$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft File: XBJjPm2nhhExvM_qH3t6vTUdIy8.mft (raw, json) Hash identifier: ltrfw7/PU5FCLiyza4ZJqbPq2FiuI5x6KEoQyUifWe8= Subject key identifier: 4D:A9:A5:D7:E7:A2:B3:2F:55:C2:58:90:A2:D6:04:8A:C5:12:9B:ED Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 0288 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft Manifest number: 027B Signing time: Thu 03 Apr 2025 01:39:38 +0000 Manifest this update: Thu 03 Apr 2025 01:39:37 +0000 Manifest next update: Thu 10 Apr 2025 01:39:37 +0000 Files and hashes: 1: XBJjPm2nhhExvM_qH3t6vTUdIy8.crl (hash: 0O19wVefTh/QeNepPAaUDKGWz3e/pqTR+UK7SEF161o=) 2: 92F62AF0032811ED8DFE1842C4F9AE02.roa (hash: Vaf/2IuP6hiZHVP/Zzaz4dOsvcYmitwX0HNjNxuvpnM=) 3: 6B10211E032B11ED8B3C5B4EC4F9AE02.roa (hash: TagIMdFi8Wzn09/Ge5pL8woV36T21sjYNdiET9ad6yQ=) 4: 418966DA032011ED84D6CA1EC4F9AE02.roa (hash: OYepGimgXK3MUKlDDQh6/2vOomTeihklKTqr9GGXQtI=) 5: 94584738031A11ED934E3D58C4F9AE02.roa (hash: isQopsFQh2QLJz7fDjuOZ5S4zYi6+htYHq2GDQnVE+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577 Validity Not Before: Apr 3 01:39:37 2025 GMT Not After : Apr 10 01:39:37 2025 GMT Subject: CN=67ede6d9-9871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4d:55:a6:91:de:6c:b2:c5:a1:70:e6:29:07: 74:7e:33:f6:3a:1a:4f:ac:05:be:1d:54:5c:ab:fe: 13:19:8c:e0:90:60:21:c3:27:20:a4:75:8a:66:fc: b3:66:15:bf:1b:d3:d7:64:5c:25:d9:74:68:97:3e: 32:e7:75:1b:a7:6b:aa:b0:c9:8a:24:89:e8:51:c1: 40:ac:91:2c:cf:a9:d1:66:29:03:d7:ee:6d:c9:04: 05:9e:f7:be:d4:b6:b3:f7:41:3b:43:72:40:06:40: f1:07:50:dd:b0:b7:01:d2:cf:b9:b7:71:86:56:74: 41:08:7f:7b:9a:eb:40:f9:d8:f0:25:43:1d:cc:00: fb:3c:8d:3f:d1:72:e2:b2:f4:95:a3:e0:1c:9d:88: be:4d:ee:38:c9:51:ad:4b:d4:28:16:24:53:04:47: cf:a8:db:30:94:90:45:40:d4:88:49:9d:04:2e:50: b3:8c:08:f1:b3:87:c1:2d:7a:d1:d2:dd:27:2d:4e: ee:7c:41:ff:cd:6f:e9:e9:04:88:b9:76:3e:44:b2: d1:93:24:38:d7:f1:1f:78:5c:2a:47:95:da:7d:e9: 70:b9:f0:12:84:a5:c2:a8:50:cb:22:d9:b2:a0:5c: 47:16:60:ed:92:84:ec:fa:92:d9:7d:39:43:17:97: a6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A9:A5:D7:E7:A2:B3:2F:55:C2:58:90:A2:D6:04:8A:C5:12:9B:ED X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:9b:fc:bd:f4:4c:f3:f0:66:10:fd:b0:80:9b:7e:aa:9c:ff: 1a:6d:fc:59:d7:53:22:11:e4:a5:3c:3c:18:0f:7e:9a:9e:98: 77:a5:07:f3:75:90:f3:11:2a:46:d6:d5:2e:2a:88:92:3b:2a: 8c:bf:14:a2:f6:53:7f:73:05:36:f5:c8:f9:35:24:f2:ee:fa: e6:47:d4:71:53:49:7f:9f:00:ca:83:e4:b1:3e:51:50:e6:22: c5:dd:e1:f6:22:35:cf:1a:fc:21:65:f3:6a:58:04:ec:ab:9a: 3c:1c:00:29:00:bc:08:26:e5:8d:7d:53:1f:cc:39:8d:ad:89: e6:8a:0d:dd:01:06:66:b6:fe:71:b4:5b:78:14:26:6a:e2:d8: 38:a9:58:48:db:59:b0:29:af:ef:ee:2a:fe:ea:6e:a3:b6:c9: 28:92:04:dd:c4:e8:94:d9:da:59:b1:69:76:f2:f9:4a:51:d7: 38:7c:64:12:ee:b5:64:b5:09:30:d8:35:b8:fa:c9:c5:2e:60: 70:f8:5d:76:40:5b:f1:cc:75:e1:43:02:91:52:57:d8:3b:a2: c3:d3:b7:56:d8:c0:9a:a8:9b:30:91:79:76:68:2f:4a:06:53: 99:b2:c6:bc:fc:ce:c3:21:68:37:5a:50:68:ad:42:d6:3c:9c: 57:74:8d:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjUwNDAzMDEzOTM3WhcNMjUwNDEwMDEzOTM3WjAYMRYwFAYD VQQDEw02N2VkZTZkOS05ODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0k1VppHebLLFoXDmKQd0fjP2OhpPrAW+HVRcq/4TGYzgkGAhwycgpHWKZvyz ZhW/G9PXZFwl2XRolz4y53Ubp2uqsMmKJInoUcFArJEsz6nRZikD1+5tyQQFnve+ 1Laz90E7Q3JABkDxB1DdsLcB0s+5t3GGVnRBCH97mutA+djwJUMdzAD7PI0/0XLi svSVo+AcnYi+Te44yVGtS9QoFiRTBEfPqNswlJBFQNSISZ0ELlCzjAjxs4fBLXrR 0t0nLU7ufEH/zW/p6QSIuXY+RLLRkyQ41/EfeFwqR5XafelwufAShKXCqFDLItmy oFxHFmDtkoTs+pLZfTlDF5emLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2ppdfn orMvVcJYkKLWBIrFEpvtMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU3Ny85MDNFNEM3ODAzMTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmho RXh2TV9xSDN0NnZUVWRJeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQm/y99Ezz8GYQ/bCAm36qnP8abfxZ11MiEeSlPDwYD36anph3pQfz dZDzESpG1tUuKoiSOyqMvxSi9lN/cwU29cj5NSTy7vrmR9RxU0l/nwDKg+SxPlFQ 5iLF3eH2IjXPGvwhZfNqWATsq5o8HAApALwIJuWNfVMfzDmNrYnmig3dAQZmtv5x tFt4FCZq4tg4qVhI21mwKa/v7ir+6m6jtskokgTdxOiU2dpZsWl28vlKUdc4fGQS 7rVktQkw2DW4+snFLmBw+F12QFvxzHXhQwKRUlfYO6LD07dW2MCaqJswkXl2aC9K BlOZssa8/M7DIWg3WlBorULWPJxXdI3p -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:46 2025 by rpki-client