8d:7c:fa:9a:ea:ac:28:08:4c:b8:f2:21:89: 5a:20:81:e1:11:ef:ae:0d:e9:ed:4b:fb:ec:a5:f3: 90:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C8:42:85:2D:7A:83:E3:AD:3B:67:CE:AC:41:45:1E:09:99:75:96 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:9d:59:2a:6f:8a:61:4f:80:8e:69:d8:fb:42:a1:ff:d9:7b: 38:24:f4:9e:23:68:3b:0d:89:14:da:b5:54:c9:82:fe:3c:b5: 54:35:00:6b:c6:91:19:3e:b6:ae:2f:4c:8b:db:70:2d:ee:ba: ab:95:a4:e6:4a:d4:fc:e4:1a:dd:83:00:16:68:9f:34:97:7a: 88:d6:76:28:ed:cb:b0:46:43:de:56:22:bb:20:aa:ad:bb:06: c5:39:6b:6a:fe:bd:c2:35:a9:81:fc:ba:45:49:2e:aa:b5:6e: e9:9d:a7:98:7d:75:c2:f6:f3:be:e2:96:de:cd:35:8e:04:e3: d8:2b:7f:5c:17:7a:33:a0:79:44:44:18:af:e2:14:1c:87:1c: b0:e2:71:82:ff:da:b3:a1:df:03:c7:2f:5b:9d:ac:61:06:1a: e3:e6:63:ad:26:85:ff:05:60:34:3b:c2:9d:f3:2f:3d:3a:7a: 08:bd:be:1c:a0:34:2e:5b:1c:7a:4a:41:04:cf:5c:13:02:7e: 96:e6:d4:83:16:b9:ad:b5:49:b6:43:d2:26:8d:5e:5b:95:27: 3c:2a:87:38:2d:d2:28:b0:66:76:3c:cd:7d:c3:49:da:f4:98: 92:c3:4b:79:df:49:87:28:d4:1f:05:f4:5c:97:03:20:f0:12: 95:c9:27:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkYyRDExMC8GA1UEBRMoQUY2NzJEQThDNUQxRDZDODBENTA2MTc4QzlFN0NCNzQ0 RjZFMzhFNjAeFw0yNTA0MTQyMjQ5NDBaFw0yNTA0MjEyMjQ5NDBaMBgxFjAUBgNV BAMTDTY3ZmQ5MTA0LWNmZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbFJMUWEkGCE9b9HXpelyj8mmuvXpIz5D4gTdUQr902PCVLBsdzRbzQpUEVRrR fNaMj8mnLDcdwrnNmS6tDiw1xYxyVhKBCQmvi1SXgMurVKhnllNNTB4rTEyzMuQw hkpNaeR/Y8N+liskloA/cITCR0kb/KjCCiPI3QbrSPI/WrQAF3243byBuvwqsnym kCxbjwpykJ3xoWPfrQOkrRRSpYE/uQte7ykI4dmnsQ1CD2j3DWusDXCp9/ycjPoG R0iCUjarZvKK3063yR3gqP01KKuCYMBUx9Even22WJYjaiLUjXz6muqsKAhMuPIh iVoggeER764N6e1L++yl85APAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdshChS16 g+OtO2fOrEFFHgmZdZYwHwYDVR0jBBgwFoAUr2ctqMXR1sgNUGF4yefLdE9uOOYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjJELzZGODIxMTc4QUI4 ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9P WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcjJjdHFNWFIxc2dOVUdGNHllZkxkRTl1T09ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjJELzZGODIxMTc4QUI4ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNn TlVHRjR5ZWZMZEU5dU9PWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC2dWSpvimFPgI5p2PtCof/Zezgk9J4jaDsNiRTatVTJgv48tVQ1AGvG kRk+tq4vTIvbcC3uuquVpOZK1PzkGt2DABZonzSXeojWdijty7BGQ95WIrsgqq27 BsU5a2r+vcI1qYH8ukVJLqq1bumdp5h9dcL2877ilt7NNY4E49grf1wXejOgeURE GK/iFByHHLDicYL/2rOh3wPHL1udrGEGGuPmY60mhf8FYDQ7wp3zLz06egi9vhyg NC5bHHpKQQTPXBMCfpbm1IMWua21SbZD0iaNXluVJzwqhzgt0iiwZnY8zX3DSdr0 mJLDS3nfSYco1B8F9FyXAyDwEpXJJxU= -----END CERTIFICATE-----Generated at Wed Apr 16 15:53:39 2025 by rpki-client