$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft File: a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft (raw, json) Hash identifier: VX2ZdfVbzIcFblv1rHJ6LDWG8UdqwG4NQirmwuy8zl4= Subject key identifier: 11:C2:B8:B8:4B:71:FD:57:AA:86:BF:4B:5D:01:B8:5A:77:1C:29:4A Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft Manifest number: 25 Signing time: Sat 29 Mar 2025 07:14:07 +0000 Manifest this update: Sat 29 Mar 2025 07:14:06 +0000 Manifest next update: Sat 05 Apr 2025 07:14:06 +0000 Files and hashes: 1: a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl (hash: /Q955qGlwSOSnCfi+YEs84I8iXLFFxJBCO5SkeEsAig=) 2: D2E386BCE82C11EF9337CD21C4F9AE02.roa (hash: agu3kgzXhIF4qJ6DMjZZpOVO9JR0iNtspvjCw+wkdcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB Validity Not Before: Mar 29 07:14:06 2025 GMT Not After : Apr 5 07:14:06 2025 GMT Subject: CN=67e79dbe-b730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:83:52:0d:7a:e0:4f:2e:41:ed:2a:d0:7d:9e: 1b:bd:1d:ee:50:af:65:d2:50:23:65:11:97:b2:5f: cb:9f:56:2b:2c:d1:15:c5:97:34:0a:57:57:fb:b7: a2:c4:f7:24:01:b1:00:5a:4d:25:51:ea:f6:c0:d6: 75:62:05:9b:47:31:5a:2a:96:31:bb:e8:ff:6c:b0: f4:e6:b4:dd:e0:5d:34:7c:4a:e5:65:d7:59:4b:00: b1:de:92:d3:04:0d:23:7a:c7:1c:e6:66:be:1c:bd: 09:63:28:ac:8a:b2:a9:f5:00:82:ad:71:97:a6:98: bc:f4:0f:cb:03:58:92:59:30:82:27:e6:66:58:6c: 6b:0c:7c:13:67:f3:48:10:bb:4f:61:3a:cd:a6:0c: f6:3c:1f:e7:b9:0f:7c:45:90:b9:24:8d:29:a4:e9: 8e:df:3b:99:b7:fa:27:c0:e4:ac:c9:6b:f0:39:12: 53:4e:0b:84:5a:21:a0:8c:2d:ba:20:c7:b4:48:d0: 4b:25:fe:32:f2:b8:e4:5c:77:6d:22:f9:d9:cf:24: b7:a7:f0:3f:2c:0f:04:e6:33:9c:e3:14:10:33:6a: 14:71:c6:0c:af:76:b1:49:df:3a:e2:a5:4e:d2:04: 5a:75:a5:7c:31:ac:2e:2a:78:3c:d6:9c:3c:7c:2b: 22:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C2:B8:B8:4B:71:FD:57:AA:86:BF:4B:5D:01:B8:5A:77:1C:29:4A X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a5:40:4f:21:90:f5:79:db:e7:ff:05:cf:11:08:9e:48:7d: da:de:94:e7:a8:89:30:88:1b:5f:d0:90:11:da:4f:db:2c:d4: 53:88:41:e6:b1:65:c9:d4:65:22:ec:cc:a7:4e:45:28:ea:ad: d6:d2:df:fb:3e:f2:f5:c6:c8:05:0f:c0:a0:fa:02:4c:42:47: 98:ee:f7:43:93:6c:49:39:ce:a4:08:c8:f5:fb:7a:60:58:df: dc:d2:79:46:41:8e:ac:04:cd:31:9c:28:39:ea:a0:1f:e0:51: 2a:05:a7:42:e9:ea:19:27:93:bb:9b:a0:52:b0:3a:b1:e3:da: 56:cf:17:1f:ea:78:c7:d2:7c:f9:c6:2c:ef:83:1c:2f:01:67: 67:52:05:63:37:c1:5b:60:67:2d:a3:57:a2:f4:83:d1:41:b0: 10:83:88:4d:a8:05:5f:9a:b2:61:70:1b:9a:9d:d4:3f:23:ac: ac:a5:27:ec:14:44:2a:a4:6a:16:9a:1c:e8:cf:39:f2:5b:bf: a0:30:a9:e3:44:06:8a:78:81:12:ab:53:e0:70:76:23:cb:50: 59:57:35:5e:47:05:23:d7:96:59:ce:7d:cc:71:f9:58:3f:ab: 3c:e9:8b:a9:88:04:60:7e:46:2c:ef:96:22:ab:d3:de:a0:e5: 62:a6:a9:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTAzMjkwNzE0MDZaFw0yNTA0MDUwNzE0MDZaMBgxFjAUBgNV BAMTDTY3ZTc5ZGJlLWI3MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDag1INeuBPLkHtKtB9nhu9He5Qr2XSUCNlEZeyX8ufViss0RXFlzQKV1f7t6LE 9yQBsQBaTSVR6vbA1nViBZtHMVoqljG76P9ssPTmtN3gXTR8SuVl11lLALHektME DSN6xxzmZr4cvQljKKyKsqn1AIKtcZemmLz0D8sDWJJZMIIn5mZYbGsMfBNn80gQ u09hOs2mDPY8H+e5D3xFkLkkjSmk6Y7fO5m3+ifA5KzJa/A5ElNOC4RaIaCMLbog x7RI0Esl/jLyuORcd20i+dnPJLen8D8sDwTmM5zjFBAzahRxxgyvdrFJ3zripU7S BFp1pXwxrC4qeDzWnDx8KyJzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEcK4uEtx /Veqhr9LXQG4WnccKUowHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RUVCLzFFRTdGQTYwRTVGNDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRB NGNveGtKWkJnUndGc21RUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAASlQE8hkPV52+f/Bc8RCJ5IfdrelOeoiTCIG1/QkBHaT9ss1FOIQeax ZcnUZSLszKdORSjqrdbS3/s+8vXGyAUPwKD6AkxCR5ju90OTbEk5zqQIyPX7emBY 39zSeUZBjqwEzTGcKDnqoB/gUSoFp0Lp6hknk7uboFKwOrHj2lbPFx/qeMfSfPnG LO+DHC8BZ2dSBWM3wVtgZy2jV6L0g9FBsBCDiE2oBV+asmFwG5qd1D8jrKylJ+wU RCqkahaaHOjPOfJbv6AwqeNEBop4gRKrU+BwdiPLUFlXNV5HBSPXllnOfcxx+Vg/ qzzpi6mIBGB+RizvliKr096g5WKmqbw= -----END CERTIFICATE-----Generated at Sat Apr 5 03:55:06 2025 by rpki-client