$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: EAFm3lo89st6XDKU22/VFv9qHYsWGpjqB7ZBkXxwM88= Subject key identifier: 59:6E:F6:1A:5A:33:12:45:A8:FB:10:63:11:51:C1:AD:DA:48:47:DB Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 046E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0457 Signing time: Thu 03 Apr 2025 00:16:50 +0000 Manifest this update: Thu 03 Apr 2025 00:16:49 +0000 Manifest next update: Thu 10 Apr 2025 00:16:49 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: HhqwMx9kx1iDQ+vbCnV5MKDfpbm23B60SNnYL/IGX48=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF Validity Not Before: Apr 3 00:16:49 2025 GMT Not After : Apr 10 00:16:49 2025 GMT Subject: CN=67edd371-e741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:68:98:72:56:48:09:3b:b0:73:cb:62:04:47: 55:d7:80:82:ac:d4:ce:8b:46:e0:bc:ca:74:67:f2: 7b:95:dc:d0:81:fb:8e:cd:b0:c9:84:55:53:87:67: 92:2a:c6:2f:b1:42:a6:1b:e3:2b:58:4f:12:c1:07: 15:6b:8a:24:1b:a6:1b:e0:1c:92:ad:4d:07:2c:f5: 16:1a:4d:81:f7:a3:dc:d6:4c:61:15:96:a3:39:78: 23:0d:7b:5b:f3:19:89:e3:4a:70:d8:bd:85:97:7e: bb:f7:7a:53:c3:a2:7c:53:ca:8a:ce:98:c9:49:5f: 5b:e9:ab:09:f5:a2:d4:05:06:e3:20:6a:2e:59:fa: 7f:c7:1e:a8:74:44:68:d6:9b:30:2e:48:97:9d:4d: 73:cc:f4:df:44:8e:8d:d3:68:b5:5f:8c:31:58:f3: 16:7f:3e:8c:13:ad:e8:e5:df:14:a0:cc:f6:d0:c9: 6e:ad:0b:13:53:68:f3:64:5d:26:0d:92:57:29:be: 0f:c8:99:b0:c7:48:04:4b:aa:c7:a6:e1:44:f8:cd: c7:e3:9d:29:d2:02:19:f4:81:33:11:22:f0:ef:dd: b6:a8:2e:73:1e:f5:dc:e2:5f:d3:6c:68:f1:06:30: 96:eb:5f:68:a9:8b:26:fc:83:b3:a6:29:58:82:96: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6E:F6:1A:5A:33:12:45:A8:FB:10:63:11:51:C1:AD:DA:48:47:DB X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9e:37:87:0f:33:96:c5:7c:1b:ae:10:4b:b9:ff:be:8e:ef: 8e:d2:7e:0f:65:9c:cd:77:58:a3:d0:d0:ec:66:e1:36:4c:63: 33:33:97:a8:5a:8d:63:8d:f9:ac:eb:32:d0:99:73:b8:3f:15: 2d:04:6d:e2:59:4e:33:37:8c:0a:05:61:97:56:7c:df:e4:53: c3:8c:c6:24:fa:2d:9e:3d:72:e0:9b:0e:33:14:fa:f9:9d:ed: c7:e6:c2:5d:28:42:95:90:df:ee:f0:c9:78:ad:14:3c:89:db: 87:73:68:04:ab:8a:5f:ab:54:16:a9:9f:47:f0:e8:e7:a0:72: 2f:e9:6d:55:7e:a8:6d:31:a0:fb:18:e0:81:cd:12:0e:c9:98: e2:1e:35:be:f9:02:7b:81:77:45:bb:82:75:df:96:0b:5c:76: 0a:b2:e6:5f:ef:3b:1c:9e:2e:dd:e4:03:28:9b:e4:0e:48:de: 22:55:82:50:c8:29:df:cb:cf:46:77:8b:d7:9a:08:b2:1d:ed: ba:93:b3:ad:12:ab:49:3d:e4:b6:f8:77:70:2f:b1:f9:96:78: 35:c7:10:72:bb:a9:b2:de:3e:f7:08:f2:6d:e3:ce:df:c0:18: c1:7e:83:af:f5:32:de:38:64:37:54:c3:53:26:ae:ed:e1:1a: ac:5a:eb:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwNDAzMDAxNjQ5WhcNMjUwNDEwMDAxNjQ5WjAYMRYwFAYD VQQDEw02N2VkZDM3MS1lNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWiYclZICTuwc8tiBEdV14CCrNTOi0bgvMp0Z/J7ldzQgfuOzbDJhFVTh2eS KsYvsUKmG+MrWE8SwQcVa4okG6Yb4BySrU0HLPUWGk2B96Pc1kxhFZajOXgjDXtb 8xmJ40pw2L2Fl36793pTw6J8U8qKzpjJSV9b6asJ9aLUBQbjIGouWfp/xx6odERo 1pswLkiXnU1zzPTfRI6N02i1X4wxWPMWfz6ME63o5d8UoMz20MlurQsTU2jzZF0m DZJXKb4PyJmwx0gES6rHpuFE+M3H450p0gIZ9IEzESLw7922qC5zHvXc4l/TbGjx BjCW619oqYsm/IOzpilYgpbIHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlu9hpa MxJFqPsQYxFRwa3aSEfbMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBInjeHDzOWxXwbrhBLuf++ju+O0n4PZZzNd1ij0NDsZuE2TGMzM5eo Wo1jjfms6zLQmXO4PxUtBG3iWU4zN4wKBWGXVnzf5FPDjMYk+i2ePXLgmw4zFPr5 ne3H5sJdKEKVkN/u8Ml4rRQ8iduHc2gEq4pfq1QWqZ9H8OjnoHIv6W1VfqhtMaD7 GOCBzRIOyZjiHjW++QJ7gXdFu4J135YLXHYKsuZf7zscni7d5AMom+QOSN4iVYJQ yCnfy89Gd4vXmgiyHe26k7OtEqtJPeS2+HdwL7H5lng1xxByu6my3j73CPJt487f wBjBfoOv9TLeOGQ3VMNTJq7t4RqsWusU -----END CERTIFICATE-----Generated at Fri Apr 4 21:51:47 2025 by rpki-client