$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: Oe4tRa5SogiEnuaQnqCvb3ZbIerHjV9dRD8pSAzOC/E= Subject key identifier: FB:F2:4F:D7:5E:B8:4B:1C:34:09:59:AC:97:37:02:D4:3B:8D:74:FF Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 011E Signing time: Wed 09 Apr 2025 03:39:34 +0000 Manifest this update: Wed 09 Apr 2025 03:39:34 +0000 Manifest next update: Wed 16 Apr 2025 03:39:34 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: 5nuGZHpP2QkVnTpJ/gg6z4YYd+3+VZbnmZ7OKboPj/A=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73 Validity Not Before: Apr 9 03:39:34 2025 GMT Not After : Apr 16 03:39:34 2025 GMT Subject: CN=67f5ebf6-da5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:25:2e:2b:9c:3c:37:d1:39:13:50:eb:4b:5a: 8b:52:2d:1d:d1:d9:a3:9f:8b:7c:40:d6:34:06:38: 2e:50:00:b1:01:df:04:ff:ef:a1:37:5c:5f:b0:b2: 41:5e:ef:0c:be:b1:f5:c8:be:28:91:23:cf:e4:8f: 81:08:41:e1:29:d8:e1:cd:54:d1:a7:47:2f:0e:d1: 0c:1e:25:1c:e7:e2:0e:b7:91:06:5e:b7:d7:28:62: 28:56:32:1a:1f:78:9e:90:12:1a:fd:0b:73:50:c7: 86:17:f1:8a:48:e2:f0:7b:d2:0d:8d:d9:7a:38:d6: 32:6e:fa:5b:2e:a8:1d:ef:0b:0a:22:07:85:59:08: b9:d3:af:75:84:0b:f5:57:b1:da:89:9a:39:e2:2a: 46:a1:15:71:60:a9:a7:8a:43:37:fd:35:c6:95:68: 12:90:a5:13:21:fa:14:ec:9a:76:e2:f7:11:4f:4c: 57:bb:ec:ea:6a:ba:76:af:bc:c1:cf:49:72:31:da: 3b:50:91:54:56:a8:ea:13:94:7c:23:63:2c:6b:2d: 67:d8:86:a0:49:f1:a1:aa:8a:ae:ca:a2:10:8a:4d: 73:ea:db:24:42:f0:de:bb:47:75:75:b0:4c:d4:61: ab:c7:af:e8:8d:dc:bd:2a:b0:4d:3f:c5:e6:d9:72: 6f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F2:4F:D7:5E:B8:4B:1C:34:09:59:AC:97:37:02:D4:3B:8D:74:FF X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:71:15:c9:ee:1b:7b:c9:37:04:cf:1c:bc:78:e7:fa:44:84: 4a:fd:aa:a0:65:a4:89:e9:a1:a3:fa:83:c5:59:b5:d0:86:1e: 4a:ce:65:ab:18:0e:e2:e5:8f:b5:1b:65:59:90:39:52:14:30: b3:2b:f0:f2:a5:5f:d1:28:2c:84:ab:2e:71:e8:57:bc:c9:f4: 40:a2:8b:d3:46:78:c1:ea:d3:ba:84:66:ac:f4:dc:75:32:66: bd:c7:99:04:69:d2:e1:74:f4:32:e7:91:29:4f:c7:22:01:15: 42:ed:f1:80:4a:ac:81:08:50:54:f9:95:59:6f:84:c8:1c:67: f0:e9:8d:c5:ea:eb:d5:54:c6:63:c5:81:4d:cf:13:5c:5c:eb: 36:14:be:98:9b:9d:06:72:5f:81:17:71:8c:4f:e8:75:a1:a8: 4c:4b:a1:c7:20:a7:89:68:5b:09:cb:43:06:68:2d:ea:ba:cd: 96:9e:78:51:12:a0:bd:42:b6:63:f6:1f:c2:05:49:df:f9:82: 31:f4:27:28:d9:4e:1d:c0:32:13:0b:e0:cd:04:d7:6b:db:b4: 44:e8:61:b5:8e:75:27:88:d5:33:1d:60:db:cf:62:86:ea:50: 38:0f:2f:87:96:5d:c3:6a:74:5e:1c:aa:08:3a:4a:50:51:c2: 6b:d3:ea:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwNDA5MDMzOTM0WhcNMjUwNDE2MDMzOTM0WjAYMRYwFAYD VQQDEw02N2Y1ZWJmNi1kYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyUuK5w8N9E5E1DrS1qLUi0d0dmjn4t8QNY0BjguUACxAd8E/++hN1xfsLJB Xu8MvrH1yL4okSPP5I+BCEHhKdjhzVTRp0cvDtEMHiUc5+IOt5EGXrfXKGIoVjIa H3iekBIa/QtzUMeGF/GKSOLwe9INjdl6ONYybvpbLqgd7wsKIgeFWQi50691hAv1 V7HaiZo54ipGoRVxYKmnikM3/TXGlWgSkKUTIfoU7Jp24vcRT0xXu+zqarp2r7zB z0lyMdo7UJFUVqjqE5R8I2Msay1n2IagSfGhqoquyqIQik1z6tskQvDeu0d1dbBM 1GGrx6/ojdy9KrBNP8Xm2XJvmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvyT9de uEscNAlZrJc3AtQ7jXT/MB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVcRXJ7ht7yTcEzxy8eOf6RIRK/aqgZaSJ6aGj+oPFWbXQhh5KzmWr GA7i5Y+1G2VZkDlSFDCzK/DypV/RKCyEqy5x6Fe8yfRAoovTRnjB6tO6hGas9Nx1 Mma9x5kEadLhdPQy55EpT8ciARVC7fGASqyBCFBU+ZVZb4TIHGfw6Y3F6uvVVMZj xYFNzxNcXOs2FL6Ym50Gcl+BF3GMT+h1oahMS6HHIKeJaFsJy0MGaC3qus2WnnhR EqC9QrZj9h/CBUnf+YIx9Cco2U4dwDITC+DNBNdr27RE6GG1jnUniNUzHWDbz2KG 6lA4Dy+Hll3DanReHKoIOkpQUcJr0+r8 -----END CERTIFICATE-----Generated at Thu Apr 10 07:09:04 2025 by rpki-client