$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: RrfNGJgpkG0xICvKC+2pQEfYpdyzcCj8UQCuECiqPp0= Subject key identifier: 00:5E:65:49:6E:A4:86:1E:B0:40:AE:48:89:15:42:94:D2:FA:FA:7E Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 01D1 Signing time: Sun 13 Apr 2025 01:50:41 +0000 Manifest this update: Sun 13 Apr 2025 01:50:40 +0000 Manifest next update: Sun 20 Apr 2025 01:50:40 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: 9oLdP36E5RSLc5PyQ9B/CTSolk/g2ZmEKnnBnz7yLCM=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Apr 13 01:50:40 2025 GMT Not After : Apr 20 01:50:40 2025 GMT Subject: CN=67fb1870-f8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a6:8d:70:7d:cc:12:96:69:03:3d:92:09:26: 7b:52:1e:79:17:a7:c8:c0:58:02:0a:9c:5f:f6:97: cf:cf:06:31:c8:8b:fd:d0:b1:c0:c5:90:af:8f:af: 9f:95:b3:59:3e:a5:b6:4a:76:84:64:a4:00:39:91: e2:e9:95:91:c0:ac:7d:e4:57:60:d9:20:b0:30:fd: 63:d2:72:4b:c0:a6:60:cd:dd:c9:7d:29:3c:a1:b9: 2c:94:2e:4f:89:68:81:32:40:ec:c3:25:d8:6f:29: 72:01:14:57:77:5a:0d:08:97:8c:bf:cc:ca:0c:62: ac:69:d3:2e:d8:ba:a8:d8:e8:cc:d8:3e:4d:0b:ce: 51:b7:53:22:b9:f0:72:e3:cb:4a:ae:5e:5b:91:5b: ab:47:c9:e8:44:a3:8f:c8:bd:25:43:74:3a:10:2d: 23:16:91:d4:d3:6d:c5:49:d8:66:e0:72:be:eb:6c: e4:d3:2b:59:05:b0:59:0f:fe:ff:80:02:7c:ce:ec: 17:18:d4:ee:2d:e8:09:fb:85:40:1c:bf:62:e6:64: 45:db:01:24:b0:65:8b:cf:aa:8e:3e:d3:e9:93:6f: 9a:21:c7:13:0b:11:0c:60:9b:49:11:ab:95:de:65: df:d6:99:21:e0:87:87:0c:e5:46:51:6b:a3:f1:46: ee:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5E:65:49:6E:A4:86:1E:B0:40:AE:48:89:15:42:94:D2:FA:FA:7E X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:84:b6:af:65:1e:e2:58:e3:fa:15:cd:9e:18:ca:97:7a:fe: ab:f6:7f:8f:60:b6:87:99:4e:56:a9:08:a0:d4:c6:1b:a9:ff: 17:ae:69:9a:72:61:cb:86:60:10:13:95:60:71:37:87:d9:f2: 61:0d:36:01:d5:b2:5b:ef:22:b6:63:4b:c9:27:a1:aa:5e:ef: 6c:24:94:0e:65:03:d0:4e:e4:d2:5b:93:4d:0d:aa:4a:b8:11: 64:5b:b8:84:0a:d3:76:14:87:bf:34:75:78:a9:c9:c1:ef:e7: 9a:c0:79:f4:50:49:96:ae:0d:7b:8d:ed:1b:b4:cc:16:ef:93: bf:45:a0:8d:9c:56:6f:7c:d0:da:1c:b7:8a:91:75:5e:43:26: 79:2d:55:55:cc:26:fd:59:05:ec:4d:dd:b3:80:89:8d:c2:d6: 54:5e:f3:ad:8b:99:7e:6e:ba:34:df:86:0c:e7:33:6d:9c:bb: 7d:e3:83:a0:98:bf:c1:b4:07:b5:d9:be:e3:a8:db:f3:1c:a5: 10:e8:e0:d7:76:e4:e4:e1:f6:39:92:d7:ef:d8:19:c2:09:be: 8c:42:f7:31:3c:e7:77:dd:28:74:85:6d:6f:09:1a:46:53:7d: 27:f4:93:fd:bf:d8:69:85:c8:90:05:ca:e7:2c:e0:d1:5c:7e: 23:4d:c0:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUwNDEzMDE1MDQwWhcNMjUwNDIwMDE1MDQwWjAYMRYwFAYD VQQDEw02N2ZiMTg3MC1mOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmaaNcH3MEpZpAz2SCSZ7Uh55F6fIwFgCCpxf9pfPzwYxyIv90LHAxZCvj6+f lbNZPqW2SnaEZKQAOZHi6ZWRwKx95Fdg2SCwMP1j0nJLwKZgzd3JfSk8obkslC5P iWiBMkDswyXYbylyARRXd1oNCJeMv8zKDGKsadMu2Lqo2OjM2D5NC85Rt1MiufBy 48tKrl5bkVurR8noRKOPyL0lQ3Q6EC0jFpHU023FSdhm4HK+62zk0ytZBbBZD/7/ gAJ8zuwXGNTuLegJ+4VAHL9i5mRF2wEksGWLz6qOPtPpk2+aIccTCxEMYJtJEauV 3mXf1pkh4IeHDOVGUWuj8UbuVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABeZUlu pIYesECuSIkVQpTS+vp+MB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvhLavZR7iWOP6Fc2eGMqXev6r9n+PYLaHmU5WqQig1MYbqf8Xrmma cmHLhmAQE5VgcTeH2fJhDTYB1bJb7yK2Y0vJJ6GqXu9sJJQOZQPQTuTSW5NNDapK uBFkW7iECtN2FIe/NHV4qcnB7+eawHn0UEmWrg17je0btMwW75O/RaCNnFZvfNDa HLeKkXVeQyZ5LVVVzCb9WQXsTd2zgImNwtZUXvOti5l+bro034YM5zNtnLt944Og mL/BtAe12b7jqNvzHKUQ6ODXduTk4fY5ktfv2BnCCb6MQvcxPOd33Sh0hW1vCRpG U30n9JP9v9hphciQBcrnLODRXH4jTcBq -----END CERTIFICATE-----Generated at Sun Apr 13 04:29:36 2025 by rpki-client