$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: WF4GQMgenv7rr2XWOV00YZu6x0UYAYaT51M5WEvbGdc= Subject key identifier: C1:C5:09:7A:51:26:0A:D8:1D:15:A1:A0:29:32:EB:D4:B2:0F:93:F1 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 3099 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 3095 Signing time: Sat 12 Apr 2025 15:24:23 +0000 Manifest this update: Sat 12 Apr 2025 15:24:23 +0000 Manifest next update: Sat 19 Apr 2025 15:24:23 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: v7e5K/P2kr2F2Vg/KIiU7wYuBsuH7O2mPW5UevO1lXs=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: QijzfOAskdpqspHv2hl6DWJmVGpVIoUXprNfU2Pxi8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12441 (0x3099) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Apr 12 15:24:23 2025 GMT Not After : Apr 19 15:24:23 2025 GMT Subject: CN=67fa85a7-63d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:40:bd:0c:5f:55:9d:9d:08:19:7d:a4:7a:d3: 8d:9f:39:ba:1f:8a:f0:50:e1:fe:89:9e:70:50:df: 4c:33:ed:d0:0c:2f:4d:36:7d:c8:16:17:82:c9:0e: 33:97:2d:e2:43:a1:d7:9f:9b:cd:e5:9a:00:85:89: e9:b4:7c:e3:09:3c:d3:f0:47:be:4b:6d:a0:7c:56: a2:45:98:d9:54:e1:cc:34:94:dd:0c:a7:e8:21:ed: a7:80:2b:6e:da:97:24:a5:f6:9c:d0:fd:27:eb:34: fb:5d:7a:64:e6:78:fb:71:46:b7:ee:cb:26:3d:04: 84:b4:fd:57:8f:c5:7f:79:4b:c8:22:09:fe:ce:c3: b6:49:35:06:41:45:64:38:77:2f:9f:10:c3:64:55: 12:67:e8:c0:cb:c9:da:5d:03:43:84:0c:69:ee:59: 24:09:8e:a2:49:c1:14:dd:86:16:0b:93:51:f0:09: 66:de:27:21:dd:6f:88:15:47:56:14:56:56:f1:76: f7:e8:64:a4:cf:06:b0:ee:87:0d:e7:60:04:07:56: fe:00:21:5b:b2:aa:d5:e3:c7:7e:57:f9:f1:c1:17: 63:74:26:1f:e6:be:c0:6b:fe:dc:97:a3:e5:15:90: e1:05:be:0c:7f:4c:5c:59:e6:34:ec:d0:9b:75:17: 12:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C5:09:7A:51:26:0A:D8:1D:15:A1:A0:29:32:EB:D4:B2:0F:93:F1 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:82:0e:31:99:42:2e:55:17:ab:45:95:7e:9d:aa:b7:c2:55: fa:9a:a7:bd:51:83:7e:be:a8:a1:26:f9:e0:a1:b6:d9:39:e1: fc:99:93:79:ef:7d:06:b0:00:c9:36:e3:f7:b9:37:6b:f8:16: 49:b3:1d:2b:07:1d:6d:88:34:94:e2:dd:32:aa:43:90:d0:93: 0e:ee:69:cc:96:b6:0a:f4:10:c9:66:76:35:13:35:d7:68:df: 8d:48:92:c0:99:9c:aa:e3:a3:de:2f:22:1f:a9:26:76:24:53: a4:c1:82:c3:ed:6b:74:de:8c:6d:4c:ac:81:50:b3:dd:be:89: 3a:e0:c5:c5:17:6a:57:42:6e:9c:ad:c5:7c:77:82:cc:dd:a8: 81:9d:94:dd:f8:0a:a0:74:37:2c:64:42:8b:3d:e0:24:e2:7a: e0:13:d5:f7:8e:44:cb:3a:bb:d6:2a:55:04:a9:a0:ec:62:d8: b0:00:38:c8:5d:f6:1f:2d:70:7d:cf:f6:1e:9b:04:c1:da:30: b0:ce:c8:59:46:3a:f3:c4:cb:d7:03:9f:a0:72:63:1d:a4:41: c3:10:08:62:59:65:19:5a:a2:f4:a0:81:e1:13:c9:72:a7:38: 78:c7:1a:30:ad:06:bf:e6:d4:6b:06:3a:31:6b:25:ef:37:88: 90:bf:2c:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUwNDEyMTUyNDIzWhcNMjUwNDE5MTUyNDIzWjAYMRYwFAYD VQQDEw02N2ZhODVhNy02M2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEC9DF9VnZ0IGX2ketONnzm6H4rwUOH+iZ5wUN9MM+3QDC9NNn3IFheCyQ4z ly3iQ6HXn5vN5ZoAhYnptHzjCTzT8Ee+S22gfFaiRZjZVOHMNJTdDKfoIe2ngCtu 2pckpfac0P0n6zT7XXpk5nj7cUa37ssmPQSEtP1Xj8V/eUvIIgn+zsO2STUGQUVk OHcvnxDDZFUSZ+jAy8naXQNDhAxp7lkkCY6iScEU3YYWC5NR8Alm3ich3W+IFUdW FFZW8Xb36GSkzwaw7ocN52AEB1b+ACFbsqrV48d+V/nxwRdjdCYf5r7Aa/7cl6Pl FZDhBb4Mf0xcWeY07NCbdRcS+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHFCXpR JgrYHRWhoCky69SyD5PxMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkgg4xmUIuVRerRZV+naq3wlX6mqe9UYN+vqihJvngobbZOeH8mZN5 730GsADJNuP3uTdr+BZJsx0rBx1tiDSU4t0yqkOQ0JMO7mnMlrYK9BDJZnY1EzXX aN+NSJLAmZyq46PeLyIfqSZ2JFOkwYLD7Wt03oxtTKyBULPdvok64MXFF2pXQm6c rcV8d4LM3aiBnZTd+AqgdDcsZEKLPeAk4nrgE9X3jkTLOrvWKlUEqaDsYtiwADjI XfYfLXB9z/YemwTB2jCwzshZRjrzxMvXA5+gcmMdpEHDEAhiWWUZWqL0oIHhE8ly pzh4xxowrQa/5tRrBjoxayXvN4iQvyzZ -----END CERTIFICATE-----Generated at Sat Apr 12 18:51:56 2025 by rpki-client