$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.mft File: 2K8H1Dqbi7uB1g5MF36oGOyLc-U.mft (raw, json) Hash identifier: HAMXTx+/3AQainBmQ9xTO4QMKMX00k3UR8p8Ff/eSiU= Subject key identifier: 52:88:83:5E:58:A2:BF:E9:BA:35:29:3D:4C:36:4B:F7:95:30:21:2B Authority key identifier: D8:AF:07:D4:3A:9B:8B:BB:81:D6:0E:4C:17:7E:A8:18:EC:8B:73:E5 Certificate issuer: /CN=A91D5BDA/serialNumber=D8AF07D43A9B8BBB81D60E4C177EA818EC8B73E5 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K8H1Dqbi7uB1g5MF36oGOyLc-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.mft Manifest number: 0146 Signing time: Mon 21 Apr 2025 03:12:54 +0000 Manifest this update: Mon 21 Apr 2025 03:12:53 +0000 Manifest next update: Mon 28 Apr 2025 03:12:53 +0000 Files and hashes: 1: 2K8H1Dqbi7uB1g5MF36oGOyLc-U.crl (hash: zl0VscXt9cONOqsCLXYI/N3ZAmeFhMJT3tIHmvuSKh4=) 2: 98DB93A4301011EEA92BE919C4F9AE02.roa (hash: MrKs9S+pIK9ruhlRFpWtUpK3GffZ/Q4iUqs1HpDuQLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.crl rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K8H1Dqbi7uB1g5MF36oGOyLc-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 03:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BDA, serialNumber=D8AF07D43A9B8BBB81D60E4C177EA818EC8B73E5 Validity Not Before: Apr 21 03:12:53 2025 GMT Not After : Apr 28 03:12:53 2025 GMT Subject: CN=6805b7b6-cfdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d0:60:e2:28:c9:8d:b4:8d:ce:9e:b7:eb:bf: c8:53:fe:d0:35:24:92:5c:4a:72:99:7b:75:b9:a8: c9:c3:b6:a1:48:af:46:0f:31:b8:dd:86:0e:0c:2f: 2a:61:3a:b7:17:7f:78:9a:0d:95:02:d3:56:06:96: 37:0a:2e:7e:88:34:e2:ca:d3:2a:76:6e:82:a1:24: b4:7f:92:6b:5e:a4:32:f0:53:d5:93:67:44:5d:fb: dc:7a:67:3b:c1:30:c2:c6:55:12:e9:82:80:68:6a: 72:d3:5f:7b:f6:35:1e:41:fe:83:ba:a2:50:ed:d1: 1e:b7:40:20:ae:a8:2f:26:57:7c:b9:9f:1d:69:2e: 3a:d0:40:c2:28:84:d4:dc:3a:35:57:ac:ab:c6:cb: df:ca:3d:a9:0b:49:73:9c:21:70:c3:4a:0d:22:e9: a3:6e:e3:9c:b1:28:0e:40:af:5a:b8:4a:ee:ce:50: 81:04:19:28:9d:4d:7c:40:70:a7:cc:d7:9b:03:6a: 83:fd:ab:d3:cf:cc:fe:98:d1:5e:37:2b:b9:8c:51: 5e:45:34:c2:14:37:17:44:69:b9:36:2f:b1:b1:b1: 0d:96:6e:eb:f4:50:2c:3e:47:16:c5:f5:74:cb:65: 1c:39:ed:40:09:90:47:6e:a0:88:52:ba:28:95:0b: a4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:88:83:5E:58:A2:BF:E9:BA:35:29:3D:4C:36:4B:F7:95:30:21:2B X509v3 Authority Key Identifier: keyid:D8:AF:07:D4:3A:9B:8B:BB:81:D6:0E:4C:17:7E:A8:18:EC:8B:73:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K8H1Dqbi7uB1g5MF36oGOyLc-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:db:0b:02:df:38:f7:d3:00:bc:ef:3a:b4:91:7a:2b:54:18: fa:79:57:91:81:d8:c5:8a:82:41:82:53:e8:79:91:03:c4:51: 04:2d:45:a8:f7:a3:fb:7c:31:2c:db:9f:33:b7:aa:57:c0:a1: 77:85:b7:b0:07:67:99:27:38:a3:c4:ba:ff:7d:4a:54:3d:02: 36:ac:9c:41:b3:a1:0f:68:a5:a2:c8:fd:60:79:99:70:03:1f: ab:1e:7a:ef:1d:b2:d8:64:3c:ec:85:40:16:87:16:a3:3f:ff: 5c:fb:3d:c1:95:f6:8e:d9:5e:2a:aa:37:59:7b:b8:4f:a1:e0: e1:a4:2d:14:3b:68:7e:29:0e:0b:6e:de:77:9a:8e:de:07:70: 04:50:dc:62:21:77:bb:f6:5f:0f:0f:52:0e:01:d5:bd:5b:77: 96:20:9b:dd:5a:14:f1:74:5e:1f:9d:f9:55:ac:1f:fc:0a:40: cd:80:54:d7:ce:5c:4f:5e:82:fb:d8:0b:c5:25:d7:d8:3a:94: 65:04:69:d7:5a:5e:8a:0e:8b:db:f9:15:39:1d:0e:0b:b7:31: 16:65:4f:0a:a9:0a:f3:ac:e0:16:16:e9:89:4b:6f:0b:0e:c2: 32:44:e5:06:ed:28:e2:9a:fb:14:6a:67:76:99:75:7e:07:68: c1:a5:02:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCREExMTAvBgNVBAUTKEQ4QUYwN0Q0M0E5QjhCQkI4MUQ2MEU0QzE3N0VBODE4 RUM4QjczRTUwHhcNMjUwNDIxMDMxMjUzWhcNMjUwNDI4MDMxMjUzWjAYMRYwFAYD VQQDEw02ODA1YjdiNi1jZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdBg4ijJjbSNzp6367/IU/7QNSSSXEpymXt1uajJw7ahSK9GDzG43YYODC8q YTq3F394mg2VAtNWBpY3Ci5+iDTiytMqdm6CoSS0f5JrXqQy8FPVk2dEXfvcemc7 wTDCxlUS6YKAaGpy01979jUeQf6DuqJQ7dEet0AgrqgvJld8uZ8daS460EDCKITU 3Do1V6yrxsvfyj2pC0lznCFww0oNIumjbuOcsSgOQK9auEruzlCBBBkonU18QHCn zNebA2qD/avTz8z+mNFeNyu5jFFeRTTCFDcXRGm5Ni+xsbENlm7r9FAsPkcWxfV0 y2UcOe1ACZBHbqCIUroolQuk3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKIg15Y or/pujUpPUw2S/eVMCErMB8GA1UdIwQYMBaAFNivB9Q6m4u7gdYOTBd+qBjsi3Pl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJEQS9GNzNGMjBBNjMw MEYxMUVFODVFQTA0MTVDNEY5QUUwMi8ySzhIMURxYmk3dUIxZzVNRjM2b0dPeUxj LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLOEgxRHFiaTd1QjFnNU1GMzZvR095TGMtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJEQS9GNzNGMjBBNjMwMEYxMUVFODVFQTA0MTVDNEY5QUUwMi8ySzhIMURxYmk3 dUIxZzVNRjM2b0dPeUxjLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ2wsC3zj30wC87zq0kXorVBj6eVeRgdjFioJBglPoeZEDxFEELUWo 96P7fDEs258zt6pXwKF3hbewB2eZJzijxLr/fUpUPQI2rJxBs6EPaKWiyP1geZlw Ax+rHnrvHbLYZDzshUAWhxajP/9c+z3BlfaO2V4qqjdZe7hPoeDhpC0UO2h+KQ4L bt53mo7eB3AEUNxiIXe79l8PD1IOAdW9W3eWIJvdWhTxdF4fnflVrB/8CkDNgFTX zlxPXoL72AvFJdfYOpRlBGnXWl6KDovb+RU5HQ4LtzEWZU8KqQrzrOAWFumJS28L DsIyROUG7SjimvsUamd2mXV+B2jBpQKb -----END CERTIFICATE-----Generated at Tue Apr 22 06:13:00 2025 by rpki-client