$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: Z9PyI5fH5vUCKDuSR6WzhuY/cQP1khrL18WTZH5DHyg= Subject key identifier: DB:E2:BA:FA:70:4F:8C:50:8A:09:2F:62:93:A3:A9:5A:7A:A9:74:64 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0AC7 Signing time: Fri 04 Apr 2025 19:36:30 +0000 Manifest this update: Fri 04 Apr 2025 19:36:29 +0000 Manifest next update: Fri 11 Apr 2025 19:36:29 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: oXR4YcMm7aQeXCNTHLvziiDLfo1ffjVuj5M/E0NoQT0=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D Validity Not Before: Apr 4 19:36:29 2025 GMT Not After : Apr 11 19:36:29 2025 GMT Subject: CN=67f034bd-fc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ca:b4:76:1a:65:80:12:97:3d:f5:3a:79:f9: 5b:8b:79:52:68:7f:27:57:86:dc:92:ee:4a:8d:62: 15:6d:77:4c:05:1e:d8:53:82:4b:5a:9c:0b:bc:8a: 59:56:c2:b3:ca:05:bd:50:42:e7:c7:34:db:ed:b4: c3:39:61:62:8b:04:3d:9f:53:81:27:0f:d1:41:c5: 2e:0b:f2:13:e2:1e:5d:37:4b:23:a9:35:75:df:57: 08:31:e2:fd:b1:bb:2b:95:34:bd:ce:9b:20:5b:62: 0b:7a:13:c3:eb:b9:94:9f:da:46:a1:23:85:a9:40: 43:7e:c4:95:7f:fc:4a:2b:6e:36:57:37:72:95:6b: da:cb:f5:1e:c2:d9:e5:94:0b:e2:4f:dd:d9:a3:41: 06:ea:2e:9e:f5:b4:1c:28:f7:5d:82:56:e0:c8:25: 2e:a8:44:1e:08:06:d0:cd:00:54:81:43:10:12:07: c1:6e:f2:64:3e:02:4a:44:fc:8f:a3:7c:30:36:37: a0:25:81:0d:33:8e:07:a6:e0:9c:bf:d0:3c:ea:9c: 3b:c4:a9:2f:6c:36:19:29:7c:fd:f2:c4:c4:a9:dc: 6e:27:08:80:38:c2:90:26:a3:22:9a:98:aa:3d:64: 48:28:d2:9b:ab:de:07:06:ff:d8:e8:85:1d:fa:0f: f1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E2:BA:FA:70:4F:8C:50:8A:09:2F:62:93:A3:A9:5A:7A:A9:74:64 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:9e:df:be:ac:88:78:e7:cb:1e:dc:46:fc:f7:e4:61:8d:6e: 0f:c5:af:39:91:da:34:80:a0:af:f2:45:5b:61:60:65:5b:ae: 21:91:3b:b1:b2:ee:31:cf:e2:8f:6b:a6:c5:1c:2c:18:05:e1: 96:5d:89:c6:80:32:24:55:e2:6d:c7:e8:75:e6:8e:5d:d3:2a: 78:98:5b:f0:23:66:03:08:e4:0b:37:b1:12:8a:28:6e:d3:2e: ab:4a:53:2c:da:3a:a9:9b:8e:c3:d4:8c:f2:f3:d6:b8:14:94: ab:a5:31:16:cb:f4:a0:fc:d1:e1:2e:80:9d:08:a7:34:3c:18: 1e:4c:e4:91:0d:e8:e1:ba:ef:dc:f1:6f:6b:e8:ff:c2:79:b2: e9:0a:6a:00:0e:c7:ea:c5:f0:e7:d8:38:fc:85:4b:ac:89:a9: d5:42:55:16:21:d7:41:77:13:35:55:d7:82:2a:8e:bd:ff:dc: f7:05:35:aa:10:ff:39:e5:d3:fe:84:3b:c8:d0:3f:f5:46:a7: a3:36:cc:eb:fd:a9:35:39:ce:76:18:c4:bb:70:47:54:fc:ca: 95:5b:55:0b:b1:3e:a3:08:79:a0:f2:15:e3:e3:45:62:d9:d2: 3f:a5:f6:9b:e9:f6:05:ca:1a:1e:62:d4:a5:f0:03:14:8b:1a: 5f:bd:01:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwNDA0MTkzNjI5WhcNMjUwNDExMTkzNjI5WjAYMRYwFAYD VQQDEw02N2YwMzRiZC1mYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Mq0dhplgBKXPfU6eflbi3lSaH8nV4bcku5KjWIVbXdMBR7YU4JLWpwLvIpZ VsKzygW9UELnxzTb7bTDOWFiiwQ9n1OBJw/RQcUuC/IT4h5dN0sjqTV131cIMeL9 sbsrlTS9zpsgW2ILehPD67mUn9pGoSOFqUBDfsSVf/xKK242VzdylWvay/Uewtnl lAviT93Zo0EG6i6e9bQcKPddglbgyCUuqEQeCAbQzQBUgUMQEgfBbvJkPgJKRPyP o3wwNjegJYENM44HpuCcv9A86pw7xKkvbDYZKXz98sTEqdxuJwiAOMKQJqMimpiq PWRIKNKbq94HBv/Y6IUd+g/xmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNviuvpw T4xQigkvYpOjqVp6qXRkMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUnt++rIh458se3Eb89+RhjW4Pxa85kdo0gKCv8kVbYWBlW64hkTux su4xz+KPa6bFHCwYBeGWXYnGgDIkVeJtx+h15o5d0yp4mFvwI2YDCOQLN7ESiihu 0y6rSlMs2jqpm47D1Izy89a4FJSrpTEWy/Sg/NHhLoCdCKc0PBgeTOSRDejhuu/c 8W9r6P/CebLpCmoADsfqxfDn2Dj8hUusianVQlUWIddBdxM1VdeCKo69/9z3BTWq EP855dP+hDvI0D/1RqejNszr/ak1Oc52GMS7cEdU/MqVW1ULsT6jCHmg8hXj40Vi 2dI/pfab6fYFyhoeYtSl8AMUixpfvQF1 -----END CERTIFICATE-----Generated at Sat Apr 5 16:22:30 2025 by rpki-client