$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft File: 1xhrKGW4YA1mKCKv65AVcAbg9BA.mft (raw, json) Hash identifier: UV2LP5g1zcEqizjOvWzv2b/Jh+2rjnMefHUsCxc3RpA= Subject key identifier: 21:31:24:1B:74:BD:54:04:C1:19:15:FF:56:03:90:72:6A:B2:58:4C Authority key identifier: D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 Certificate issuer: /CN=A91F428C/serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Certificate serial: 347F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft Manifest number: 347B Signing time: Sun 04 May 2025 15:02:12 +0000 Manifest this update: Sun 04 May 2025 15:02:11 +0000 Manifest next update: Sun 11 May 2025 15:02:11 +0000 Files and hashes: 1: 1xhrKGW4YA1mKCKv65AVcAbg9BA.crl (hash: UmhgQcMCKC9fTNcykDJO31IY/uqEnoIekNW5ybG1XiA=) 2: B8201598BED111EC93B74C4FC4F9AE02.roa (hash: bZ78zYHCnstuVWjSxrFde4CQb6MOUeIvruPUliQa2hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 15:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13439 (0x347f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Validity Not Before: May 4 15:02:11 2025 GMT Not After : May 11 15:02:11 2025 GMT Subject: CN=68178173-3a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:08:67:b8:21:fb:fe:ee:63:b3:61:24:c6:27: 73:17:ed:5c:81:6f:4a:e6:25:cd:b0:c9:8c:39:52: ad:1b:65:47:dd:73:41:66:f8:bf:32:42:bb:37:f7: 4e:33:84:b2:83:36:9c:a7:30:ff:48:fe:6e:81:9c: a5:0f:c7:df:f7:84:8e:60:3b:88:bb:e4:e6:b9:d6: fd:e4:de:a5:be:6e:23:12:ea:5f:50:27:0c:d6:fd: 0a:89:66:1a:7b:07:80:d9:74:0e:a9:3b:49:e8:be: 01:4d:07:0d:10:28:19:9f:6e:72:44:52:5e:59:ab: 9f:64:a6:ba:d4:be:1e:8e:e0:f6:54:59:69:5e:13: 01:87:ab:04:89:7c:23:41:84:b0:dc:5f:54:be:c3: 90:eb:0f:82:d0:df:33:cf:c3:27:3e:1e:dc:9a:7b: b3:1d:52:3c:e0:4c:aa:e6:f5:6c:8d:84:bd:9c:19: 90:8a:3b:28:49:08:68:0b:29:27:71:c6:6c:de:0e: 5c:42:91:85:6f:f3:6c:d3:11:bf:3a:d9:a2:76:c7: cd:2c:41:94:de:1e:14:42:da:d7:59:7f:48:6a:98: 33:2b:89:50:e9:4d:79:86:6f:40:89:f9:93:d0:8d: f3:93:3d:28:90:94:5b:fc:fd:13:c8:c9:b9:27:ee: 78:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:31:24:1B:74:BD:54:04:C1:19:15:FF:56:03:90:72:6A:B2:58:4C X509v3 Authority Key Identifier: keyid:D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4d:24:16:b1:a2:8d:7a:1c:2e:4a:75:9c:30:46:ee:d2:35: 8d:f6:01:58:fe:a6:5a:83:8f:bc:d0:86:52:88:16:31:cf:7b: 16:ef:9f:63:96:b0:6c:34:28:ac:94:d2:18:db:d1:1f:17:80: 47:23:aa:77:45:a0:2a:df:a1:87:8e:44:6f:d1:90:82:95:06: ea:9c:88:11:a3:76:00:6a:6a:e4:0e:3a:72:c9:14:9c:ce:4a: 10:97:39:ef:ad:f6:be:a9:99:2c:82:00:89:77:1a:8e:5a:76: 85:3b:4a:66:24:0f:22:9b:26:6f:75:08:0a:b7:f6:50:e2:0a: 0c:74:75:ca:c3:1f:de:b0:9d:74:07:78:24:bb:4b:c5:9f:a7: 90:7b:16:c3:84:03:9a:c7:96:ce:8c:1f:fe:45:c0:54:83:d0: bc:df:25:ca:6e:1c:db:f5:6d:08:ac:28:c7:f5:f3:fa:74:51: b9:aa:3e:81:82:9a:16:9d:c5:c5:f2:11:93:d0:6d:0a:60:95: c1:b6:96:22:68:3b:72:42:4a:6c:21:04:78:9d:d3:e1:9f:b8: 15:86:e9:aa:81:c2:45:81:94:54:b2:28:e0:d1:eb:89:d6:6c: 80:f0:15:94:79:0c:ef:6c:ac:a9:7a:2a:e2:8b:5d:28:b1:cf: f2:26:57:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKEQ3MTg2QjI4NjVCODYwMEQ2NjI4MjJBRkVCOTAxNTcw MDZFMEY0MTAwHhcNMjUwNTA0MTUwMjExWhcNMjUwNTExMTUwMjExWjAYMRYwFAYD VQQDEw02ODE3ODE3My0zYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqghnuCH7/u5js2EkxidzF+1cgW9K5iXNsMmMOVKtG2VH3XNBZvi/MkK7N/dO M4SygzacpzD/SP5ugZylD8ff94SOYDuIu+Tmudb95N6lvm4jEupfUCcM1v0KiWYa eweA2XQOqTtJ6L4BTQcNECgZn25yRFJeWaufZKa61L4ejuD2VFlpXhMBh6sEiXwj QYSw3F9UvsOQ6w+C0N8zz8MnPh7cmnuzHVI84Eyq5vVsjYS9nBmQijsoSQhoCykn ccZs3g5cQpGFb/Ns0xG/OtmidsfNLEGU3h4UQtrXWX9IapgzK4lQ6U15hm9AifmT 0I3zkz0okJRb/P0TyMm5J+54fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCExJBt0 vVQEwRkV/1YDkHJqslhMMB8GA1UdIwQYMBaAFNcYayhluGANZigir+uQFXAG4PQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy81MkZDQzY0ODFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlBMW1LQ0t2NjVBVmNBYmc5 QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4aHJLR1c0WUExbUtDS3Y2NUFWY0FiZzlCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy81MkZDQzY0ODFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlB MW1LQ0t2NjVBVmNBYmc5QkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALTSQWsaKNehwuSnWcMEbu0jWN9gFY/qZag4+80IZSiBYxz3sW759j lrBsNCislNIY29EfF4BHI6p3RaAq36GHjkRv0ZCClQbqnIgRo3YAamrkDjpyyRSc zkoQlznvrfa+qZksggCJdxqOWnaFO0pmJA8imyZvdQgKt/ZQ4goMdHXKwx/esJ10 B3gku0vFn6eQexbDhAOax5bOjB/+RcBUg9C83yXKbhzb9W0IrCjH9fP6dFG5qj6B gpoWncXF8hGT0G0KYJXBtpYiaDtyQkpsIQR4ndPhn7gVhumqgcJFgZRUsijg0euJ 1myA8BWUeQzvbKypeirii10osc/yJldD -----END CERTIFICATE-----Generated at Mon May 5 07:29:55 2025 by rpki-client