$ rpki-client -vvf rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft File: 76QjuvW_0YkxbmUDHozq9aP_oUs.mft (raw, json) Hash identifier: xYF+ty4sKgb0TYdUJNHm5bJdNVugikEshWTArOoHXiI= Subject key identifier: 85:AA:C6:66:41:4D:D4:E7:5A:B4:59:26:5C:2C:8D:17:E7:67:61:0A Authority key identifier: EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B Certificate issuer: /CN=A91F264C/serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft Manifest number: 1B Signing time: Thu 15 May 2025 07:16:23 +0000 Manifest this update: Thu 15 May 2025 07:16:22 +0000 Manifest next update: Thu 22 May 2025 07:16:22 +0000 Files and hashes: 1: 76QjuvW_0YkxbmUDHozq9aP_oUs.crl (hash: 7XXGYWhXA+00r9UVQ6A2c1ojiQkKKGC8mRKHlPjlsvE=) 2: DB5AB9A0195A11F081485C3AC4F9AE02.roa (hash: JaGf75N3pf7IqU+djnr2Hy5ZxGye9c0JY8fFDo/3ks0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F264C, serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Validity Not Before: May 15 07:16:22 2025 GMT Not After : May 22 07:16:22 2025 GMT Subject: CN=682594c7-3e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:a1:6b:34:d3:b3:fd:cc:0f:c2:aa:6d:a7:d2: 4f:5a:d9:40:ef:8b:db:81:57:da:eb:83:4f:4a:82: 11:29:4e:8f:3d:d3:81:b3:4f:5e:c1:c2:7e:14:5b: ca:c1:98:af:52:67:ac:2c:d3:03:48:b8:43:8f:0b: 8d:9b:fe:e4:6f:d2:cf:25:d5:de:6a:6c:ed:21:08: a8:dd:bd:a9:1f:7c:41:37:e1:26:cb:18:9f:9e:a7: 58:ce:81:10:8f:34:59:52:df:94:40:72:63:a1:31: 3c:38:6d:08:06:7b:2d:8e:58:1c:54:a0:e4:c4:d6: e1:5d:e8:79:98:8c:e9:24:a5:42:84:07:37:ad:86: 97:de:d7:55:11:16:fd:d7:df:1b:73:2c:2b:ea:27: c1:c2:62:dd:6b:6f:3b:a3:25:a1:29:bf:fa:56:65: b6:50:b3:6e:db:98:ab:11:a1:44:32:ce:27:a5:03: 9a:11:9b:ce:80:14:50:56:92:f5:69:57:8c:dd:a9: 00:4f:cf:80:8c:f8:a5:80:62:7a:17:e4:b7:ac:c2: 32:8d:13:dc:7f:e5:e3:42:1a:67:3d:70:26:25:b2: 02:31:7e:8b:b2:b2:87:d1:c9:ff:52:68:3b:c0:d0: ff:2d:cd:17:0c:bf:95:6f:d3:1b:0d:1c:05:0d:1c: a5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AA:C6:66:41:4D:D4:E7:5A:B4:59:26:5C:2C:8D:17:E7:67:61:0A X509v3 Authority Key Identifier: keyid:EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c7:da:0a:22:b5:9f:7e:69:e1:81:37:73:bd:af:f4:68:d0: 1c:c5:d4:d2:8d:78:89:59:49:63:23:c9:00:8f:b6:e7:80:b0: 25:5e:0b:af:ce:eb:99:46:0e:40:4e:33:2c:14:7f:9f:ce:bc: 96:34:38:e2:73:a8:f3:2f:5d:1c:ef:2e:77:94:46:04:2f:a1: 95:e4:73:bf:22:f1:a4:9f:05:ea:b4:3d:47:a7:a5:5a:7c:0d: d6:16:f9:0c:41:54:fc:d7:ac:7d:db:7e:de:ba:6a:84:cb:4a: 57:14:1b:84:2a:5c:1e:d3:3c:14:cc:e0:a6:9e:bf:e9:7a:7e: 41:2f:be:58:ec:ec:33:6c:70:c7:1f:4e:3b:b1:15:50:1e:b6: df:6f:05:4a:ee:74:36:5f:93:d2:de:f8:0b:7e:99:d5:f2:8a: 10:38:5e:d9:c6:52:4d:ea:0c:7c:7b:74:9c:8f:3b:32:c6:0c: 93:88:ff:a1:0d:47:8a:74:90:c0:8c:45:1c:68:68:da:c2:17: f3:91:e8:b1:82:be:b9:f4:5c:2e:22:c1:71:98:8f:22:dd:07: d9:0a:0a:d8:1b:e5:5b:4e:a4:e2:49:26:38:c2:9b:a3:5d:7d: 77:02:2c:96:e4:61:ec:38:80:df:7a:df:07:8f:d8:24:74:22: c9:c4:9d:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjY0QzExMC8GA1UEBRMoRUZBNDIzQkFGNUJGRDE4OTMxNkU2NTAzMUU4Q0VBRjVB M0ZGQTE0QjAeFw0yNTA1MTUwNzE2MjJaFw0yNTA1MjIwNzE2MjJaMBgxFjAUBgNV BAMTDTY4MjU5NGM3LTNlMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD4oWs007P9zA/Cqm2n0k9a2UDvi9uBV9rrg09KghEpTo8904GzT17Bwn4UW8rB mK9SZ6ws0wNIuEOPC42b/uRv0s8l1d5qbO0hCKjdvakffEE34SbLGJ+ep1jOgRCP NFlS35RAcmOhMTw4bQgGey2OWBxUoOTE1uFd6HmYjOkkpUKEBzethpfe11URFv3X 3xtzLCvqJ8HCYt1rbzujJaEpv/pWZbZQs27bmKsRoUQyzielA5oRm86AFFBWkvVp V4zdqQBPz4CM+KWAYnoX5LeswjKNE9x/5eNCGmc9cCYlsgIxfouysofRyf9SaDvA 0P8tzRcMv5Vv0xsNHAUNHKXBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUharGZkFN 1OdatFkmXCyNF+dnYQowHwYDVR0jBBgwFoAU76QjuvW/0YkxbmUDHozq9aP/oUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyNjRDLzI0MUFDN0JFMEUx ODExRjBCNjlCOEIzOEM0RjlBRTAyLzc2UWp1dldfMFlreGJtVURIb3pxOWFQX29V cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzZRanV2V18wWWt4Ym1VREhvenE5YVBfb1VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy NjRDLzI0MUFDN0JFMEUxODExRjBCNjlCOEIzOEM0RjlBRTAyLzc2UWp1dldfMFlr eGJtVURIb3pxOWFQX29Vcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHfH2goitZ9+aeGBN3O9r/Ro0BzF1NKNeIlZSWMjyQCPtueAsCVeC6/O 65lGDkBOMywUf5/OvJY0OOJzqPMvXRzvLneURgQvoZXkc78i8aSfBeq0PUenpVp8 DdYW+QxBVPzXrH3bft66aoTLSlcUG4QqXB7TPBTM4Kaev+l6fkEvvljs7DNscMcf TjuxFVAett9vBUrudDZfk9Le+At+mdXyihA4XtnGUk3qDHx7dJyPOzLGDJOI/6EN R4p0kMCMRRxoaNrCF/OR6LGCvrn0XC4iwXGYjyLdB9kKCtgb5VtOpOJJJjjCm6Nd fXcCLJbkYew4gN963weP2CR0IsnEnRM= -----END CERTIFICATE-----Generated at Thu May 15 13:19:04 2025 by rpki-client