$ rpki-client -vvf rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft File: aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft (raw, json) Hash identifier: OYu+7fVEK9IYn+/FGL15HZNCRiRjEgVF3xPJsv3UT5M= Subject key identifier: 4D:9A:39:AD:EA:81:5E:B4:09:DB:25:A3:E5:A5:32:DD:C8:5A:57:EA Authority key identifier: 68:8B:B0:59:5F:59:5B:71:1E:02:45:0A:CE:E3:B2:6C:11:3B:79:2F Certificate issuer: /CN=A91549ED/serialNumber=688BB0595F595B711E02450ACEE3B26C113B792F Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft Manifest number: 077F Signing time: Sun 06 Apr 2025 21:04:50 +0000 Manifest this update: Sun 06 Apr 2025 21:04:49 +0000 Manifest next update: Sun 13 Apr 2025 21:04:49 +0000 Files and hashes: 1: aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl (hash: jgSF+3d97wZnckDE5qGTK+UTsLo8+DTRDs8jswFe7Ng=) 2: 89B3D06E0F9111EBA9B90727C4F9AE02.roa (hash: nNeDg/wlklIxGFoighizLl95GENL1V1dEvF0FUrVfns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91549ED Validity Not Before: Apr 6 21:04:49 2025 GMT Not After : Apr 13 21:04:49 2025 GMT Subject: CN=67f2ec71-d77f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ff:f6:d2:2f:2d:70:3d:38:ff:82:26:20:c1: 95:2e:b5:72:6e:de:44:c4:96:89:22:f7:e5:49:84: ad:f8:ee:fc:12:94:a4:b8:8a:21:69:47:c8:ee:02: 60:e3:30:60:a6:98:38:c1:3b:d0:f8:ee:54:91:ea: f2:b7:27:78:ed:53:a7:13:7a:01:ec:7e:40:c3:00: 29:27:9e:94:cf:15:62:2e:3d:8c:34:39:48:18:f5: 70:10:b3:77:ca:4c:11:37:ac:a4:15:34:fd:cf:d5: a8:74:a1:0a:9e:82:dc:3a:a9:ee:dc:a9:53:bf:25: e8:72:22:31:bd:1c:c1:6f:d9:86:37:bc:7f:11:a9: a8:7e:8f:b7:76:d8:87:e8:dd:94:8e:47:9e:4c:44: b0:ba:ed:0f:55:23:59:dc:84:2b:f2:5d:52:c4:95: 01:28:f5:4e:ef:86:2b:7e:1f:37:72:96:5b:6b:7c: b4:63:90:7f:54:8d:98:e3:48:09:e8:be:15:92:40: 77:98:e1:1c:25:2a:6a:32:58:bb:ab:00:ec:ca:bf: 6e:1d:ed:a1:bf:0f:f3:70:43:a2:8b:94:6f:8e:a5: f3:a9:38:fd:86:91:90:82:86:ef:19:7a:03:a2:5e: c3:16:3f:04:17:d3:bb:3d:0e:41:5b:74:53:a1:a9: 26:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9A:39:AD:EA:81:5E:B4:09:DB:25:A3:E5:A5:32:DD:C8:5A:57:EA X509v3 Authority Key Identifier: keyid:68:8B:B0:59:5F:59:5B:71:1E:02:45:0A:CE:E3:B2:6C:11:3B:79:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:10:2a:52:e4:57:2f:68:e0:1e:40:c6:f5:19:aa:7b:20:25: 49:f4:8b:f2:2b:29:d0:5b:c3:ea:4e:e7:74:37:a0:b9:5a:d7: 8e:d0:b9:2b:47:d9:52:ea:e3:b7:ff:aa:e6:f2:0e:e8:fe:e6: 14:36:73:56:51:d5:6c:7b:00:8c:1a:45:45:91:0b:f3:ff:88: 69:3f:08:03:47:8d:e1:5d:ac:83:d2:f1:0b:f1:04:57:48:1a: 0e:88:b5:b0:24:51:7e:4e:3f:a8:54:03:c2:19:1d:a1:f4:a5: 31:3a:22:49:2e:ef:88:1c:fe:0c:63:c5:05:de:0b:0d:91:ab: 0e:7a:90:33:02:3b:0f:d7:83:df:c7:cf:c8:e9:60:2a:d4:ce: 2b:f9:6b:fb:09:b3:fd:5a:e8:b6:47:26:2f:0d:ff:5a:25:c0: 41:0f:6c:3c:00:d3:4e:79:89:f9:45:73:ee:42:ed:6a:41:ab: 4b:f1:b6:28:23:ea:7c:b0:89:a4:46:d5:64:de:31:95:70:1f: f8:9d:dc:16:40:13:b0:f6:35:3c:34:77:83:16:75:d1:ba:0f: 65:fa:87:f6:b7:8f:7a:d4:fb:74:a9:36:68:06:03:df:50:78: ac:15:a1:7a:e5:85:ad:22:cc:ce:19:db:c2:5b:5e:d8:dc:01: 37:06:47:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5RUQxMTAvBgNVBAUTKDY4OEJCMDU5NUY1OTVCNzExRTAyNDUwQUNFRTNCMjZD MTEzQjc5MkYwHhcNMjUwNDA2MjEwNDQ5WhcNMjUwNDEzMjEwNDQ5WjAYMRYwFAYD VQQDEw02N2YyZWM3MS1kNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6f/20i8tcD04/4ImIMGVLrVybt5ExJaJIvflSYSt+O78EpSkuIohaUfI7gJg 4zBgppg4wTvQ+O5Ukerytyd47VOnE3oB7H5AwwApJ56UzxViLj2MNDlIGPVwELN3 ykwRN6ykFTT9z9WodKEKnoLcOqnu3KlTvyXociIxvRzBb9mGN7x/Eamofo+3dtiH 6N2UjkeeTESwuu0PVSNZ3IQr8l1SxJUBKPVO74Yrfh83cpZba3y0Y5B/VI2Y40gJ 6L4VkkB3mOEcJSpqMli7qwDsyr9uHe2hvw/zcEOii5RvjqXzqTj9hpGQgobvGXoD ol7DFj8EF9O7PQ5BW3RToakmQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2aOa3q gV60Cdslo+WlMt3IWlfqMB8GA1UdIwQYMBaAFGiLsFlfWVtxHgJFCs7jsmwRO3kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDlFRC9CNzcxNEI5NjA5 MTgxMUVCOTVGQTI3MzdDNEY5QUUwMi9hSXV3V1Y5WlczRWVBa1VLenVPeWJCRTdl UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJdXdXVjlaVzNFZUFrVUt6dU95YkJFN2VTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDlFRC9CNzcxNEI5NjA5MTgxMUVCOTVGQTI3MzdDNEY5QUUwMi9hSXV3V1Y5Wlcz RWVBa1VLenVPeWJCRTdlUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgECpS5FcvaOAeQMb1Gap7ICVJ9IvyKynQW8PqTud0N6C5WteO0Lkr R9lS6uO3/6rm8g7o/uYUNnNWUdVsewCMGkVFkQvz/4hpPwgDR43hXayD0vEL8QRX SBoOiLWwJFF+Tj+oVAPCGR2h9KUxOiJJLu+IHP4MY8UF3gsNkasOepAzAjsP14Pf x8/I6WAq1M4r+Wv7CbP9Wui2RyYvDf9aJcBBD2w8ANNOeYn5RXPuQu1qQatL8bYo I+p8sImkRtVk3jGVcB/4ndwWQBOw9jU8NHeDFnXRug9l+of2t4961Pt0qTZoBgPf UHisFaF65YWtIszOGdvCW17Y3AE3Bkd1 -----END CERTIFICATE-----Generated at Mon Apr 7 00:02:21 2025 by rpki-client