$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: OYTHnrdylWcUR/kfbUAzoxtYH/Y5sSDtUH/u+fb+QzQ= Subject key identifier: BA:71:73:88:6F:4C:43:A1:5E:CD:D4:32:A2:0B:FC:EB:FC:E3:05:8F Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0E26 Signing time: Mon 12 May 2025 17:46:37 +0000 Manifest this update: Mon 12 May 2025 17:46:36 +0000 Manifest next update: Mon 19 May 2025 17:46:36 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: duCxv3gQ6SJ2IncaqK9f+YUN2TEAmU9C86Qm54pTfrU=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: vEfRiQNE3h/B834WLq9GOeXPVajCjfh3DLWpODG+4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: May 12 17:46:36 2025 GMT Not After : May 19 17:46:36 2025 GMT Subject: CN=682233fc-a026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:04:82:f9:dc:b2:25:b3:90:16:fb:0b:60:15: d9:17:19:ee:cd:d1:a8:58:7e:a1:af:cb:19:2e:ed: 31:c5:c5:54:ca:82:8a:a5:8b:84:d7:f9:07:32:55: 08:29:16:82:8e:aa:28:53:0f:2b:9f:71:72:ff:28: 0a:17:5a:d9:91:fa:56:9d:01:93:99:9e:4f:2e:94: 7d:46:78:fa:a8:3d:3a:76:9d:e8:3c:ff:26:7c:8a: 5e:f0:86:8b:bd:dc:de:48:3b:26:c9:ba:57:f2:f6: ca:ae:bd:0a:20:91:92:8f:29:55:21:56:77:ab:36: 2d:30:90:bc:b8:60:22:e8:2c:d5:87:76:49:84:8d: 0c:a4:7f:b4:b2:b9:11:80:d7:7b:22:82:9a:a3:ef: 5a:0e:41:fa:33:25:6d:c8:f0:0a:0e:56:8a:f3:92: 4e:56:f2:b4:07:68:f4:e8:3d:7b:86:54:94:78:f0: 35:7c:a0:e2:91:b4:41:36:d8:19:34:8a:70:62:26: 89:a6:81:09:c5:30:4a:64:a1:42:5e:e8:4e:f2:54: 67:3f:f6:00:51:90:03:fe:2a:a2:77:38:79:13:83: 54:1a:84:a2:38:91:2c:73:e8:d3:42:9c:6e:81:35: 4c:f3:10:b5:02:d6:da:b4:56:d8:df:bf:fb:37:91: c5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:71:73:88:6F:4C:43:A1:5E:CD:D4:32:A2:0B:FC:EB:FC:E3:05:8F X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:4b:7f:10:e1:20:b3:db:20:6f:e1:a7:2f:0c:9d:d6:3a:03: d6:04:41:19:44:a5:5c:73:e0:21:06:b0:30:48:b0:37:b0:f2: 12:ea:57:74:69:57:05:02:49:21:bc:44:4e:b2:71:82:68:0f: b8:fd:97:96:76:b8:1d:15:69:a4:6b:5c:f5:76:8f:6b:e7:9c: f5:f7:3d:22:42:e1:58:aa:dd:b7:0f:1c:b2:fb:b3:54:57:58: ca:5a:f4:d6:14:b4:d4:65:e3:34:5b:08:0a:8c:be:5c:73:74: b3:e4:7b:26:06:52:de:37:27:bd:0a:33:96:5d:f4:16:c0:b2: 13:74:89:87:c7:ec:2d:3e:48:64:de:58:15:98:e2:f3:a3:35: 21:eb:4b:26:62:51:a6:2b:f6:e7:69:37:d6:4d:31:46:b8:3c: 92:c8:b5:06:c3:3a:1b:8c:48:31:1f:f7:58:50:79:25:11:68: c3:fe:2d:55:5d:cc:39:e1:3e:60:f0:d5:ff:8f:14:c1:11:7d: 5c:f2:cb:51:bb:75:39:eb:d0:12:5c:5d:2d:63:f2:eb:05:54: 6d:cd:69:c2:d4:c8:c7:21:53:23:3d:86:45:70:84:8f:6a:8c: b9:b8:c9:9a:56:f7:b5:2b:df:6c:a7:c5:0d:33:73:e2:de:34: 10:25:fd:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzJDQzExMC8GA1UEBRMoREI3OEQ5RjkzNThFNTY3RDMwNkVFM0JEMUVBQzc0OEU5 NjA2QkY4RjAeFw0yNTA1MTIxNzQ2MzZaFw0yNTA1MTkxNzQ2MzZaMBgxFjAUBgNV BAMTDTY4MjIzM2ZjLWEwMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/BIL53LIls5AW+wtgFdkXGe7N0ahYfqGvyxku7THFxVTKgoqli4TX+QcyVQgp FoKOqihTDyufcXL/KAoXWtmR+ladAZOZnk8ulH1GePqoPTp2neg8/yZ8il7whou9 3N5IOybJulfy9squvQogkZKPKVUhVnerNi0wkLy4YCLoLNWHdkmEjQykf7SyuRGA 13sigpqj71oOQfozJW3I8AoOVorzkk5W8rQHaPToPXuGVJR48DV8oOKRtEE22Bk0 inBiJommgQnFMEpkoUJe6E7yVGc/9gBRkAP+KqJ3OHkTg1QahKI4kSxz6NNCnG6B NUzzELUC1tq0Vtjfv/s3kcW1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUunFziG9M Q6FezdQyogv86/zjBY8wHwYDVR0jBBgwFoAU23jZ+TWOVn0wbuO9Hqx0jpYGv48w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MkNDLzQzMzBBQzlDQjM2 RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjNqWi1UV09WbjB3YnVPOUhxeDBqcFlHdjQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 MkNDLzQzMzBBQzlDQjM2RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4w d2J1TzlIcXgwanBZR3Y0OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAARLfxDhILPbIG/hpy8MndY6A9YEQRlEpVxz4CEGsDBIsDew8hLqV3Rp VwUCSSG8RE6ycYJoD7j9l5Z2uB0VaaRrXPV2j2vnnPX3PSJC4Viq3bcPHLL7s1RX WMpa9NYUtNRl4zRbCAqMvlxzdLPkeyYGUt43J70KM5Zd9BbAshN0iYfH7C0+SGTe WBWY4vOjNSHrSyZiUaYr9udpN9ZNMUa4PJLItQbDOhuMSDEf91hQeSURaMP+LVVd zDnhPmDw1f+PFMERfVzyy1G7dTnr0BJcXS1j8usFVG3NacLUyMchUyM9hkVwhI9q jLm4yZpW97Ur32ynxQ0zc+LeNBAl/bM= -----END CERTIFICATE-----Generated at Wed May 14 17:02:43 2025 by rpki-client