$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft File: 7sDpmYfcHqnUAviE_NqX4DFFpKA.mft (raw, json) Hash identifier: 8BDWeEpdZA/wgV8zOhqLvrkJxjZBUpMXSWJbRrfeb5U= Subject key identifier: 6A:32:C3:D4:FD:4D:8C:D6:A4:1B:41:06:82:74:9B:24:62:0A:C8:86 Authority key identifier: EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 Certificate issuer: /CN=A91AE1B5/serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft Manifest number: BC Signing time: Thu 17 Apr 2025 04:47:15 +0000 Manifest this update: Thu 17 Apr 2025 04:47:14 +0000 Manifest next update: Thu 24 Apr 2025 04:47:14 +0000 Files and hashes: 1: 7sDpmYfcHqnUAviE_NqX4DFFpKA.crl (hash: wfN/cIAn+JsA/DurCLETBXDYq2skw+mW+JBbv6L14LA=) 2: D2A2FF4A003B11EFA6658D0DC4F9AE02.roa (hash: clTuA98QXCvhi5mCW68DYLjtbFWaH5Tnj/x9STwbSAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE1B5, serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Validity Not Before: Apr 17 04:47:14 2025 GMT Not After : Apr 24 04:47:14 2025 GMT Subject: CN=680087d3-b098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4d:34:1d:2b:29:23:bb:dc:2a:cd:89:7a:fc: ae:3b:59:96:79:61:fc:55:7d:9d:6d:d4:26:da:5b: 15:31:f6:a4:b8:c4:14:8f:31:b8:54:9e:b0:51:55: e1:81:05:92:db:65:a8:80:8a:be:32:80:1d:39:2a: d3:9d:6a:f7:c1:42:ca:97:b0:23:b5:ec:7a:0e:85: 93:2a:5b:9e:09:4b:3a:47:7d:e3:57:96:f5:1a:62: 87:e1:0f:8c:c0:fa:16:24:13:99:6b:34:09:37:77: a8:a4:8b:8d:c0:d1:62:a1:81:a4:cd:e3:76:5d:fb: 3c:82:fb:a5:ff:6d:df:5c:35:fb:bb:79:0f:81:df: e3:e1:c2:b6:c8:24:c8:eb:20:a6:3b:91:a4:8a:a1: 6f:ae:db:bd:bf:ee:e3:2a:3b:57:92:8b:23:e4:e6: 83:82:2e:76:df:26:7a:24:e9:86:3a:36:41:66:83: 13:56:a3:cd:2b:5d:0c:e8:fd:08:74:67:74:a5:78: 04:b5:f6:4f:4e:54:5e:9b:a6:f3:71:47:5c:23:be: 09:b7:49:26:bf:54:e0:03:57:4c:52:9b:50:9e:b9: 82:66:f3:4d:c6:b8:ce:a5:62:8f:13:41:be:49:55: 1b:76:b6:f3:2e:cf:80:a9:11:a2:0b:f2:37:96:19: 7c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:32:C3:D4:FD:4D:8C:D6:A4:1B:41:06:82:74:9B:24:62:0A:C8:86 X509v3 Authority Key Identifier: keyid:EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:f6:7f:c4:d5:e7:b4:8c:ea:96:ac:1d:10:d6:c9:55:d3:8f: 38:d9:08:d4:2d:87:dc:2a:74:00:cb:f7:63:2a:cb:11:12:69: a0:3d:f4:41:33:21:b4:68:08:e4:f3:27:aa:7c:51:eb:fa:2e: 33:c2:bb:f9:c3:24:19:81:39:39:1b:98:e9:16:12:36:77:a2: a5:b4:44:46:17:d5:f5:ce:2c:f6:97:0d:a5:b8:18:5f:9f:38: 12:96:d2:18:f8:ee:6b:7e:98:f2:dd:95:e6:51:1a:f2:49:58: 41:64:53:3e:31:ad:be:82:96:4b:a7:68:e2:ac:fc:1e:f7:37: 56:d4:7b:92:5a:91:56:d1:84:af:64:c6:bd:20:10:1d:d9:c4: d3:bf:c1:42:90:bd:96:50:9b:14:5f:51:b4:84:b8:05:f8:fa: d5:da:4b:bd:8b:4b:8c:69:44:5e:17:5a:d7:4b:7e:d0:63:1f: 95:85:1a:c7:6b:26:77:f6:22:cb:d7:3e:d4:11:96:e5:c9:79: 13:1a:fa:8f:57:59:ef:4d:ac:d4:f4:b2:2f:c3:09:eb:14:24: 18:20:25:11:3c:ec:2b:c0:dc:d4:30:40:b8:74:da:08:0c:08: 2a:ec:a8:7c:7c:cf:15:06:e7:d6:89:0a:86:9a:d5:d9:1b:b0: 71:e7:07:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxQjUxMTAvBgNVBAUTKEVFQzBFOTk5ODdEQzFFQTlENDAyRjg4NEZDREE5N0Uw MzE0NUE0QTAwHhcNMjUwNDE3MDQ0NzE0WhcNMjUwNDI0MDQ0NzE0WjAYMRYwFAYD VQQDEw02ODAwODdkMy1iMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU00HSspI7vcKs2JevyuO1mWeWH8VX2dbdQm2lsVMfakuMQUjzG4VJ6wUVXh gQWS22WogIq+MoAdOSrTnWr3wULKl7Ajtex6DoWTKlueCUs6R33jV5b1GmKH4Q+M wPoWJBOZazQJN3eopIuNwNFioYGkzeN2Xfs8gvul/23fXDX7u3kPgd/j4cK2yCTI 6yCmO5GkiqFvrtu9v+7jKjtXkosj5OaDgi523yZ6JOmGOjZBZoMTVqPNK10M6P0I dGd0pXgEtfZPTlRem6bzcUdcI74Jt0kmv1TgA1dMUptQnrmCZvNNxrjOpWKPE0G+ SVUbdrbzLs+AqRGiC/I3lhl82QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoyw9T9 TYzWpBtBBoJ0myRiCsiGMB8GA1UdIwQYMBaAFO7A6ZmH3B6p1AL4hPzal+AxRaSg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTFCNS84QjQwNUU1RTAw M0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hxblVBdmlFX05xWDRERkZw S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdzRHBtWWZjSHFuVUF2aUVfTnFYNERGRnBLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTFCNS84QjQwNUU1RTAwM0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hx blVBdmlFX05xWDRERkZwS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ9n/E1ee0jOqWrB0Q1slV04842QjULYfcKnQAy/djKssREmmgPfRB MyG0aAjk8yeqfFHr+i4zwrv5wyQZgTk5G5jpFhI2d6KltERGF9X1ziz2lw2luBhf nzgSltIY+O5rfpjy3ZXmURrySVhBZFM+Ma2+gpZLp2jirPwe9zdW1HuSWpFW0YSv ZMa9IBAd2cTTv8FCkL2WUJsUX1G0hLgF+PrV2ku9i0uMaUReF1rXS37QYx+VhRrH ayZ39iLL1z7UEZblyXkTGvqPV1nvTazU9LIvwwnrFCQYICURPOwrwNzUMEC4dNoI DAgq7Kh8fM8VBufWiQqGmtXZG7Bx5wdk -----END CERTIFICATE-----Generated at Fri Apr 18 05:55:18 2025 by rpki-client