$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: izm5RXbJdimfwzqxaPHINK7dtehDpWgBe5rTlD7m+MU= Subject key identifier: 42:DA:34:75:8E:22:E2:B9:D8:47:B1:67:50:B1:D8:48:1C:50:E4:14 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 038F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 038B Signing time: Sat 29 Mar 2025 01:03:50 +0000 Manifest this update: Sat 29 Mar 2025 01:03:50 +0000 Manifest next update: Sat 05 Apr 2025 01:03:50 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: S90DK5ZmGls9tSrVixEEAygCsNC7s9C6yBLh0+puRQY=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 911 (0x38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE Validity Not Before: Mar 29 01:03:50 2025 GMT Not After : Apr 5 01:03:50 2025 GMT Subject: CN=67e746f6-0bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ef:07:12:03:c1:65:1f:00:42:a1:fc:a2:19: fd:cd:5c:bc:6c:ca:cb:41:7d:62:c8:19:7c:96:ba: f1:f5:82:7f:8f:e8:18:cb:47:5b:c5:fe:d3:ea:75: 62:36:a9:e6:e3:04:6c:60:84:e3:54:a1:c8:9f:cd: 03:28:59:9b:9e:7f:49:25:98:bc:73:b5:e8:5e:a1: 5b:da:33:0e:93:4b:c0:4b:58:49:29:dc:b9:98:83: 91:2b:30:d1:e6:b5:a1:70:38:89:b0:72:79:23:c9: 10:1c:2d:9c:09:1b:de:f5:36:44:fa:61:2f:5a:66: 6c:f2:13:2c:4b:ad:01:b6:c8:d6:f1:4c:6f:ec:4c: bb:f9:6e:e2:f2:d6:52:e6:2e:c1:80:09:9f:9a:e6: 20:21:81:a9:78:f3:5d:83:fd:2d:a4:e7:d4:6b:10: 22:84:f5:e5:d8:70:0e:89:5d:63:81:da:ff:12:2f: 40:e0:e5:42:3f:c7:32:3c:73:07:86:44:69:e6:28: 8f:0a:c0:b9:fa:19:97:40:18:14:e0:3c:9d:fe:78: 5c:79:f5:66:5e:c1:fc:a0:27:05:75:30:be:37:4b: 11:82:cc:3e:d2:09:fa:1c:d1:b6:83:75:38:6f:da: ad:a8:23:10:ce:7c:c2:2a:f7:5e:4e:71:0c:5c:05: f2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DA:34:75:8E:22:E2:B9:D8:47:B1:67:50:B1:D8:48:1C:50:E4:14 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:93:6a:33:ac:15:83:d9:74:52:ba:f0:fc:48:98:13:98:aa: bc:e2:80:4f:70:72:31:ee:af:b1:97:39:7b:1a:34:4c:d6:83: bd:9b:04:75:a5:df:b0:3f:c6:8b:ca:10:07:71:7e:fe:f8:6f: 56:4a:6f:09:58:2c:9d:2d:68:e2:ff:d9:84:c5:fd:37:8a:e1: 5e:76:41:50:83:b2:b9:03:4c:84:24:36:62:4f:be:bd:86:6e: d3:58:19:8e:00:70:0e:08:40:d4:70:0c:43:48:ad:59:a2:7b: f2:54:79:30:8b:59:98:a3:6a:9d:57:99:68:06:ef:8d:0c:24: 9b:16:b7:67:f5:90:ee:ee:b6:3d:90:44:76:f1:01:de:97:71: fa:ab:b6:65:5b:4e:ea:f3:66:23:ca:7c:4e:2c:4b:f9:bd:ab: e5:ec:27:b3:62:57:8f:67:c3:eb:0f:dd:e9:e7:76:68:62:9b: 3e:8e:1a:65:41:95:9b:f4:e4:d3:26:98:6a:e4:b3:a4:1c:6d: ae:2b:67:9a:2a:50:1b:bb:dd:81:bf:d0:5d:a1:84:e1:89:15: 6d:57:f4:cf:1b:57:cb:e0:44:88:15:ca:ec:47:81:43:87:e0: 25:2b:6a:42:ef:33:b0:5b:ec:56:ff:d6:18:55:aa:59:77:39: e9:30:a6:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUwMzI5MDEwMzUwWhcNMjUwNDA1MDEwMzUwWjAYMRYwFAYD VQQDEw02N2U3NDZmNi0wYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5e8HEgPBZR8AQqH8ohn9zVy8bMrLQX1iyBl8lrrx9YJ/j+gYy0dbxf7T6nVi Nqnm4wRsYITjVKHIn80DKFmbnn9JJZi8c7XoXqFb2jMOk0vAS1hJKdy5mIORKzDR 5rWhcDiJsHJ5I8kQHC2cCRve9TZE+mEvWmZs8hMsS60BtsjW8Uxv7Ey7+W7i8tZS 5i7BgAmfmuYgIYGpePNdg/0tpOfUaxAihPXl2HAOiV1jgdr/Ei9A4OVCP8cyPHMH hkRp5iiPCsC5+hmXQBgU4Dyd/nhcefVmXsH8oCcFdTC+N0sRgsw+0gn6HNG2g3U4 b9qtqCMQznzCKvdeTnEMXAXyQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELaNHWO IuK52EexZ1Cx2EgcUOQUMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDak2ozrBWD2XRSuvD8SJgTmKq84oBPcHIx7q+xlzl7GjRM1oO9mwR1 pd+wP8aLyhAHcX7++G9WSm8JWCydLWji/9mExf03iuFedkFQg7K5A0yEJDZiT769 hm7TWBmOAHAOCEDUcAxDSK1ZonvyVHkwi1mYo2qdV5loBu+NDCSbFrdn9ZDu7rY9 kER28QHel3H6q7ZlW07q82YjynxOLEv5vavl7CezYlePZ8PrD93p53ZoYps+jhpl QZWb9OTTJphq5LOkHG2uK2eaKlAbu92Bv9BdoYThiRVtV/TPG1fL4ESIFcrsR4FD h+AlK2pC7zOwW+xW/9YYVapZdznpMKaU -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:56 2025 by rpki-client