$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: r2vwygMw30nRb5o1YqUqQvkGh1icI37NFIr+/JQCAqQ= Subject key identifier: D1:65:5E:03:0A:13:A9:2E:42:CB:B8:D1:33:DC:A0:D5:EC:9B:4B:5E Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: EC Signing time: Wed 09 Apr 2025 04:16:13 +0000 Manifest this update: Wed 09 Apr 2025 04:16:12 +0000 Manifest next update: Wed 16 Apr 2025 04:16:12 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: BdKVU8p8FerQLFK85WeMF3tkmJERRUSAZx76EjGjEF8=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: +mEj5z+agEcnRzWZMjR0oYobGLfQGCXmi+n1VzU085s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444 Validity Not Before: Apr 9 04:16:12 2025 GMT Not After : Apr 16 04:16:12 2025 GMT Subject: CN=67f5f48c-ae7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:67:62:13:1c:7c:6b:9c:0f:4b:dd:4b:a0:10: 72:ee:58:06:25:ce:16:48:18:62:aa:16:98:96:ca: bd:c4:15:73:a8:06:6b:3d:6d:e1:1e:ec:4d:77:f6: 7f:99:dd:cc:20:78:f5:25:2d:2f:03:1c:c4:d0:a0: 5b:fa:ab:fc:95:09:72:30:28:39:be:fd:cd:0d:a1: 53:56:60:06:21:fb:c4:ff:fd:ab:25:40:f5:ef:97: e1:76:88:33:1a:16:3b:e6:87:86:2e:d5:3e:e2:d1: bd:79:13:0e:28:fe:90:d0:85:a3:45:dd:44:01:92: b4:66:ea:f8:96:81:0b:ec:cb:51:a5:b8:7a:9b:64: 71:17:f6:59:c6:42:88:eb:dd:1f:2e:01:e3:26:8e: c0:36:d2:88:f2:4b:2b:34:bf:e8:1d:e9:5d:a5:3f: f0:bf:e2:13:d8:ee:96:42:67:26:d8:ea:b6:42:10: f3:45:6b:1c:3c:18:56:65:dc:22:c5:4d:cc:00:fe: cd:fe:74:e8:ac:7f:bd:0c:bd:2f:e5:09:d2:8e:9b: 27:92:d8:35:a2:33:5f:db:f9:72:f0:87:12:34:5d: 90:91:57:0f:0b:82:ce:c7:8b:a7:8f:f9:3c:eb:c1: 97:39:9b:5e:62:42:39:ed:19:a4:42:24:b7:47:4f: a1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:65:5E:03:0A:13:A9:2E:42:CB:B8:D1:33:DC:A0:D5:EC:9B:4B:5E X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ae:76:9e:c9:f1:5a:87:a8:6e:f4:0e:c6:1b:e6:38:c8:0f: 5b:f3:fb:3f:47:18:de:42:ef:30:4a:4d:24:4e:37:f0:37:37: 14:0e:74:61:d9:8a:30:a6:42:b3:f7:74:86:cd:ce:0d:c5:4a: 5c:26:23:e0:d0:21:b7:28:9f:bc:7c:46:af:d8:1b:fd:96:b6: d8:d4:af:97:c6:8e:9f:0f:0c:7f:17:11:64:dc:49:55:c5:38: 79:6d:e7:9f:48:44:ba:71:fc:44:df:86:8e:5c:fb:fd:21:6f: 11:79:1b:78:d1:dd:07:e9:23:3a:0e:a8:77:5d:3a:7e:27:a3: 6e:10:a8:51:79:74:2f:ca:ac:2d:47:52:c8:c9:f1:b0:96:2c: ce:35:75:fc:e4:03:d1:40:16:19:af:65:96:f7:10:9f:04:18: 04:c8:7a:76:6c:a5:f8:2a:52:dd:cc:86:b2:80:80:4f:e9:71: fc:b0:3f:a4:c2:e7:5f:4c:b9:16:e8:24:d6:f1:5d:3e:7e:eb: 9f:24:16:b6:f6:fd:7f:bc:0e:84:1e:dd:1c:1b:0c:42:1e:d3: e5:c9:1d:09:e5:f0:4a:ee:78:7e:f7:e6:81:0d:a8:58:0a:83: 9c:44:b9:24:2e:74:12:08:f6:45:ad:c5:67:5d:37:37:33:3b: 41:53:13:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjUwNDA5MDQxNjEyWhcNMjUwNDE2MDQxNjEyWjAYMRYwFAYD VQQDEw02N2Y1ZjQ4Yy1hZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGdiExx8a5wPS91LoBBy7lgGJc4WSBhiqhaYlsq9xBVzqAZrPW3hHuxNd/Z/ md3MIHj1JS0vAxzE0KBb+qv8lQlyMCg5vv3NDaFTVmAGIfvE//2rJUD175fhdogz GhY75oeGLtU+4tG9eRMOKP6Q0IWjRd1EAZK0Zur4loEL7MtRpbh6m2RxF/ZZxkKI 690fLgHjJo7ANtKI8ksrNL/oHeldpT/wv+IT2O6WQmcm2Oq2QhDzRWscPBhWZdwi xU3MAP7N/nTorH+9DL0v5QnSjpsnktg1ojNf2/ly8IcSNF2QkVcPC4LOx4unj/k8 68GXOZteYkI57RmkQiS3R0+hfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFlXgMK E6kuQsu40TPcoNXsm0teMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBornaeyfFah6hu9A7GG+Y4yA9b8/s/RxjeQu8wSk0kTjfwNzcUDnRh 2YowpkKz93SGzc4NxUpcJiPg0CG3KJ+8fEav2Bv9lrbY1K+Xxo6fDwx/FxFk3ElV xTh5beefSES6cfxE34aOXPv9IW8ReRt40d0H6SM6Dqh3XTp+J6NuEKhReXQvyqwt R1LIyfGwlizONXX85APRQBYZr2WW9xCfBBgEyHp2bKX4KlLdzIaygIBP6XH8sD+k wudfTLkW6CTW8V0+fuufJBa29v1/vA6EHt0cGwxCHtPlyR0J5fBK7nh+9+aBDahY CoOcRLkkLnQSCPZFrcVnXTc3MztBUxNo -----END CERTIFICATE-----Generated at Thu Apr 10 18:56:12 2025 by rpki-client