$ rpki-client -vvf rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft File: XnPt2W_yeohfYTVup3sfVDXIT8w.mft (raw, json) Hash identifier: c95IoEAAzvJ/mJUONtjrW5r5fmTHDxgFkr/p9BV6XJM= Subject key identifier: A1:77:5F:6E:7B:B6:BE:B4:3D:4D:96:65:A1:CA:57:DE:2E:16:D6:BD Authority key identifier: 5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC Certificate issuer: /CN=A912759E/serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft Manifest number: 025B Signing time: Sat 29 Mar 2025 02:01:50 +0000 Manifest this update: Sat 29 Mar 2025 02:01:50 +0000 Manifest next update: Sat 05 Apr 2025 02:01:50 +0000 Files and hashes: 1: XnPt2W_yeohfYTVup3sfVDXIT8w.crl (hash: W2DqhHHTZHFQZQomyrLqCkCxTiUQCd7ieN2bpOc5P+g=) 2: 7F0509300CCE11ED97C94316C4F9AE02.roa (hash: 7VxNMjQG1zgfT4tsEQfcFuOpbFyf2w1++cKzRTPQB1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912759E Validity Not Before: Mar 29 02:01:50 2025 GMT Not After : Apr 5 02:01:50 2025 GMT Subject: CN=67e7548e-7459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:37:94:7d:3e:b6:31:59:90:1a:25:ee:f9:8c: d5:fc:bf:84:f0:65:78:7e:3d:e6:c4:6c:17:9b:d4: 17:fe:e9:98:2e:89:6a:c0:0f:cd:3b:8f:49:97:0e: 6a:03:11:bb:9d:c8:f3:d8:4e:ca:7c:c9:d3:11:e7: 7b:3e:98:e8:30:fa:a0:42:ee:91:4d:64:4e:42:20: 3b:c9:fe:51:4e:28:d1:60:59:e6:d1:34:2a:31:eb: 7a:a9:55:79:93:51:c7:e2:fd:47:75:2c:b7:72:bc: a9:ca:fe:a2:bc:4f:3b:50:e1:d9:e1:e9:23:f9:23: 78:5b:53:5f:0a:bd:db:fa:c5:fc:03:8c:0a:8f:4f: 8c:4d:5b:90:c4:3d:8f:53:f9:8a:23:5b:96:e4:e1: 9a:9f:68:18:a3:d8:78:b0:63:52:78:70:8e:eb:75: c6:9b:66:f6:03:2c:64:be:6b:2e:83:24:ef:08:22: 7b:5a:4c:c4:88:22:16:8b:66:0e:53:21:a9:3d:52: 62:fc:43:ce:16:8c:3b:89:ee:29:57:ef:54:c8:a0: 00:7c:d1:2f:af:a6:56:71:0e:cf:56:43:95:7b:b0: 58:9b:37:87:a6:2d:9f:1b:4b:9c:ea:f0:da:f2:22: 82:50:f3:4a:03:bb:22:a4:38:8f:e0:a4:31:59:ad: 1b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:77:5F:6E:7B:B6:BE:B4:3D:4D:96:65:A1:CA:57:DE:2E:16:D6:BD X509v3 Authority Key Identifier: keyid:5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:5a:70:9f:51:6a:ef:44:bb:98:1d:06:80:21:7f:27:cd:af: 66:38:af:d5:a5:2b:5d:a4:86:b6:9b:db:04:82:5f:d3:ed:b9: c6:bf:67:47:d0:d2:e3:2c:38:b9:98:e0:72:f1:f4:fa:39:49: 5f:50:35:b5:97:73:17:7b:64:15:a4:af:0d:67:66:49:49:3d: bd:c6:8e:c1:f5:83:36:52:26:c2:85:c2:db:16:79:5c:8f:a4: 1f:59:48:af:c7:a6:da:04:6c:37:fc:18:0b:75:39:10:28:40: ea:eb:a1:7d:50:b5:28:c2:d1:59:3e:9c:d2:64:d6:99:67:a1: 00:27:59:b9:4c:70:9d:b5:5e:70:2c:bb:c4:3d:f4:33:7c:2d: 53:f6:93:76:56:22:9a:24:c9:05:48:1d:f1:d4:da:74:50:a7: 97:45:f5:ff:7b:d0:c1:01:2b:05:a6:6e:32:57:bd:71:21:15: 98:46:99:37:5d:17:06:6a:16:84:fc:f8:d9:94:f2:7e:ca:b9: 16:02:18:ac:9a:93:93:7b:a7:bd:ac:b7:5c:4c:46:e8:50:4e: f2:93:0e:42:7f:d7:50:c5:fc:3f:67:04:4b:c4:58:39:fd:37: 2f:ca:6a:5e:c6:4e:8e:1e:50:cf:99:4f:a8:1a:76:82:ae:41: 02:41:b3:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1OUUxMTAvBgNVBAUTKDVFNzNFREQ5NkZGMjdBODg1RjYxMzU2RUE3N0IxRjU0 MzVDODRGQ0MwHhcNMjUwMzI5MDIwMTUwWhcNMjUwNDA1MDIwMTUwWjAYMRYwFAYD VQQDEw02N2U3NTQ4ZS03NDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DeUfT62MVmQGiXu+YzV/L+E8GV4fj3mxGwXm9QX/umYLolqwA/NO49Jlw5q AxG7ncjz2E7KfMnTEed7PpjoMPqgQu6RTWROQiA7yf5RTijRYFnm0TQqMet6qVV5 k1HH4v1HdSy3crypyv6ivE87UOHZ4ekj+SN4W1NfCr3b+sX8A4wKj0+MTVuQxD2P U/mKI1uW5OGan2gYo9h4sGNSeHCO63XGm2b2AyxkvmsugyTvCCJ7WkzEiCIWi2YO UyGpPVJi/EPOFow7ie4pV+9UyKAAfNEvr6ZWcQ7PVkOVe7BYmzeHpi2fG0uc6vDa 8iKCUPNKA7sipDiP4KQxWa0bvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKF3X257 tr60PU2WZaHKV94uFta9MB8GA1UdIwQYMBaAFF5z7dlv8nqIX2E1bqd7H1Q1yE/M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzU5RS9DQjBFQTc3NjBD Q0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVvaGZZVFZ1cDNzZlZEWElU OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huUHQyV195ZW9oZllUVnVwM3NmVkRYSVQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzU5RS9DQjBFQTc3NjBDQ0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVv aGZZVFZ1cDNzZlZEWElUOHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLWnCfUWrvRLuYHQaAIX8nza9mOK/VpStdpIa2m9sEgl/T7bnGv2dH 0NLjLDi5mOBy8fT6OUlfUDW1l3MXe2QVpK8NZ2ZJST29xo7B9YM2UibChcLbFnlc j6QfWUivx6baBGw3/BgLdTkQKEDq66F9ULUowtFZPpzSZNaZZ6EAJ1m5THCdtV5w LLvEPfQzfC1T9pN2ViKaJMkFSB3x1Np0UKeXRfX/e9DBASsFpm4yV71xIRWYRpk3 XRcGahaE/PjZlPJ+yrkWAhismpOTe6e9rLdcTEboUE7ykw5Cf9dQxfw/ZwRLxFg5 /Tcvympexk6OHlDPmU+oGnaCrkECQbOQ -----END CERTIFICATE-----Generated at Fri Apr 4 18:44:12 2025 by rpki-client