$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft File: f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json) Hash identifier: rPCs7tmqVgDa0D2jrM0ukDfMboMBEvVrfJkFMplJexk= Subject key identifier: D4:20:06:14:FE:97:9D:8D:55:CC:C3:8C:4B:0F:A1:75:D3:39:73:C3 Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft Manifest number: 0191 Signing time: Fri 09 May 2025 02:39:08 +0000 Manifest this update: Fri 09 May 2025 02:39:07 +0000 Manifest next update: Fri 16 May 2025 02:39:07 +0000 Files and hashes: 1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: W5BPJNx30CEFEOzLOODgoG3KCRwnn4yP7i1TZmCM6Hg=) 2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: hP+l6tFfGRtL/s3PVotLK1C45PriZjz7pB5mLcbuaqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: May 9 02:39:07 2025 GMT Not After : May 16 02:39:07 2025 GMT Subject: CN=681d6acc-9ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d3:4f:26:11:3c:ce:31:c6:cc:a6:00:ef:a7: c2:51:30:00:c2:b5:d4:fe:65:85:35:f9:e2:7d:3f: a7:fd:e7:38:3c:02:40:ca:ee:cc:89:49:5e:95:25: 87:6b:08:d1:79:09:e3:85:45:42:03:3f:da:99:b0: 89:d5:92:f9:42:3f:a9:98:6d:bd:21:3f:fd:9d:2f: 9e:ae:57:04:f3:7d:c8:d5:c0:db:a1:b3:9c:0f:3b: 02:da:f2:04:63:d3:0a:1a:d2:91:54:6a:12:ea:d1: 6e:85:6f:e3:61:5a:a2:fa:80:22:43:6a:9c:28:19: 14:6f:21:eb:b8:e0:da:47:0a:30:93:63:94:46:d2: 2e:42:98:00:b4:5a:27:ba:7d:54:c8:37:b7:67:73: 02:e2:00:e1:df:6c:c2:56:5a:43:81:65:b9:08:03: 1c:f7:78:da:55:49:3c:c1:83:52:bd:08:2c:5c:54: 79:c6:f6:7a:20:4a:0b:e8:6f:8a:d3:b5:78:75:cd: 99:7e:ab:1d:ea:00:cd:7b:fd:6b:82:26:a2:81:d5: 14:43:c8:b9:47:b5:01:a2:b7:24:ac:df:c7:29:92: ac:63:3d:00:23:01:f3:9b:a3:4b:4d:c7:a2:c2:c6: 98:8e:d9:b8:2d:96:69:b2:5d:b1:d8:b7:e5:59:07: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:20:06:14:FE:97:9D:8D:55:CC:C3:8C:4B:0F:A1:75:D3:39:73:C3 X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:be:e9:2a:62:bd:80:3e:6b:af:8d:f2:1c:f8:31:3e:b5:bd: 53:8b:b3:7a:b4:f6:ff:6c:e3:41:99:aa:ca:de:03:e0:05:16: 09:e6:54:70:d1:a3:d4:00:1e:bf:89:15:ed:4c:ab:55:c9:dd: d8:d9:37:d5:10:2b:ba:a7:d3:a6:85:28:a0:b0:79:d9:9c:a4: d6:33:39:ec:6e:b4:0d:22:b4:c2:66:ca:39:8e:34:d6:71:82: ff:c2:d6:e9:e1:ed:33:3c:a8:c7:21:59:96:f0:ca:1d:36:54: 6c:b6:c2:03:04:7a:1d:de:fa:d5:32:35:db:da:a1:e0:a3:22: 8f:f0:e3:1b:22:a3:ac:3a:da:d1:b8:c9:ad:b9:f4:30:a3:ec: 1f:7e:c1:bf:c8:15:86:99:82:85:c5:24:c2:62:9b:bf:18:5a: b9:04:59:ef:8b:79:47:c3:48:21:47:10:2a:ef:30:c8:4c:0d: 32:d4:d8:9b:97:db:9d:cf:20:95:5c:e3:e5:93:8d:3a:23:b6: 97:af:70:b0:54:2a:ff:68:a0:03:00:a7:06:98:0d:bb:38:cf: 32:36:1f:57:d5:1c:5c:75:f5:4c:17:9c:d2:8a:fd:d2:42:12: cd:10:f2:2d:bf:6c:03:b3:1d:d8:6b:b3:26:16:44:f7:ac:ed: 62:e9:ee:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjUwNTA5MDIzOTA3WhcNMjUwNTE2MDIzOTA3WjAYMRYwFAYD VQQDEw02ODFkNmFjYy05ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNNPJhE8zjHGzKYA76fCUTAAwrXU/mWFNfnifT+n/ec4PAJAyu7MiUlelSWH awjReQnjhUVCAz/ambCJ1ZL5Qj+pmG29IT/9nS+erlcE833I1cDbobOcDzsC2vIE Y9MKGtKRVGoS6tFuhW/jYVqi+oAiQ2qcKBkUbyHruODaRwowk2OURtIuQpgAtFon un1UyDe3Z3MC4gDh32zCVlpDgWW5CAMc93jaVUk8wYNSvQgsXFR5xvZ6IEoL6G+K 07V4dc2Zfqsd6gDNe/1rgiaigdUUQ8i5R7UBorckrN/HKZKsYz0AIwHzm6NLTcei wsaYjtm4LZZpsl2x2LflWQfLgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQgBhT+ l52NVczDjEsPoXXTOXPDMB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjgzRC9BM0Q1MkZCOEM4NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAz X09KTVRKcEdSV2c4T2VpaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNvukqYr2APmuvjfIc+DE+tb1Ti7N6tPb/bONBmarK3gPgBRYJ5lRw 0aPUAB6/iRXtTKtVyd3Y2TfVECu6p9OmhSigsHnZnKTWMznsbrQNIrTCZso5jjTW cYL/wtbp4e0zPKjHIVmW8ModNlRstsIDBHod3vrVMjXb2qHgoyKP8OMbIqOsOtrR uMmtufQwo+wffsG/yBWGmYKFxSTCYpu/GFq5BFnvi3lHw0ghRxAq7zDITA0y1Nib l9udzyCVXOPlk406I7aXr3CwVCr/aKADAKcGmA27OM8yNh9X1RxcdfVMF5zSiv3S QhLNEPItv2wDsx3Ya7MmFkT3rO1i6e76 -----END CERTIFICATE-----Generated at Sun May 11 01:08:22 2025 by rpki-client