$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: Nnn91Dsk76pfndwQrc2rROB8sBLtUQ0WEqHicGU7C9Y= Subject key identifier: FF:42:FF:CE:5E:9F:8C:04:7C:E0:1B:80:2C:E2:E9:70:1C:E4:65:12 Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: E3 Signing time: Tue 15 Apr 2025 04:18:57 +0000 Manifest this update: Tue 15 Apr 2025 04:18:57 +0000 Manifest next update: Tue 22 Apr 2025 04:18:57 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: DkrEtHcFnsUn7nrIi0PJ4/MQ5BeGPnmbAeyn0KE9tbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 04:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD, serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: Apr 15 04:18:57 2025 GMT Not After : Apr 22 04:18:57 2025 GMT Subject: CN=67fdde31-e30e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:21:0d:1d:de:3b:27:31:a3:cc:d9:8b:1a:af: f2:9d:c4:b3:e1:8d:32:18:5a:5d:7f:cd:eb:f6:db: d6:4c:49:ce:db:3a:23:7a:4a:2c:62:af:7b:76:29: f5:66:1a:a9:f3:92:00:c0:ad:38:81:9c:40:b8:7d: 0c:73:57:ce:76:11:3e:55:fc:e7:61:0a:64:57:57: 09:63:6b:1d:5e:34:41:34:aa:39:3e:80:92:db:d5: 57:6a:de:96:64:5d:05:31:0c:ec:84:21:5f:81:23: b1:54:dd:08:ba:ed:f4:f5:be:e3:3b:2a:31:31:86: 98:0c:8e:29:8a:73:c3:22:6e:7c:38:95:52:42:68: 29:80:8e:e6:94:cf:b6:6b:57:3f:11:2b:b5:cf:ae: 6a:de:f1:35:d9:77:15:33:d9:60:18:1a:90:17:db: a9:52:3d:31:a3:ae:02:ea:16:34:90:46:67:30:33: 48:d0:0a:88:d8:89:20:cd:40:82:74:91:a0:61:68: 74:0f:80:ed:8e:87:2f:28:2b:27:46:bd:d0:91:85: 0f:de:f5:a6:6e:0b:e3:80:87:34:0f:8c:62:44:27: 00:50:76:3a:11:86:ab:14:ce:29:c8:21:f8:6c:8f: 9a:f9:1a:73:63:50:bc:7d:1a:e1:d9:d2:3f:cf:5a: 52:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:42:FF:CE:5E:9F:8C:04:7C:E0:1B:80:2C:E2:E9:70:1C:E4:65:12 X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:df:91:93:72:7c:85:9f:15:40:88:b4:d2:f0:56:60:91:a0: d0:df:34:41:75:57:4d:26:12:98:8e:69:f5:42:cd:6c:9e:eb: 04:ed:9f:3f:aa:73:9f:d6:68:78:f9:c7:28:82:e5:c9:ef:26: 1c:00:35:79:62:81:ca:15:44:ba:57:c6:cf:ea:1c:83:92:39: c9:40:2f:d0:61:af:40:e3:8a:7b:ed:9e:2d:62:08:08:17:ab: 69:c0:56:55:ea:5b:92:07:bd:8a:18:00:ce:7a:1f:bd:30:28: 62:d7:1a:33:78:81:bf:cb:5d:a2:4d:27:5a:54:f6:31:e4:86: c5:b6:b1:37:0c:50:09:e6:c4:b0:c4:01:78:e9:70:1f:06:66: 92:12:a3:5f:64:69:99:45:08:da:9e:9c:92:cf:70:c3:c4:52: 13:68:77:bd:c1:13:04:d3:fe:b7:52:dc:19:e2:75:95:e6:2f: af:2e:04:14:c4:c3:42:d1:1a:34:ee:5c:a8:2f:24:36:c2:9b: 08:cd:3b:79:b4:44:1b:c5:0e:a0:be:c7:53:7d:63:17:65:79: c4:27:b9:a5:ab:db:38:81:c8:fd:3c:38:31:8c:21:65:f8:ba: f7:f2:79:ac:c0:77:7d:8f:5c:65:16:0d:ca:59:c4:72:88:b5: 21:af:80:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc2QUQxMTAvBgNVBAUTKEM0QjYyNTAzRTZENjcwMkFDMjlEMDBCRjM1MEM4QjJD MTJFNzlGMDUwHhcNMjUwNDE1MDQxODU3WhcNMjUwNDIyMDQxODU3WjAYMRYwFAYD VQQDEw02N2ZkZGUzMS1lMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CENHd47JzGjzNmLGq/yncSz4Y0yGFpdf83r9tvWTEnO2zojekosYq97din1 Zhqp85IAwK04gZxAuH0Mc1fOdhE+VfznYQpkV1cJY2sdXjRBNKo5PoCS29VXat6W ZF0FMQzshCFfgSOxVN0Iuu309b7jOyoxMYaYDI4pinPDIm58OJVSQmgpgI7mlM+2 a1c/ESu1z65q3vE12XcVM9lgGBqQF9upUj0xo64C6hY0kEZnMDNI0AqI2IkgzUCC dJGgYWh0D4DtjocvKCsnRr3QkYUP3vWmbgvjgIc0D4xiRCcAUHY6EYarFM4pyCH4 bI+a+RpzY1C8fRrh2dI/z1pSjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9C/85e n4wEfOAbgCzi6XAc5GUSMB8GA1UdIwQYMBaAFMS2JQPm1nAqwp0AvzUMiywS558F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzZBRC8wN0Y1MkU0NkJF ODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2NDckNuUUNfTlF5TExCTG5u d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzZBRC8wN0Y1MkU0NkJFODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2ND ckNuUUNfTlF5TExCTG5ud1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK35GTcnyFnxVAiLTS8FZgkaDQ3zRBdVdNJhKYjmn1Qs1snusE7Z8/ qnOf1mh4+ccoguXJ7yYcADV5YoHKFUS6V8bP6hyDkjnJQC/QYa9A44p77Z4tYggI F6tpwFZV6luSB72KGADOeh+9MChi1xozeIG/y12iTSdaVPYx5IbFtrE3DFAJ5sSw xAF46XAfBmaSEqNfZGmZRQjanpySz3DDxFITaHe9wRME0/63UtwZ4nWV5i+vLgQU xMNC0Ro07lyoLyQ2wpsIzTt5tEQbxQ6gvsdTfWMXZXnEJ7mlq9s4gcj9PDgxjCFl +Lr38nmswHd9j1xlFg3KWcRyiLUhr4BL -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:24 2025 by rpki-client