$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft File: xsPe6PYn19lovt8i_GEJRiUwF4M.mft (raw, json) Hash identifier: 8UqBluGWf33Ba+ZHrWMvQN5bOivnHS4SUVsd7em4Qdo= Subject key identifier: 14:ED:13:F3:66:31:6C:01:88:50:DD:5D:87:7E:F6:6D:60:05:30:CC Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 3469 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft Manifest number: 3469 Signing time: Tue 08 Apr 2025 15:13:56 +0000 Manifest this update: Tue 08 Apr 2025 15:13:55 +0000 Manifest next update: Tue 15 Apr 2025 15:13:55 +0000 Files and hashes: 1: xsPe6PYn19lovt8i_GEJRiUwF4M.crl (hash: Zyz69dj/6EzvpQNCWa0u34N4ct4pcTapKKNoQJl9crw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 15:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13417 (0x3469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258 Validity Not Before: Apr 8 15:13:55 2025 GMT Not After : Apr 15 15:13:55 2025 GMT Subject: CN=67f53d34-33cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ae:5f:23:64:7c:d6:2f:6b:30:dc:17:9d:ec: e9:ff:a2:8d:75:5d:8b:d6:0e:b8:39:1b:3e:ad:46: 9d:b6:a3:21:20:29:f6:b3:e4:2c:5d:9b:c0:b0:9d: 18:d7:56:b5:f1:ae:75:da:60:16:18:a3:a8:e5:bb: b8:72:5e:3b:d8:c0:08:70:be:4e:ce:9c:6a:0e:c6: 65:a8:34:1e:0e:3a:f1:0b:73:67:dc:d3:66:1d:4b: ca:84:aa:78:e5:14:b9:07:4e:85:e8:14:b7:b3:da: 4b:56:31:aa:02:77:1f:b2:a3:92:89:fe:1d:12:08: 4e:ae:85:b0:37:61:2f:45:e8:46:5f:13:c1:1e:1d: 2c:17:2a:f3:78:91:d5:fa:ec:cb:45:96:fb:cc:19: 62:1f:86:d4:56:e9:ac:95:8b:ac:ea:14:c7:9f:88: 51:cc:c9:a9:da:57:da:99:a0:21:02:8d:2f:d9:bf: a4:f4:bd:e0:04:a2:38:cd:5c:41:9f:75:d0:1b:e5: 91:a2:89:40:6f:6e:24:40:12:b8:88:e8:cb:ac:b3: d6:e3:81:18:6c:e6:a4:b9:e2:9a:e4:84:96:61:1b: b9:0f:25:4f:79:18:32:35:12:b6:40:b8:27:a4:04: 6a:aa:b2:25:05:63:c6:e2:55:75:c7:1b:48:18:5a: f9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:ED:13:F3:66:31:6C:01:88:50:DD:5D:87:7E:F6:6D:60:05:30:CC X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:85:60:06:9e:6d:6b:97:d3:91:11:3c:6b:a6:38:7c:b7:d8: 07:80:ac:5c:7a:78:46:ff:e3:86:08:55:91:3e:17:cb:62:3d: 73:cd:86:a5:ee:5e:0d:10:8f:7d:70:92:0e:02:06:1e:65:3e: fc:f6:9e:98:7a:32:b7:5e:da:87:ca:8a:4b:ca:d1:7d:67:d6: 17:d1:bb:96:80:d5:d2:8e:8c:9d:c6:72:73:e2:76:7c:b3:64: d1:c5:54:cc:ff:10:51:21:f6:54:e2:3e:35:73:f9:d3:f9:ce: bc:95:74:02:a5:03:43:c7:77:cb:d7:5b:ed:7e:34:e9:cd:41: d5:a7:04:71:3c:eb:e8:6f:89:b5:72:3b:3b:b5:3b:8a:a5:2a: 8c:06:1a:6b:00:f3:4e:6f:76:e3:18:db:3e:f2:32:bc:0c:b6: 24:07:61:bd:05:ba:bb:5a:42:a7:22:61:7d:d0:63:45:da:b3: eb:5a:83:65:93:93:a9:a0:03:cb:13:5c:6e:e0:1f:d7:e4:d0: cd:38:97:70:bd:f0:f6:44:18:97:da:51:ea:3a:51:c5:3b:36: 2a:ad:40:d6:50:53:7b:52:3d:d7:99:f4:ea:ba:02:34:45:a2: af:29:1c:dd:53:f3:d1:92:78:d4:33:2a:51:38:aa:4d:a2:e6: 1e:28:4f:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjUwNDA4MTUxMzU1WhcNMjUwNDE1MTUxMzU1WjAYMRYwFAYD VQQDEw02N2Y1M2QzNC0zM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmq5fI2R81i9rMNwXnezp/6KNdV2L1g64ORs+rUadtqMhICn2s+QsXZvAsJ0Y 11a18a512mAWGKOo5bu4cl472MAIcL5OzpxqDsZlqDQeDjrxC3Nn3NNmHUvKhKp4 5RS5B06F6BS3s9pLVjGqAncfsqOSif4dEghOroWwN2EvRehGXxPBHh0sFyrzeJHV +uzLRZb7zBliH4bUVumslYus6hTHn4hRzMmp2lfamaAhAo0v2b+k9L3gBKI4zVxB n3XQG+WRoolAb24kQBK4iOjLrLPW44EYbOakueKa5ISWYRu5DyVPeRgyNRK2QLgn pARqqrIlBWPG4lV1xxtIGFr5/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTtE/Nm MWwBiFDdXYd+9m1gBTDMMB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI1OC9CQjJERENFMjFEQTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5 bG92dDhpX0dFSlJpVXdGNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAhWAGnm1rl9ORETxrpjh8t9gHgKxcenhG/+OGCFWRPhfLYj1zzYal 7l4NEI99cJIOAgYeZT789p6YejK3XtqHyopLytF9Z9YX0buWgNXSjoydxnJz4nZ8 s2TRxVTM/xBRIfZU4j41c/nT+c68lXQCpQNDx3fL11vtfjTpzUHVpwRxPOvob4m1 cjs7tTuKpSqMBhprAPNOb3bjGNs+8jK8DLYkB2G9Bbq7WkKnImF90GNF2rPrWoNl k5OpoAPLE1xu4B/X5NDNOJdwvfD2RBiX2lHqOlHFOzYqrUDWUFN7Uj3XmfTqugI0 RaKvKRzdU/PRknjUMypROKpNouYeKE/8 -----END CERTIFICATE-----Generated at Fri Apr 11 00:42:35 2025 by rpki-client