$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft File: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft (raw, json) Hash identifier: MvkT27kCbxiwTqf8ER9Bf60XNmDcbX/3Q9weWWKjBAg= Subject key identifier: 12:8C:FE:26:CD:6B:10:FB:A4:54:A0:29:E4:FD:15:09:03:89:3C:8A Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft Manifest number: E7 Signing time: Mon 05 May 2025 04:16:57 +0000 Manifest this update: Mon 05 May 2025 04:16:56 +0000 Manifest next update: Mon 12 May 2025 04:16:56 +0000 Files and hashes: 1: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl (hash: xtgnlmdOA4E+UIdnjhD2A297iA35S4dvrY73anYlwJQ=) 2: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (hash: u6J6SPSNjElCImZDre2hX9rdBiRV9plYfnlpPbtxhQc=) 3: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (hash: hR3HemTX8sPR//njNhfSediG0DqzFMWVKhRmgOL4nRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 04:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9, serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: May 5 04:16:56 2025 GMT Not After : May 12 04:16:56 2025 GMT Subject: CN=68183bb8-b0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9b:29:cf:b4:60:ba:22:fa:bc:75:e4:da:53: 63:0a:45:26:21:dd:17:f0:10:db:a5:34:7a:bc:b0: 77:bb:65:23:2f:e8:cf:65:e7:1f:e3:c7:75:75:91: 3d:b0:60:38:0c:3f:d1:7f:17:b7:1c:55:2d:8e:a8: 0a:76:8d:69:d6:7f:fd:a8:b3:df:5c:3f:15:ad:54: d6:d5:6e:42:b0:18:3b:76:e9:79:61:a8:e0:86:e4: f6:7b:93:69:7d:53:6b:48:12:0e:16:fa:36:1e:c5: e0:63:14:d7:98:2e:40:fb:bc:34:08:55:e2:fa:39: 6b:07:3c:f0:a8:c0:cd:7e:d0:74:be:20:e9:01:68: 41:2d:2b:0f:98:ce:b8:de:8d:e8:f9:10:f6:41:c0: a3:aa:92:61:81:7f:82:65:b1:aa:7e:cc:59:29:27: 10:ac:41:95:1a:8a:36:9f:81:7d:b2:87:5d:f6:05: ae:c6:e4:e0:49:8f:fb:bd:fd:5d:0d:3c:d8:df:3c: a7:30:c3:9c:d5:de:b4:59:f4:c3:46:ef:c8:ce:a8: 3b:e6:dc:eb:64:3c:21:fc:83:80:51:cf:d8:6a:04: 41:d7:cc:50:ae:3d:9a:a6:0c:6c:e2:39:6f:54:bf: 96:92:fb:12:76:68:3d:0e:d1:dd:93:62:f3:3f:db: cd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8C:FE:26:CD:6B:10:FB:A4:54:A0:29:E4:FD:15:09:03:89:3C:8A X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:02:89:d1:77:22:23:33:68:68:3b:b1:34:66:45:20:dc:47: e8:b3:9c:b6:76:0c:39:14:b2:62:6e:4b:d2:54:08:31:4c:f5: 85:fb:2a:06:e2:6a:a4:db:0d:39:25:b1:20:50:65:3e:b9:a9: 22:92:aa:ae:ca:f1:e6:21:31:23:15:06:97:9a:27:c6:8c:59: 3c:fc:90:ff:f6:67:ec:0d:bf:3d:ea:08:44:34:94:80:e3:5a: 7e:d0:19:2e:b9:87:b8:be:44:88:69:85:fa:ae:af:cb:ae:4e: 62:fe:d0:01:b8:78:f4:8b:93:bc:3f:a7:21:37:9d:b2:e6:4e: 48:ab:55:7d:a5:94:d1:89:93:e1:56:e4:1a:75:14:21:45:03: 78:94:c4:94:58:49:db:2e:e2:63:88:02:c0:fa:b7:11:a5:bc: 25:18:20:35:c8:0d:95:15:8b:39:0f:8e:8e:72:5e:80:09:87: 5c:3f:0c:0d:45:30:77:72:3d:1c:0c:7f:b6:b6:17:ae:6b:1a: 96:fd:01:86:1e:1b:f6:f4:2b:c4:ea:dd:8e:a4:09:e7:28:37: 60:fb:97:11:01:04:ac:25:f7:05:52:d5:93:b4:51:84:c9:10: a0:bc:f3:c7:95:63:b3:76:41:0f:36:48:8b:75:3c:3d:b9:bd: f1:8a:71:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwNTA1MDQxNjU2WhcNMjUwNTEyMDQxNjU2WjAYMRYwFAYD VQQDEw02ODE4M2JiOC1iMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJspz7RguiL6vHXk2lNjCkUmId0X8BDbpTR6vLB3u2UjL+jPZecf48d1dZE9 sGA4DD/Rfxe3HFUtjqgKdo1p1n/9qLPfXD8VrVTW1W5CsBg7dul5YajghuT2e5Np fVNrSBIOFvo2HsXgYxTXmC5A+7w0CFXi+jlrBzzwqMDNftB0viDpAWhBLSsPmM64 3o3o+RD2QcCjqpJhgX+CZbGqfsxZKScQrEGVGoo2n4F9sodd9gWuxuTgSY/7vf1d DTzY3zynMMOc1d60WfTDRu/Izqg75tzrZDwh/IOAUc/YagRB18xQrj2apgxs4jlv VL+WkvsSdmg9DtHdk2LzP9vNdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKM/ibN axD7pFSgKeT9FQkDiTyKMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTVDOS83RTJGMTI2OEM5RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1E blptS0Q4NWNucmRmX0laejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaAonRdyIjM2hoO7E0ZkUg3Efos5y2dgw5FLJibkvSVAgxTPWF+yoG 4mqk2w05JbEgUGU+uakikqquyvHmITEjFQaXmifGjFk8/JD/9mfsDb896ghENJSA 41p+0BkuuYe4vkSIaYX6rq/Lrk5i/tABuHj0i5O8P6chN52y5k5Iq1V9pZTRiZPh VuQadRQhRQN4lMSUWEnbLuJjiALA+rcRpbwlGCA1yA2VFYs5D46Ocl6ACYdcPwwN RTB3cj0cDH+2theuaxqW/QGGHhv29CvE6t2OpAnnKDdg+5cRAQSsJfcFUtWTtFGE yRCgvPPHlWOzdkEPNkiLdTw9ub3xinFe -----END CERTIFICATE-----Generated at Mon May 5 14:56:13 2025 by rpki-client