$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: ThjHVKxjOsE7hozVL30sVHwkqWSBKSjqoDOCOut5ORk= Subject key identifier: 71:B2:01:AA:42:F9:B8:FF:7F:35:D4:22:1F:D1:E3:5A:76:4B:1C:F3 Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 06B6 Signing time: Fri 04 Apr 2025 22:13:35 +0000 Manifest this update: Fri 04 Apr 2025 22:13:35 +0000 Manifest next update: Fri 11 Apr 2025 22:13:35 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: dJtXRw8FFJFXfYm3+vRJ4STCKHws6NwvCm4sllk5HQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E Validity Not Before: Apr 4 22:13:35 2025 GMT Not After : Apr 11 22:13:35 2025 GMT Subject: CN=67f0598f-ced8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:9a:0f:88:e2:ee:4d:58:08:58:7b:1c:3a: 20:2d:72:93:bb:61:37:9c:15:2a:5c:d5:dc:f3:36: c7:85:9e:a5:49:de:12:da:72:14:1d:6f:0e:0a:6a: cd:c6:f0:56:00:e7:d8:7a:11:a3:d7:88:a3:21:13: 1c:04:70:61:18:d1:7c:4a:fd:f0:97:27:5e:2a:9e: ff:bd:93:46:a5:ce:16:73:66:75:c2:66:93:0e:94: 01:1c:95:06:c1:6f:2b:09:ac:f0:4e:a1:29:03:af: 97:d9:ae:b3:71:5a:92:78:35:a8:ac:b8:35:25:a1: 2b:54:18:34:7f:dc:03:19:ad:0f:cd:06:3c:a7:53: 5e:1a:dd:b8:40:5a:d8:08:0c:0c:49:15:5d:12:7f: 4f:18:a5:de:90:a2:4d:10:71:e2:99:68:36:aa:61: bd:4d:4a:04:33:f1:32:88:70:b7:f3:8d:14:0c:3b: 8e:d6:d7:be:a3:f7:d1:6d:bb:05:53:34:e2:7a:75: 3f:4f:3a:48:99:e4:66:a4:a7:1d:4e:66:bd:8a:28: 47:d7:ae:33:fb:fe:5e:59:b0:c0:48:f3:e8:5c:4c: 4c:0d:68:6b:20:9f:51:7c:24:af:03:0b:85:ba:6c: f3:af:6f:13:32:fb:75:23:0b:6f:08:9b:19:ab:bc: 92:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B2:01:AA:42:F9:B8:FF:7F:35:D4:22:1F:D1:E3:5A:76:4B:1C:F3 X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7c:44:b3:45:6e:32:af:c4:52:01:60:6d:84:d8:4e:6a:bc: 65:4f:27:6d:c5:8c:5d:46:fc:0e:ae:3e:32:ce:23:44:5e:3c: a8:66:a7:aa:0c:58:f8:f2:b8:c5:bf:02:91:e8:eb:1f:01:86: 52:06:bb:82:94:96:54:28:0b:3c:16:0c:8b:62:20:d8:2f:26: 8b:9c:50:b0:d2:f3:19:6d:71:a6:6e:54:48:a9:f1:bf:69:07: 93:98:9e:87:34:5e:cc:c8:ce:3d:90:57:40:b0:73:ba:5b:61: e8:71:99:3e:ad:ca:0f:93:43:99:46:f3:f5:73:cf:f9:67:c0: f9:19:4b:3d:1f:5f:bc:4b:eb:53:6c:95:f8:70:ab:11:fe:29: b1:48:72:e4:72:45:78:05:b5:0b:5c:a0:dc:d8:d5:73:2d:bf: af:f8:5f:ca:31:5f:fe:19:57:e7:df:d6:cc:83:a1:66:b2:6a: e6:1b:9d:34:d5:9f:12:d7:06:d0:fb:3e:b7:0f:9e:bc:ee:20: 23:ab:c5:f1:f6:76:69:56:09:b6:8b:64:c8:6a:c5:c1:71:85: 1a:4f:d6:bd:12:ab:82:a5:26:a8:2f:f2:bc:23:43:04:b1:0a: 91:f2:d3:4f:1d:09:e0:0c:e3:c1:93:05:49:b4:f0:cf:9f:8c: 81:84:c6:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjUwNDA0MjIxMzM1WhcNMjUwNDExMjIxMzM1WjAYMRYwFAYD VQQDEw02N2YwNTk4Zi1jZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9qaD4ji7k1YCFh7HDogLXKTu2E3nBUqXNXc8zbHhZ6lSd4S2nIUHW8OCmrN xvBWAOfYehGj14ijIRMcBHBhGNF8Sv3wlydeKp7/vZNGpc4Wc2Z1wmaTDpQBHJUG wW8rCazwTqEpA6+X2a6zcVqSeDWorLg1JaErVBg0f9wDGa0PzQY8p1NeGt24QFrY CAwMSRVdEn9PGKXekKJNEHHimWg2qmG9TUoEM/EyiHC3840UDDuO1te+o/fRbbsF UzTienU/TzpImeRmpKcdTma9iihH164z+/5eWbDASPPoXExMDWhrIJ9RfCSvAwuF umzzr28TMvt1IwtvCJsZq7ySLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGyAapC +bj/fzXUIh/R41p2SxzzMB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkfESzRW4yr8RSAWBthNhOarxlTydtxYxdRvwOrj4yziNEXjyoZqeq DFj48rjFvwKR6OsfAYZSBruClJZUKAs8FgyLYiDYLyaLnFCw0vMZbXGmblRIqfG/ aQeTmJ6HNF7MyM49kFdAsHO6W2HocZk+rcoPk0OZRvP1c8/5Z8D5GUs9H1+8S+tT bJX4cKsR/imxSHLkckV4BbULXKDc2NVzLb+v+F/KMV/+GVfn39bMg6FmsmrmG500 1Z8S1wbQ+z63D5687iAjq8Xx9nZpVgm2i2TIasXBcYUaT9a9EquCpSaoL/K8I0ME sQqR8tNPHQngDOPBkwVJtPDPn4yBhMY+ -----END CERTIFICATE-----Generated at Sun Apr 6 17:26:02 2025 by rpki-client