$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: Rwe+EtqVrYw/IIMsNn+/oB9mFIy6Jx0n+FZc80O5Q+Q= Subject key identifier: C7:7F:D7:9E:7E:FF:E9:5A:68:94:C6:8C:01:0E:79:E6:8A:24:48:17 Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 0272 Signing time: Mon 07 Apr 2025 01:17:33 +0000 Manifest this update: Mon 07 Apr 2025 01:17:32 +0000 Manifest next update: Mon 14 Apr 2025 01:17:32 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: lFSnhjB/FS2FpwEPMvK70LTIKcdPE0P5/GXH9TXcHOM=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: EuoLXvibJYzVLshOhBvVYHJccoZUmB/oPyzL/sJ9KVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9 Validity Not Before: Apr 7 01:17:32 2025 GMT Not After : Apr 14 01:17:32 2025 GMT Subject: CN=67f327ad-9f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:80:68:12:76:1f:dc:16:3a:1d:55:b6:d9: 08:d9:76:8f:08:de:c0:b2:f8:1c:7c:c5:57:08:a9: 7b:ed:4d:8d:93:dc:4b:3f:a8:90:59:f2:11:82:fe: 46:b8:b9:14:62:52:7f:e7:17:06:01:98:99:5e:fb: 98:3e:78:19:c6:fb:11:4d:6e:8f:39:42:ba:86:cc: ca:04:b5:e0:0b:6c:9e:ef:0f:29:9b:71:1e:26:7c: 25:bd:cb:d0:f8:b0:91:df:20:7e:cf:df:a7:7a:c1: 8f:70:82:f0:74:fa:dc:dd:a1:4c:36:11:0c:eb:bf: 66:b5:31:e8:08:c0:44:a3:b7:db:8e:f6:4c:80:8e: d7:56:50:50:a9:36:49:ec:6f:1d:7f:fa:4d:d8:7f: 08:8c:83:6f:97:14:63:ef:02:7e:c9:d9:07:3f:d0: 93:78:b3:19:59:9c:14:05:ea:7b:64:e1:e2:e5:7e: d1:a4:be:31:74:0d:87:09:b2:5b:8b:00:1f:e9:4b: 00:40:55:9c:d3:0f:1e:cb:30:39:87:22:30:95:32: 2e:41:ca:ec:46:5d:50:b6:7b:a8:5f:da:cf:6d:41: 5d:69:69:7b:40:2b:67:ed:e5:c2:1f:14:1f:bf:73: ec:3b:06:06:18:42:43:d8:df:2b:ce:3c:21:bf:82: bc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7F:D7:9E:7E:FF:E9:5A:68:94:C6:8C:01:0E:79:E6:8A:24:48:17 X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:6d:c2:a5:1b:a9:04:a5:8b:47:0c:b1:c1:f2:58:b7:85:93: 51:41:99:53:65:ed:47:b6:13:79:5a:04:8a:4c:cf:41:04:b0: a9:4b:6b:ea:93:3b:d0:7e:d4:8f:be:fa:ba:ab:6b:a0:3a:dc: a1:24:f9:76:e4:de:6b:9f:4b:ec:b9:af:9a:3a:c3:03:b3:ab: ab:55:d0:5a:cc:4f:ab:17:b7:f1:02:49:50:87:fa:d1:79:67: cc:85:48:ea:cc:c5:34:42:61:9d:b0:b3:38:47:41:af:8e:81: 9b:97:c8:e9:05:e2:c4:90:6c:5e:1b:61:cf:1e:e6:d5:47:00: de:71:45:50:4a:07:a9:17:40:bb:12:9d:75:e7:8f:c3:b1:38: 34:e1:b1:77:5c:2c:9e:44:15:a6:f8:c8:65:ce:1a:78:aa:0f: c1:bf:b4:fd:6e:70:1a:ea:f9:3b:2f:bd:b7:57:e4:14:c2:a4: 96:9d:70:91:b4:59:ec:bf:fb:16:c0:8d:24:4f:d8:68:96:8d: 1f:91:1d:03:56:71:ae:b8:21:2a:00:88:cb:f9:31:8c:78:4b: 40:ed:e0:e4:87:0d:9c:92:73:f3:c4:ab:37:66:34:ce:8a:36: 3b:a5:c2:99:73:78:e1:4d:6c:d9:00:2c:e6:d0:a6:f2:36:fe: d6:2c:e5:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjUwNDA3MDExNzMyWhcNMjUwNDE0MDExNzMyWjAYMRYwFAYD VQQDEw02N2YzMjdhZC05ZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0o+AaBJ2H9wWOh1VttkI2XaPCN7AsvgcfMVXCKl77U2Nk9xLP6iQWfIRgv5G uLkUYlJ/5xcGAZiZXvuYPngZxvsRTW6POUK6hszKBLXgC2ye7w8pm3EeJnwlvcvQ +LCR3yB+z9+nesGPcILwdPrc3aFMNhEM679mtTHoCMBEo7fbjvZMgI7XVlBQqTZJ 7G8df/pN2H8IjINvlxRj7wJ+ydkHP9CTeLMZWZwUBep7ZOHi5X7RpL4xdA2HCbJb iwAf6UsAQFWc0w8eyzA5hyIwlTIuQcrsRl1QtnuoX9rPbUFdaWl7QCtn7eXCHxQf v3PsOwYGGEJD2N8rzjwhv4K8YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMd/155+ /+laaJTGjAEOeeaKJEgXMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBbcKlG6kEpYtHDLHB8li3hZNRQZlTZe1HthN5WgSKTM9BBLCpS2vq kzvQftSPvvq6q2ugOtyhJPl25N5rn0vsua+aOsMDs6urVdBazE+rF7fxAklQh/rR eWfMhUjqzMU0QmGdsLM4R0GvjoGbl8jpBeLEkGxeG2HPHubVRwDecUVQSgepF0C7 Ep1154/DsTg04bF3XCyeRBWm+Mhlzhp4qg/Bv7T9bnAa6vk7L723V+QUwqSWnXCR tFnsv/sWwI0kT9holo0fkR0DVnGuuCEqAIjL+TGMeEtA7eDkhw2cknPzxKs3ZjTO ijY7pcKZc3jhTWzZACzm0KbyNv7WLOWF -----END CERTIFICATE-----Generated at Mon Apr 7 18:14:32 2025 by rpki-client