$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft File: ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft (raw, json) Hash identifier: kMP9x6gg/7/P6sBRURNguHxE0LpdpWfkqVz9JC3JLXM= Subject key identifier: BF:DA:02:9B:A1:EF:4B:44:41:E6:D1:87:9B:50:74:8E:C5:4A:6A:DD Authority key identifier: 13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 Certificate issuer: /CN=A91F89D9/serialNumber=131570B4535F840302530DD1317442316309C177 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft Manifest number: 7B Signing time: Mon 05 May 2025 05:33:40 +0000 Manifest this update: Mon 05 May 2025 05:33:40 +0000 Manifest next update: Mon 12 May 2025 05:33:40 +0000 Files and hashes: 1: ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl (hash: iOR9/Aq7151AEalIIUqFE8m0RhPF2ow+0Oo/4wIHSjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=131570B4535F840302530DD1317442316309C177 Validity Not Before: May 5 05:33:40 2025 GMT Not After : May 12 05:33:40 2025 GMT Subject: CN=68184db4-ed48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:92:a3:b4:ef:69:37:25:4b:56:0d:b8:60:22: 44:2c:09:58:12:53:fd:fa:bc:11:e2:d7:a8:f0:70: 6f:d5:ce:cf:71:8d:dd:9f:00:6a:9b:97:4f:bd:5d: ee:26:87:22:8a:8b:b2:ea:40:ba:b3:10:da:58:eb: 9d:b5:bb:ad:67:d0:b9:32:85:52:f0:d0:37:ae:d8: 7b:1c:f8:ae:1a:62:61:34:37:8f:ad:4e:86:ef:13: c6:78:3b:d7:9a:aa:82:6d:ce:6e:e1:06:b3:92:e8: 69:9f:6f:1a:8b:e8:38:5e:48:34:02:58:c6:14:65: c9:c2:3a:da:73:23:de:f0:12:d9:02:91:f0:79:05: 1e:96:61:f6:e2:3c:97:33:07:64:a7:5b:43:38:8b: c8:53:5f:1c:67:22:18:6d:f3:09:68:88:b1:43:1b: 67:a8:e8:ba:19:24:22:02:b7:5b:2a:4e:35:9e:1c: 0b:e6:e9:2f:22:62:45:e0:d8:fa:36:fa:22:b5:a9: 9e:59:25:d8:32:4e:39:16:b8:ab:9f:f3:3c:9d:a0: e6:60:88:87:65:d8:3f:af:89:bb:bd:4c:c9:ef:51: 6b:6f:d1:63:ec:92:60:d3:b4:a3:0f:f8:74:a3:04: 26:63:ff:64:42:a9:ec:cb:99:3b:98:6d:dd:6b:10: 29:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DA:02:9B:A1:EF:4B:44:41:E6:D1:87:9B:50:74:8E:C5:4A:6A:DD X509v3 Authority Key Identifier: keyid:13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ae:b5:13:d4:d2:e4:76:8d:25:4c:e7:61:eb:a3:25:99:48: 2d:99:64:00:77:71:bb:f4:fa:1e:c4:01:0a:c8:37:82:c5:ea: 3d:f3:91:f6:9b:de:7f:5c:ff:f6:41:f1:4a:e2:e9:fd:1c:04: e1:9c:8c:d2:7e:2c:f1:c6:df:64:45:83:09:d3:ca:7a:3f:1b: bf:d7:87:26:99:11:94:bc:fe:4e:c0:cf:d2:33:0a:5e:39:fe: b7:d2:cf:e6:84:4d:64:e9:ee:a5:97:14:b4:81:ae:bf:1c:53: 3a:bf:2a:4f:b0:31:a8:b4:65:a0:e7:1d:92:6b:0a:0a:4a:9b: 67:bc:b0:18:f2:ca:4b:4a:50:91:37:6b:36:ec:20:cc:98:e9: 54:ac:c7:5b:c4:9e:6e:06:c8:a4:b7:72:92:23:8f:3f:b2:22: 52:69:06:95:ff:8d:ce:8f:bb:81:df:f3:52:fe:5e:8b:bd:1a: c7:20:34:1f:7c:bf:17:ae:8d:cb:63:e4:c9:af:36:2c:bf:50: 08:8c:a7:af:d8:93:85:70:f6:90:a8:29:51:56:0f:42:d6:1b: 9a:80:f3:08:90:7f:77:ec:ce:98:43:56:6a:b7:88:d2:a0:83: d2:57:dd:a3:39:60:cd:d6:a9:1a:6c:4b:63:82:1f:d9:88:3f: 3d:12:46:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODlEOTExMC8GA1UEBRMoMTMxNTcwQjQ1MzVGODQwMzAyNTMwREQxMzE3NDQyMzE2 MzA5QzE3NzAeFw0yNTA1MDUwNTMzNDBaFw0yNTA1MTIwNTMzNDBaMBgxFjAUBgNV BAMTDTY4MTg0ZGI0LWVkNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrkqO072k3JUtWDbhgIkQsCVgSU/36vBHi16jwcG/Vzs9xjd2fAGqbl0+9Xe4m hyKKi7LqQLqzENpY6521u61n0LkyhVLw0Deu2Hsc+K4aYmE0N4+tTobvE8Z4O9ea qoJtzm7hBrOS6GmfbxqL6DheSDQCWMYUZcnCOtpzI97wEtkCkfB5BR6WYfbiPJcz B2SnW0M4i8hTXxxnIhht8wloiLFDG2eo6LoZJCICt1sqTjWeHAvm6S8iYkXg2Po2 +iK1qZ5ZJdgyTjkWuKuf8zydoOZgiIdl2D+vibu9TMnvUWtv0WPskmDTtKMP+HSj BCZj/2RCqezLmTuYbd1rECnXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv9oCm6Hv S0RB5tGHm1B0jsVKat0wHwYDVR0jBBgwFoAUExVwtFNfhAMCUw3RMXRCMWMJwXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OUQ5L0Y1NjAzN0E2NkY1 QzExRUY4MzVBN0I2NkM0RjlBRTAyL0V4Vnd0Rk5maEFNQ1V3M1JNWFJDTVdNSndY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRXhWd3RGTmZoQU1DVXczUk1YUkNNV01Kd1hjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OUQ5L0Y1NjAzN0E2NkY1QzExRUY4MzVBN0I2NkM0RjlBRTAyL0V4Vnd0Rk5maEFN Q1V3M1JNWFJDTVdNSndYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD6utRPU0uR2jSVM52HroyWZSC2ZZAB3cbv0+h7EAQrIN4LF6j3zkfab 3n9c//ZB8Uri6f0cBOGcjNJ+LPHG32RFgwnTyno/G7/XhyaZEZS8/k7Az9IzCl45 /rfSz+aETWTp7qWXFLSBrr8cUzq/Kk+wMai0ZaDnHZJrCgpKm2e8sBjyyktKUJE3 azbsIMyY6VSsx1vEnm4GyKS3cpIjjz+yIlJpBpX/jc6Pu4Hf81L+Xou9GscgNB98 vxeujctj5MmvNiy/UAiMp6/Yk4Vw9pCoKVFWD0LWG5qA8wiQf3fszphDVmq3iNKg g9JX3aM5YM3WqRpsS2OCH9mIPz0SRjc= -----END CERTIFICATE-----Generated at Mon May 5 22:54:22 2025 by rpki-client