$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: xOPeKdpPfMr0miqEbqIThK+F7XpBlvo736D6nfUxGAs= Subject key identifier: 94:8B:BC:01:94:75:64:61:0B:72:83:0F:44:37:13:3B:A5:1D:B7:D3 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 02CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 02CC Signing time: Sat 05 Apr 2025 01:32:33 +0000 Manifest this update: Sat 05 Apr 2025 01:32:32 +0000 Manifest next update: Sat 12 Apr 2025 01:32:32 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: HLxrF2lHixE2HsZ2pks5T3LwGgnjQ3B0bz4Pvjj2hNs=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: rJOay/9KosJKH4xAyXnCJek3gQV9STnlHAs4YwiimrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2 Validity Not Before: Apr 5 01:32:32 2025 GMT Not After : Apr 12 01:32:32 2025 GMT Subject: CN=67f08831-fdae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b7:4e:4c:a2:17:d9:cf:98:f1:82:f1:98:2a: 04:53:e9:29:a5:10:35:1f:0a:58:27:4f:13:a2:3d: d5:d9:92:76:23:e8:75:39:aa:a6:fc:64:a1:24:f6: ff:ce:f4:b4:6d:c4:8b:57:80:da:50:c1:0b:39:b7: 45:0a:cc:fc:92:27:f4:92:9f:e8:8c:21:d9:be:cf: cc:21:57:e5:da:04:0c:ef:48:c1:44:3f:ce:b5:59: 07:b5:59:10:c0:46:71:9b:61:91:34:09:30:26:2d: 45:b2:b9:5e:6e:22:5d:7d:b7:ed:46:b7:c6:72:24: e2:4e:95:dd:22:7a:ea:da:b3:2a:da:c2:f3:5f:2b: 01:cc:f5:b9:72:b5:64:b5:22:27:55:70:5a:0b:5c: 24:b4:1a:1a:3b:7c:2b:13:dc:42:66:69:1d:fb:fe: 45:10:4a:a0:de:c0:0f:f1:18:b5:43:1f:f4:b3:7a: 72:a2:d2:30:51:72:64:28:0e:98:1a:7d:46:60:26: 13:1d:96:8f:2c:35:71:36:eb:7c:07:b7:34:c2:c7: a3:fe:b6:89:35:f7:e2:b9:84:79:94:94:2f:75:1f: 48:2a:d6:20:68:e4:f8:56:7d:e1:32:51:31:d0:34: f7:ca:ba:60:2b:49:71:69:d7:46:fa:48:83:56:22: a0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8B:BC:01:94:75:64:61:0B:72:83:0F:44:37:13:3B:A5:1D:B7:D3 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:32:d2:d3:79:ab:3e:4d:cc:85:b7:55:f4:03:a3:9e:52:d2: ea:5b:8f:8b:6e:44:14:d8:8d:3d:c2:44:ba:10:df:7d:37:5f: 46:8c:16:23:25:f9:71:9f:f4:77:b4:fb:08:a5:94:c3:ed:18: 3e:f3:b7:4b:38:69:f2:52:83:5b:65:49:03:08:b3:6f:86:f3: 0d:ce:88:f0:5f:b8:80:7a:aa:46:9a:18:d3:f3:4d:5c:27:4e: bf:b4:cb:17:01:32:ad:07:a5:76:9f:3e:08:d6:be:f3:0b:23: 0f:c3:ae:04:3e:6c:6d:0c:67:fc:5a:e3:82:cb:c2:4f:ef:37: bd:7f:81:a1:62:0b:3f:33:93:8a:d2:64:2b:f6:1f:20:8a:9a: 0a:95:8f:62:8b:ba:1b:02:d4:9c:d2:a4:cf:45:54:02:6f:71: dc:82:e7:f6:94:1c:b2:2c:68:d8:22:78:72:39:c1:3f:60:75: 95:03:f6:59:a6:6b:25:15:eb:19:e6:ae:77:58:ee:58:ce:6a: eb:e1:81:7c:e7:63:cf:b3:4c:ce:63:1f:33:3e:b6:e9:6f:6d: ef:5f:c5:fc:96:8c:08:02:fe:2a:d6:23:ff:7c:75:eb:30:f9: 23:13:9b:16:70:e4:51:c0:0d:77:0c:e6:30:a1:95:83:f2:94: 3f:3e:19:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwNDA1MDEzMjMyWhcNMjUwNDEyMDEzMjMyWjAYMRYwFAYD VQQDEw02N2YwODgzMS1mZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLdOTKIX2c+Y8YLxmCoEU+kppRA1HwpYJ08Toj3V2ZJ2I+h1Oaqm/GShJPb/ zvS0bcSLV4DaUMELObdFCsz8kif0kp/ojCHZvs/MIVfl2gQM70jBRD/OtVkHtVkQ wEZxm2GRNAkwJi1FsrlebiJdfbftRrfGciTiTpXdInrq2rMq2sLzXysBzPW5crVk tSInVXBaC1wktBoaO3wrE9xCZmkd+/5FEEqg3sAP8Ri1Qx/0s3pyotIwUXJkKA6Y Gn1GYCYTHZaPLDVxNut8B7c0wsej/raJNffiuYR5lJQvdR9IKtYgaOT4Vn3hMlEx 0DT3yrpgK0lxaddG+kiDViKgIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSLvAGU dWRhC3KDD0Q3EzulHbfTMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEMtLTeas+TcyFt1X0A6OeUtLqW4+LbkQU2I09wkS6EN99N19GjBYj Jflxn/R3tPsIpZTD7Rg+87dLOGnyUoNbZUkDCLNvhvMNzojwX7iAeqpGmhjT801c J06/tMsXATKtB6V2nz4I1r7zCyMPw64EPmxtDGf8WuOCy8JP7ze9f4GhYgs/M5OK 0mQr9h8gipoKlY9ii7obAtSc0qTPRVQCb3Hcguf2lByyLGjYInhyOcE/YHWVA/ZZ pmslFesZ5q53WO5Yzmrr4YF852PPs0zOYx8zPrbpb23vX8X8lowIAv4q1iP/fHXr MPkjE5sWcORRwA13DOYwoZWD8pQ/Phkj -----END CERTIFICATE-----Generated at Sun Apr 6 21:57:14 2025 by rpki-client