$ rpki-client -vvf rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft File: xq-SXz6kP06O56MUIYIWk7Gt9qE.mft (raw, json) Hash identifier: tl8BZBp82uh8TEQ7G8c6/dOjAznP+rqcfKq73Jk/BkQ= Subject key identifier: 37:C2:09:3B:E6:60:6B:37:42:BD:66:0E:64:17:34:F0:76:50:E8:F1 Authority key identifier: C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 Certificate issuer: /CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Certificate serial: 065C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft Manifest number: 0654 Signing time: Fri 28 Mar 2025 22:42:00 +0000 Manifest this update: Fri 28 Mar 2025 22:41:59 +0000 Manifest next update: Fri 04 Apr 2025 22:41:59 +0000 Files and hashes: 1: xq-SXz6kP06O56MUIYIWk7Gt9qE.crl (hash: OvlC7aJ5jla8ujmqz8oNmpQ2A52X+BVYD+tJWJ1Cir0=) 2: 1A20AAF27BD311EBA6617987C4F9AE02.roa (hash: 6eHddETss++N0efl0wYCBKU3NII6SFsuAEjJL0+ySL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E807 Validity Not Before: Mar 28 22:41:59 2025 GMT Not After : Apr 4 22:41:59 2025 GMT Subject: CN=67e725b8-88b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:39:be:a2:95:90:88:6d:c4:87:8c:d2:7f: 6b:9a:a3:6d:12:be:e6:8b:0d:f5:4f:cd:97:78:42: a0:e2:52:7c:e0:3e:a7:aa:42:b2:09:81:25:a4:11: 33:59:2c:ec:9c:0b:07:c3:ac:cb:e2:db:56:42:a7: b2:d6:b9:2a:f9:bb:9b:8e:b7:20:95:ca:14:da:cb: f4:ef:49:26:73:fe:33:67:3e:c6:68:b4:4c:d4:0c: f1:03:8a:14:ec:46:5f:91:95:d3:c2:ef:1c:8b:51: 63:be:65:8a:68:0a:e0:9c:4d:05:59:22:c8:fa:0d: 62:fc:fe:9c:f1:bb:64:1b:54:1d:dc:6c:f0:8f:66: 8e:2c:3e:1d:81:eb:bc:fb:9b:be:14:06:f7:a5:81: a9:7f:57:97:ae:4e:85:c6:96:98:d9:87:2f:fe:aa: d0:2b:7b:04:91:c9:6a:ee:7e:4f:5c:04:83:24:3c: ff:28:5e:8a:97:94:06:3a:cc:fe:b6:1e:df:db:a3: a1:77:44:59:f6:ff:e3:0f:48:5e:8e:6d:e2:eb:6a: 58:4f:90:9e:bb:34:92:8f:5e:d0:a0:af:7c:46:7f: 3c:f6:5b:3c:1f:69:78:7c:f4:06:22:9b:7a:fd:d2: 1b:65:79:45:e3:bd:30:c3:82:76:59:60:55:f9:eb: 7c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C2:09:3B:E6:60:6B:37:42:BD:66:0E:64:17:34:F0:76:50:E8:F1 X509v3 Authority Key Identifier: keyid:C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:c0:78:31:b5:69:f4:37:64:b6:1a:67:9d:07:34:69:66:4a: 04:97:72:27:2b:44:0d:53:4d:65:37:3a:6f:df:b2:a1:f3:e7: 9f:df:1c:01:2f:fa:6c:af:7b:5d:c8:9e:52:de:d5:52:ba:43: 10:4d:72:3a:77:52:3a:4d:c0:8d:54:2b:f0:58:d8:d0:15:b2: 17:78:56:35:f6:d5:df:24:38:e8:2b:32:f0:e6:15:6c:18:c2: 0e:4d:ba:5e:2d:29:1c:72:e4:4b:74:c2:7c:50:4c:bf:99:07: 9f:14:c3:58:79:9a:be:1c:c4:63:e8:ff:f2:72:1a:6b:c7:6a: b6:56:e1:61:3f:32:8a:e9:fb:ec:75:79:3a:d1:3d:46:56:59: 23:6a:07:57:2e:57:4e:78:a2:a2:79:e6:72:07:8e:36:f2:54: a9:61:c2:2f:b2:70:ba:fd:fe:6b:a0:24:d9:2e:82:cb:e4:eb: 10:77:23:96:47:67:44:0b:26:7b:55:2f:6d:8b:8a:91:d7:bf: e8:50:f3:63:1f:4f:e7:f6:bb:74:33:ee:ac:5b:78:59:fa:9e: a2:0f:f7:43:6b:79:14:74:93:4c:7c:d4:a7:67:3a:7a:5e:ce: 31:fe:03:b2:d1:e5:76:af:11:e4:81:9c:51:9f:12:12:aa:82: c0:2e:69:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU4MDcxMTAvBgNVBAUTKEM2QUY5MjVGM0VBNDNGNEU4RUU3QTMxNDIxODIxNjkz QjFBREY2QTEwHhcNMjUwMzI4MjI0MTU5WhcNMjUwNDA0MjI0MTU5WjAYMRYwFAYD VQQDEw02N2U3MjViOC04OGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNc5vqKVkIhtxIeM0n9rmqNtEr7miw31T82XeEKg4lJ84D6nqkKyCYElpBEz WSzsnAsHw6zL4ttWQqey1rkq+bubjrcglcoU2sv070kmc/4zZz7GaLRM1AzxA4oU 7EZfkZXTwu8ci1FjvmWKaArgnE0FWSLI+g1i/P6c8btkG1Qd3Gzwj2aOLD4dgeu8 +5u+FAb3pYGpf1eXrk6FxpaY2Ycv/qrQK3sEkclq7n5PXASDJDz/KF6Kl5QGOsz+ th7f26Ohd0RZ9v/jD0hejm3i62pYT5CeuzSSj17QoK98Rn889ls8H2l4fPQGIpt6 /dIbZXlF470ww4J2WWBV+et82QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfCCTvm YGs3Qr1mDmQXNPB2UOjxMB8GA1UdIwQYMBaAFMavkl8+pD9OjuejFCGCFpOxrfah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTgwNy8yNjk2RjZDNjdC MzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1AwNk81Nk1VSVlJV2s3R3Q5 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxLVNYejZrUDA2TzU2TVVJWUlXazdHdDlxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTgwNy8yNjk2RjZDNjdCMzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1Aw Nk81Nk1VSVlJV2s3R3Q5cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACwHgxtWn0N2S2GmedBzRpZkoEl3InK0QNU01lNzpv37Kh8+ef3xwB L/psr3tdyJ5S3tVSukMQTXI6d1I6TcCNVCvwWNjQFbIXeFY19tXfJDjoKzLw5hVs GMIOTbpeLSkccuRLdMJ8UEy/mQefFMNYeZq+HMRj6P/ychprx2q2VuFhPzKK6fvs dXk60T1GVlkjagdXLldOeKKieeZyB4428lSpYcIvsnC6/f5roCTZLoLL5OsQdyOW R2dECyZ7VS9ti4qR17/oUPNjH0/n9rt0M+6sW3hZ+p6iD/dDa3kUdJNMfNSnZzp6 Xs4x/gOy0eV2rxHkgZxRnxISqoLALmnO -----END CERTIFICATE-----Generated at Fri Apr 4 18:45:34 2025 by rpki-client