$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: qCeZ+hdUo9U38g01oQSbYpzVDvUiOvAEZPxy/g+n94A= Subject key identifier: 83:58:33:A9:52:89:09:DB:D1:0E:23:42:9F:E7:58:8B:7C:81:55:6C Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: 30 Signing time: Sun 11 May 2025 06:23:10 +0000 Manifest this update: Sun 11 May 2025 06:23:09 +0000 Manifest next update: Sun 18 May 2025 06:23:09 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: zX8qJjb+leeVSYY0CITJ277URZUqSOieLyAhF/eFG08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: May 11 06:23:09 2025 GMT Not After : May 18 06:23:09 2025 GMT Subject: CN=6820424e-2269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d4:d0:85:ef:00:78:ae:d4:67:22:7c:05:9d: bd:76:3f:46:32:3f:6f:36:47:d7:0f:3a:2a:7e:e1: 94:ed:9a:c6:c0:2e:20:39:99:51:8c:2d:fc:0b:61: e3:e2:0e:c3:f8:aa:dc:ab:d1:ca:ec:6d:60:ba:bd: 12:11:f6:17:36:a8:be:3e:1a:a0:b8:05:3a:3a:33: 3a:01:dc:a7:19:ea:dc:a7:cf:79:c0:8c:7b:9f:a1: 2c:28:7b:27:05:89:8d:19:08:c4:da:bc:fa:db:fd: f3:c7:b6:eb:68:4d:d9:2b:6c:4a:cc:00:52:9b:43: da:4e:d3:bc:0e:9d:69:b1:ef:77:16:7a:6f:60:b8: 79:3b:c3:c4:a8:4b:86:02:78:a9:57:45:ef:18:83: 99:7d:ad:0d:b5:da:6c:ea:d7:65:2c:fe:bc:a4:3a: 6e:0c:39:a1:f7:d0:9e:ee:0f:0e:c3:3d:24:4b:5e: 34:81:7b:6f:7a:a6:dc:9d:75:5f:bc:97:e0:99:e3: ac:e5:0b:ca:cf:39:70:1d:18:1f:a4:00:e8:01:e4: 0a:af:94:df:78:17:e5:63:85:81:cf:84:99:f4:f6: a0:95:3f:53:78:6d:01:8c:0b:58:e2:c4:69:2f:db: 75:f0:c2:b9:e7:3e:28:54:6a:60:c6:71:81:f9:04: b4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:58:33:A9:52:89:09:DB:D1:0E:23:42:9F:E7:58:8B:7C:81:55:6C X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:a8:8e:75:b6:b6:bf:38:83:86:38:57:b8:bd:40:3a:76:85: 1f:ca:04:d4:be:6f:df:7b:32:6b:a2:cc:2e:03:97:f1:8c:82: ea:87:3b:35:d9:45:15:6c:98:ab:3d:6e:8a:47:46:c4:bb:04: fd:9b:fb:72:5c:17:45:ec:a1:bc:c4:59:c8:12:0a:bd:81:aa: b7:5b:b7:03:d3:d8:42:86:1d:cd:a1:e4:7c:50:43:9a:7a:94: 38:ce:72:11:a9:14:04:d2:0c:08:4f:3e:fe:a8:48:2d:55:4c: c7:d4:bf:6c:32:64:80:d8:0f:23:bd:49:86:11:b0:91:d6:e3: d0:01:3e:99:6a:d6:6f:94:0c:67:6a:77:d7:b0:03:4a:56:f3: c7:f3:0c:fa:49:9f:04:e6:d2:31:96:22:d9:1d:47:bc:85:14: e3:27:5d:78:ce:11:bb:72:c6:26:cd:7d:5c:e6:aa:29:99:76: e2:93:ae:4a:27:e5:09:e7:d7:15:fa:f0:50:a7:6a:bf:6a:bb: 88:35:91:8a:ec:e6:51:05:2e:31:c4:b3:b3:12:7d:e9:65:b3: fe:78:e3:02:c1:af:11:10:4a:c0:73:1f:64:a6:27:6a:1e:7e: e3:ee:c1:53:5a:d9:27:a4:7c:8d:0a:95:81:38:69:c2:04:f6: 9c:28:88:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzI3MzExMC8GA1UEBRMoRERBNDlGNDFGNjE4QTU1RjlDQTdDRkM1NUJBRUE3QjYx NkQ5NTc2MjAeFw0yNTA1MTEwNjIzMDlaFw0yNTA1MTgwNjIzMDlaMBgxFjAUBgNV BAMTDTY4MjA0MjRlLTIyNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs1NCF7wB4rtRnInwFnb12P0YyP282R9cPOip+4ZTtmsbALiA5mVGMLfwLYePi DsP4qtyr0crsbWC6vRIR9hc2qL4+GqC4BTo6MzoB3KcZ6tynz3nAjHufoSwoeycF iY0ZCMTavPrb/fPHtutoTdkrbErMAFKbQ9pO07wOnWmx73cWem9guHk7w8SoS4YC eKlXRe8Yg5l9rQ212mzq12Us/rykOm4MOaH30J7uDw7DPSRLXjSBe296ptyddV+8 l+CZ46zlC8rPOXAdGB+kAOgB5AqvlN94F+VjhYHPhJn09qCVP1N4bQGMC1jixGkv 23XwwrnnPihUamDGcYH5BLSPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg1gzqVKJ CdvRDiNCn+dYi3yBVWwwHwYDVR0jBBgwFoAU3aSfQfYYpV+cp8/FW66nthbZV2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3MjczL0ZDNTA1MDBFRTc3 MTExRUY5REZCREQ1MEM0RjlBRTAyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2FTZlFmWVlwVi1jcDhfRlc2Nm50aGJaVjJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 MjczL0ZDNTA1MDBFRTc3MTExRUY5REZCREQ1MEM0RjlBRTAyLzNhU2ZRZllZcFYt Y3A4X0ZXNjZudGhiWlYySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANKojnW2tr84g4Y4V7i9QDp2hR/KBNS+b997MmuizC4Dl/GMguqHOzXZ RRVsmKs9bopHRsS7BP2b+3JcF0XsobzEWcgSCr2BqrdbtwPT2EKGHc2h5HxQQ5p6 lDjOchGpFATSDAhPPv6oSC1VTMfUv2wyZIDYDyO9SYYRsJHW49ABPplq1m+UDGdq d9ewA0pW88fzDPpJnwTm0jGWItkdR7yFFOMnXXjOEbtyxibNfVzmqimZduKTrkon 5Qnn1xX68FCnar9qu4g1kYrs5lEFLjHEs7MSfells/544wLBrxEQSsBzH2SmJ2oe fuPuwVNa2SekfI0KlYE4acIE9pwoiBs= -----END CERTIFICATE-----Generated at Sun May 11 12:51:26 2025 by rpki-client