$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: 9MGGIHxnbgKtVYUoNhZQKBWvGHntpW8PTExkfeCtap8= Subject key identifier: 0F:1D:55:6E:98:3A:1A:0D:EF:B6:37:57:64:AD:47:12:44:8D:16:36 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 04D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 04CC Signing time: Sat 10 May 2025 23:24:08 +0000 Manifest this update: Sat 10 May 2025 23:24:08 +0000 Manifest next update: Sat 17 May 2025 23:24:08 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: m5qYlsLbhO8Q/5IgICYsC7hUJeLg5iEshJTXh2VKzNw=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: PTzWu6eYDTTqoEV88MOR131OkkMKAZ5jVAGwccli/Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1234 (0x4d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: May 10 23:24:08 2025 GMT Not After : May 17 23:24:08 2025 GMT Subject: CN=681fe018-7eea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:f8:85:35:7e:ad:56:be:f6:fe:76:c2:6f: 6f:21:f6:e3:da:d0:cf:6f:23:2c:3e:b8:07:8b:0f: 64:ad:7c:23:48:dd:e7:a6:74:41:09:5a:a9:79:03: c4:aa:5d:a2:33:2d:27:de:8c:9e:e3:e1:d7:e6:47: d1:8b:7d:0e:0b:ef:07:b1:f7:a1:70:fc:77:5c:1d: 7a:be:f1:bb:71:50:76:71:fd:d1:37:d2:96:f8:3d: 42:5d:86:ab:fc:a6:4d:ab:dd:7f:98:c7:cc:a0:a2: 56:b9:0c:b2:f3:f5:48:59:26:52:d4:f6:6c:00:23: ea:96:30:64:3d:84:6d:02:53:ee:61:a1:36:8d:3d: 66:ef:fb:10:fe:f3:5b:f2:45:c9:2e:03:f5:84:b5: ee:32:45:02:1f:2c:53:58:29:1d:64:b6:d9:d3:a2: 42:2c:d4:a8:ba:e9:2f:7a:d2:12:9d:68:eb:c7:d0: 61:3c:43:bb:73:e1:7c:86:ff:21:81:81:da:20:8f: 02:8e:f5:fd:92:1b:9b:8e:31:4c:70:d4:47:1c:85: 3d:57:52:19:8f:e0:66:94:48:9e:7d:9e:cc:f2:06: cd:8e:fb:cc:3c:a7:b5:fb:9e:9a:84:b7:e4:20:61: ed:89:92:b5:d0:0a:cf:fa:5f:43:8b:32:0c:11:41: ac:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1D:55:6E:98:3A:1A:0D:EF:B6:37:57:64:AD:47:12:44:8D:16:36 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b5:66:cf:6d:42:f1:ba:d0:3f:0e:ac:7e:0a:24:d1:93:2c: a7:2b:c0:43:ce:95:55:70:27:35:be:66:16:30:42:50:6f:25: 38:37:3f:a4:c2:d7:fd:ef:bc:29:25:7f:bb:34:65:2c:29:30: 03:06:61:9c:9c:99:44:aa:3d:8a:97:5e:fc:f3:a0:6b:2f:16: 43:e6:5e:eb:4c:43:a4:bf:ae:27:75:b3:33:d0:f9:fa:58:57: fa:cb:0e:90:2f:96:ac:81:5d:10:12:70:23:90:c4:d1:0f:66: b4:cc:fd:32:3e:e2:3a:ba:fd:60:42:92:39:ab:39:ed:ae:a9: c2:0d:ce:15:f4:f3:67:dc:c5:b4:10:37:d0:8c:56:ab:03:d5: 8e:14:bc:7a:85:40:32:d6:cf:e2:1e:11:db:4e:b9:26:63:a8: e8:84:34:fe:95:1f:ab:fd:85:9e:89:80:25:ff:d1:a9:bc:0a: 74:c2:81:0c:cc:e5:3d:a1:dd:40:f0:72:01:58:6c:00:e8:3e: 9d:f8:4e:1a:77:3b:73:35:0b:24:4d:39:ea:99:30:9a:d3:ad: 70:b6:06:a8:e5:82:aa:45:9b:42:c8:71:21:62:93:5a:8f:7c: 22:59:84:3e:93:db:1b:0e:2f:50:a1:5b:ed:82:d6:70:15:49: e8:23:a2:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwNTEwMjMyNDA4WhcNMjUwNTE3MjMyNDA4WjAYMRYwFAYD VQQDEw02ODFmZTAxOC03ZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kX4hTV+rVa+9v52wm9vIfbj2tDPbyMsPrgHiw9krXwjSN3npnRBCVqpeQPE ql2iMy0n3oye4+HX5kfRi30OC+8HsfehcPx3XB16vvG7cVB2cf3RN9KW+D1CXYar /KZNq91/mMfMoKJWuQyy8/VIWSZS1PZsACPqljBkPYRtAlPuYaE2jT1m7/sQ/vNb 8kXJLgP1hLXuMkUCHyxTWCkdZLbZ06JCLNSouukvetISnWjrx9BhPEO7c+F8hv8h gYHaII8CjvX9khubjjFMcNRHHIU9V1IZj+BmlEiefZ7M8gbNjvvMPKe1+56ahLfk IGHtiZK10ArP+l9DizIMEUGs5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8dVW6Y OhoN77Y3V2StRxJEjRY2MB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYtWbPbULxutA/Dqx+CiTRkyynK8BDzpVVcCc1vmYWMEJQbyU4Nz+k wtf977wpJX+7NGUsKTADBmGcnJlEqj2Kl17886BrLxZD5l7rTEOkv64ndbMz0Pn6 WFf6yw6QL5asgV0QEnAjkMTRD2a0zP0yPuI6uv1gQpI5qzntrqnCDc4V9PNn3MW0 EDfQjFarA9WOFLx6hUAy1s/iHhHbTrkmY6johDT+lR+r/YWeiYAl/9GpvAp0woEM zOU9od1A8HIBWGwA6D6d+E4adztzNQskTTnqmTCa061wtgao5YKqRZtCyHEhYpNa j3wiWYQ+k9sbDi9QoVvtgtZwFUnoI6IK -----END CERTIFICATE-----Generated at Mon May 12 04:26:56 2025 by rpki-client