$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: /dUmzk+5YKLV8c2AyxkcKrEOML0EKAv+h60WfiWbO4w= Subject key identifier: F3:65:0C:FC:00:4E:A3:FD:A2:0E:56:E1:CA:04:CC:5C:10:DD:C8:9D Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: D6 Signing time: Thu 17 Apr 2025 04:33:08 +0000 Manifest this update: Thu 17 Apr 2025 04:33:07 +0000 Manifest next update: Thu 24 Apr 2025 04:33:07 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: JLqCSw2emR+uVaJjOrNtj9f7SFzSSvcuc5HrO6E3D4c=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: v+2l/01UoHJgdCC0kM5naU4djCslZb9P5MPHegECJtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498, serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Apr 17 04:33:07 2025 GMT Not After : Apr 24 04:33:07 2025 GMT Subject: CN=68008484-b42f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:79:0b:22:6b:a5:17:90:49:03:bb:3c:9e:7a: e7:cb:99:fd:5d:80:f4:7d:3f:2c:ba:d5:01:ee:27: 9f:6d:19:51:b5:10:bc:be:92:36:a2:a3:78:36:57: 79:55:37:ea:37:ff:91:64:76:6b:51:94:53:bf:8c: d7:03:ab:d9:5d:0a:3b:5a:77:81:ab:8d:d1:47:19: 2e:90:f0:19:b2:67:16:5d:38:46:ac:02:b2:05:9e: c6:b2:c7:03:0b:bf:51:d0:af:65:42:31:89:f6:2a: a8:27:95:26:c6:f5:6b:7f:4e:5a:27:5d:2c:e3:85: d5:03:23:03:74:e6:74:1a:1b:61:09:5f:a5:81:47: 17:ee:88:2d:1e:ec:46:09:07:a9:32:8b:87:3a:6e: 96:93:00:77:08:11:94:da:70:52:f8:83:f1:c3:ca: 3f:75:a3:05:34:03:45:a7:74:4d:97:cd:68:92:fd: 61:a2:d0:86:78:07:4c:54:d7:d5:8b:4e:7f:38:21: 93:42:54:0a:f3:6b:70:31:3f:15:bc:84:17:c4:2f: e4:61:4a:ab:31:77:7c:9f:68:57:8b:50:ca:58:51: 19:c3:c9:de:fe:df:24:55:4c:84:83:ba:d0:97:78: 22:2c:bd:b5:6c:b9:67:55:72:bf:33:3d:dc:03:e9: 6b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:65:0C:FC:00:4E:A3:FD:A2:0E:56:E1:CA:04:CC:5C:10:DD:C8:9D X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8e:cc:39:1d:db:6d:8c:94:c4:7b:8e:7f:5a:d7:f5:a8:5b: 7d:d0:bd:5a:65:50:49:d3:b5:02:af:55:22:9b:6c:42:7e:5a: 05:b3:87:83:e5:e2:51:38:1b:8b:72:05:2b:27:ef:53:c7:9d: 99:c3:e5:a7:a3:45:31:50:4f:5d:ef:00:17:f6:16:ab:b4:e9: 70:99:03:dc:33:53:24:4c:ba:61:e1:46:f7:10:22:17:2e:6f: 02:62:77:5d:46:96:7d:22:bb:88:83:d2:c0:44:4d:0c:50:b4: 0e:6b:8d:c9:70:0b:d9:01:c4:e7:0f:83:e4:94:6f:51:75:33: 34:e5:ee:f0:6e:d3:2d:83:77:30:d0:2d:e2:29:1a:13:23:2f: d9:bd:38:ff:54:a6:16:67:c8:42:a1:9e:62:4c:90:9a:bb:1c: 60:0a:55:fd:53:7c:da:5b:81:1b:aa:79:39:f5:59:f8:4a:b1: 6a:98:a1:72:75:6c:b5:3e:05:56:7b:d9:a1:49:ca:0a:45:17: b6:72:27:f5:7d:50:f4:ea:49:e4:80:1e:ee:16:f4:e4:ba:b3: e5:f1:0c:b0:35:ad:05:60:6d:32:d3:78:30:34:e2:06:66:76: 35:c3:c8:e4:5f:f1:b1:e5:bb:85:6a:a3:fb:9f:73:b4:5c:cd: 55:bc:98:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjUwNDE3MDQzMzA3WhcNMjUwNDI0MDQzMzA3WjAYMRYwFAYD VQQDEw02ODAwODQ4NC1iNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnkLImulF5BJA7s8nnrny5n9XYD0fT8sutUB7iefbRlRtRC8vpI2oqN4Nld5 VTfqN/+RZHZrUZRTv4zXA6vZXQo7WneBq43RRxkukPAZsmcWXThGrAKyBZ7GsscD C79R0K9lQjGJ9iqoJ5UmxvVrf05aJ10s44XVAyMDdOZ0GhthCV+lgUcX7ogtHuxG CQepMouHOm6WkwB3CBGU2nBS+IPxw8o/daMFNANFp3RNl81okv1hotCGeAdMVNfV i05/OCGTQlQK82twMT8VvIQXxC/kYUqrMXd8n2hXi1DKWFEZw8ne/t8kVUyEg7rQ l3giLL21bLlnVXK/Mz3cA+lrwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNlDPwA TqP9og5W4coEzFwQ3cidMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTQ5OC9CM0M4QTk3Q0RGQjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4 cnRrOUNXcXhUSy1nZ1Y1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqjsw5HdttjJTEe45/Wtf1qFt90L1aZVBJ07UCr1Uim2xCfloFs4eD 5eJROBuLcgUrJ+9Tx52Zw+Wno0UxUE9d7wAX9hartOlwmQPcM1MkTLph4Ub3ECIX Lm8CYnddRpZ9IruIg9LARE0MULQOa43JcAvZAcTnD4PklG9RdTM05e7wbtMtg3cw 0C3iKRoTIy/ZvTj/VKYWZ8hCoZ5iTJCauxxgClX9U3zaW4Ebqnk59Vn4SrFqmKFy dWy1PgVWe9mhScoKRRe2cif1fVD06knkgB7uFvTkurPl8QywNa0FYG0y03gwNOIG ZnY1w8jkX/Gx5buFaqP7n3O0XM1VvJgV -----END CERTIFICATE-----Generated at Thu Apr 17 23:16:15 2025 by rpki-client