$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: rLLBnsg12DxHbF+zJRWHR6yChmpmLErNnmjXR2A5tzA= Subject key identifier: F3:35:48:69:E8:4F:18:77:B0:77:8D:09:85:14:E2:F3:36:C8:02:8A Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 231B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 22ED Signing time: Mon 14 Apr 2025 15:52:30 +0000 Manifest this update: Mon 14 Apr 2025 15:52:30 +0000 Manifest next update: Mon 21 Apr 2025 15:52:30 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: 8bHtB5ja3ilHbvspttZFenLyE5kwbC6AQ5uSOuAE5lY=) 2: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: lXOFb0YJQZdFFX90oDPgUqBGFkT5p8wJoFtkhJ/Uo9A=) 3: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: p5KqoJW3tDR/PENRBzb6MlrbIycp47ssNfWx91ehau4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 15:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8987 (0x231b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3, serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Apr 14 15:52:30 2025 GMT Not After : Apr 21 15:52:30 2025 GMT Subject: CN=67fd2f3e-307d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:3f:9a:c9:bc:6b:d7:d3:db:99:73:6c:d8: 2a:04:a5:f4:9d:df:44:21:71:aa:24:d9:f4:1e:78: 02:94:c6:ea:a3:4e:18:ce:e7:58:93:38:48:3e:db: 7b:b3:39:5a:f2:8b:93:a2:47:b7:2e:42:61:62:29: ea:cd:eb:0c:c8:65:67:b7:15:bd:27:a0:81:63:3d: 5d:1f:de:f9:ad:33:14:ea:ce:75:c2:85:41:1b:b4: 2a:5e:0a:7a:6a:f7:15:af:13:c3:a5:93:0f:8d:ca: 8c:77:58:06:db:fb:22:63:79:21:6d:43:ff:b7:f7: b6:85:55:08:c4:37:63:0e:6e:0b:74:0e:ce:ab:cb: 77:ef:af:89:01:f0:b7:cc:e0:82:02:0f:74:5e:59: 7f:c2:af:56:ac:84:3a:80:d3:11:20:b5:77:9a:b7: a9:f4:e2:e7:e6:f6:ac:94:2d:b6:e0:dd:ef:0a:5c: 70:98:a5:a3:14:b3:b1:b4:f4:d4:d0:2f:5f:ef:a2: 25:35:6f:91:9a:a5:c7:eb:5b:34:4a:74:f4:aa:d7: d4:9b:95:1a:bf:82:de:2c:9e:5c:f7:6b:7c:a9:ed: e7:a0:90:4d:2a:e0:15:50:b4:00:c7:b0:c4:16:77: 8c:dc:bd:5e:2c:48:da:ae:5a:f0:92:a8:97:c5:b3: dc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:35:48:69:E8:4F:18:77:B0:77:8D:09:85:14:E2:F3:36:C8:02:8A X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:1e:b1:b0:4b:7f:a4:5c:a3:1f:d5:27:6e:10:38:a5:6d:0e: 7b:b7:9b:3d:ba:d7:49:47:a6:73:18:b7:1a:de:a1:07:39:44: fe:cf:ce:91:9b:08:f5:f4:00:77:7d:2b:b0:4a:37:a6:d8:b6: 64:0e:0c:50:0e:e0:5c:ad:cd:92:b0:d1:62:3f:2b:e7:6d:c6: 7c:eb:61:51:d8:1d:97:3e:20:22:ff:25:ba:d7:b5:07:54:48: 05:67:21:a5:90:79:ba:4a:09:55:0c:13:3f:ed:38:20:b9:44: bf:ea:9a:90:42:57:87:d8:e6:a5:2f:22:72:7e:0a:13:87:e0: 4d:1a:4a:a8:ce:b3:23:cf:38:45:c6:15:61:51:89:a3:88:d1: 3b:83:eb:d1:0a:22:65:3b:17:97:68:99:7d:a3:f6:d9:64:ef: 35:41:d9:24:61:5c:80:83:85:94:a9:eb:c1:80:65:67:cc:7f: 64:2b:b4:bf:79:17:f8:cb:39:17:35:ca:a9:af:2a:18:2d:88: c9:84:67:77:40:4b:01:c4:16:21:db:eb:c8:3c:69:dd:e8:82: a7:39:68:59:de:a7:08:17:79:36:82:82:81:0d:a3:49:7e:fd: fb:63:3e:6d:1e:5c:79:f8:d8:3c:f8:04:eb:40:25:17:10:ce: 35:d5:82:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjUwNDE0MTU1MjMwWhcNMjUwNDIxMTU1MjMwWjAYMRYwFAYD VQQDEw02N2ZkMmYzZS0zMDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLM/msm8a9fT25lzbNgqBKX0nd9EIXGqJNn0HngClMbqo04YzudYkzhIPtt7 szla8ouToke3LkJhYinqzesMyGVntxW9J6CBYz1dH975rTMU6s51woVBG7QqXgp6 avcVrxPDpZMPjcqMd1gG2/siY3khbUP/t/e2hVUIxDdjDm4LdA7Oq8t376+JAfC3 zOCCAg90Xll/wq9WrIQ6gNMRILV3mrep9OLn5vaslC224N3vClxwmKWjFLOxtPTU 0C9f76IlNW+RmqXH61s0SnT0qtfUm5Uav4LeLJ5c92t8qe3noJBNKuAVULQAx7DE FneM3L1eLEjarlrwkqiXxbPcqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPM1SGno Txh3sHeNCYUU4vM2yAKKMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoHrGwS3+kXKMf1SduEDilbQ57t5s9utdJR6ZzGLca3qEHOUT+z86R mwj19AB3fSuwSjem2LZkDgxQDuBcrc2SsNFiPyvnbcZ862FR2B2XPiAi/yW617UH VEgFZyGlkHm6SglVDBM/7TgguUS/6pqQQleH2OalLyJyfgoTh+BNGkqozrMjzzhF xhVhUYmjiNE7g+vRCiJlOxeXaJl9o/bZZO81QdkkYVyAg4WUqevBgGVnzH9kK7S/ eRf4yzkXNcqpryoYLYjJhGd3QEsBxBYh2+vIPGnd6IKnOWhZ3qcIF3k2goKBDaNJ fv37Yz5tHlx5+Ng8+ATrQCUXEM411YI5 -----END CERTIFICATE-----Generated at Wed Apr 16 04:43:42 2025 by rpki-client