$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: rCABlVpc6JKZwqJg6ooaK82NEHYTBAIbtzSUszTdhEI= Subject key identifier: 4C:96:E5:FD:97:9A:DE:4A:D0:82:5F:0E:C5:90:5F:CF:85:C8:D2:12 Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1CEE Signing time: Tue 08 Apr 2025 16:10:23 +0000 Manifest this update: Tue 08 Apr 2025 16:10:22 +0000 Manifest next update: Tue 15 Apr 2025 16:10:22 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: O9rpVj7oSLpRo1vfgP22y4JelCAQBwetYvCLuhEHen8=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: XU2BtSx1XPF+OETuBQTO4A3xSlkRLbVqfxk4yTT8ml4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7417 (0x1cf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B Validity Not Before: Apr 8 16:10:22 2025 GMT Not After : Apr 15 16:10:22 2025 GMT Subject: CN=67f54a6e-a233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:39:e4:80:fa:75:a5:e8:09:b1:8a:a6:20: 1c:60:b4:82:2e:6b:15:b8:d2:e6:dd:3f:79:98:c8: ee:ca:87:da:cf:83:ad:59:cc:b1:c9:88:bc:1c:5d: 2a:00:c7:cb:e4:0b:02:75:b6:15:af:7d:63:21:ac: 22:ec:af:9b:4f:51:06:d7:35:c5:c3:11:74:a3:b7: da:7b:30:42:91:08:10:60:1f:8b:bb:43:42:af:3e: 6f:76:69:c0:ae:24:32:34:ae:6a:85:17:c4:4f:5b: f6:af:2e:95:3f:8f:3a:a6:02:c0:82:5b:37:8d:d6: fd:6c:7d:b2:99:00:29:68:fb:ac:33:3e:2e:76:bf: 93:3d:22:cf:26:4b:64:50:11:58:0b:1e:8b:01:5a: 70:9c:d6:23:ec:b1:63:4c:f9:fc:66:a6:39:cb:7f: fb:3f:fb:b4:4e:02:cc:d1:f1:b9:a0:97:f2:ea:15: f7:12:92:db:3e:4d:0a:82:ab:29:a7:df:3a:07:ad: f9:6c:82:ce:b0:f2:9d:ba:ee:5b:c3:ce:d2:11:37: 24:f9:49:2a:99:d8:d5:56:35:89:8c:87:89:7a:42: d2:67:57:da:e0:bf:28:ba:b3:d5:b8:e1:a4:6c:13: 0c:47:35:b2:d4:c8:b1:fb:22:d0:0a:51:2a:59:bc: e6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:96:E5:FD:97:9A:DE:4A:D0:82:5F:0E:C5:90:5F:CF:85:C8:D2:12 X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:d5:16:2a:90:fb:43:ed:ab:dd:54:16:23:78:02:0d:9e:b3: 90:18:75:95:51:b9:64:e3:55:ff:89:03:1c:e0:28:bf:f7:a2: c4:ad:ea:4c:7d:74:db:c6:30:9f:05:49:a6:e0:26:36:e3:14: ac:97:a8:5b:39:72:ea:7e:3b:2f:12:25:96:75:54:00:37:73: ae:73:ce:b3:b3:ba:56:41:84:96:3d:cf:cd:07:18:74:0b:31: dd:31:04:d2:e1:b5:8c:9b:3d:38:24:9b:8a:9a:64:7b:e2:ff: 64:9e:99:29:a3:7b:30:e4:d2:df:cd:cd:da:9f:33:8d:2c:65: e7:e9:15:74:a8:71:43:5d:fa:1b:f4:41:23:33:ab:5b:80:5d: 9c:70:10:8c:54:68:1b:1f:63:5d:9e:0f:49:a9:e0:5e:70:03: 7b:e3:5f:47:88:3e:70:40:3b:9e:26:75:10:aa:c2:8e:f7:de: a3:7d:93:cf:84:7b:b1:6c:27:e3:78:23:1b:91:aa:38:64:5c: 08:4a:61:39:b0:ec:e7:34:a3:33:c5:d7:e1:79:0c:d2:55:d1: fc:70:5d:25:2e:05:cf:93:9b:72:44:72:5f:d5:c1:77:93:33: 41:0c:84:02:6f:35:c9:cb:95:48:4d:bb:99:e3:10:ed:06:ac: 5c:32:6c:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjUwNDA4MTYxMDIyWhcNMjUwNDE1MTYxMDIyWjAYMRYwFAYD VQQDEw02N2Y1NGE2ZS1hMjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt855ID6daXoCbGKpiAcYLSCLmsVuNLm3T95mMjuyofaz4OtWcyxyYi8HF0q AMfL5AsCdbYVr31jIawi7K+bT1EG1zXFwxF0o7faezBCkQgQYB+Lu0NCrz5vdmnA riQyNK5qhRfET1v2ry6VP486pgLAgls3jdb9bH2ymQApaPusMz4udr+TPSLPJktk UBFYCx6LAVpwnNYj7LFjTPn8ZqY5y3/7P/u0TgLM0fG5oJfy6hX3EpLbPk0Kgqsp p986B635bILOsPKduu5bw87SETck+UkqmdjVVjWJjIeJekLSZ1fa4L8ourPVuOGk bBMMRzWy1Mix+yLQClEqWbzmDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyW5f2X mt5K0IJfDsWQX8+FyNISMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ1RYqkPtD7avdVBYjeAINnrOQGHWVUblk41X/iQMc4Ci/96LErepM fXTbxjCfBUmm4CY24xSsl6hbOXLqfjsvEiWWdVQAN3Ouc86zs7pWQYSWPc/NBxh0 CzHdMQTS4bWMmz04JJuKmmR74v9knpkpo3sw5NLfzc3anzONLGXn6RV0qHFDXfob 9EEjM6tbgF2ccBCMVGgbH2Ndng9JqeBecAN7419HiD5wQDueJnUQqsKO996jfZPP hHuxbCfjeCMbkao4ZFwISmE5sOznNKMzxdfheQzSVdH8cF0lLgXPk5tyRHJf1cF3 kzNBDIQCbzXJy5VITbuZ4xDtBqxcMmwK -----END CERTIFICATE-----Generated at Fri Apr 11 23:27:01 2025 by rpki-client