$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: eCZEHKwBdNy1iafVA+R17Mt8+HpKerWCpU05VN6sbTg= Subject key identifier: B8:BB:E4:4D:2D:A1:8D:24:28:45:86:2F:B2:71:6A:6C:51:C9:8C:CC Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: D0 Signing time: Fri 11 Apr 2025 04:53:24 +0000 Manifest this update: Fri 11 Apr 2025 04:53:23 +0000 Manifest next update: Fri 18 Apr 2025 04:53:23 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: vze10BKpfJXU8oQVXh0Xz5ne2rSNQT5cExhCcrhh8uE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Apr 11 04:53:23 2025 GMT Not After : Apr 18 04:53:23 2025 GMT Subject: CN=67f8a043-c31c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:be:ba:b2:ac:2e:c6:79:f4:48:2b:59:65:c5: b7:96:83:6b:3b:96:88:9e:57:f8:19:7f:eb:8f:94: 53:19:91:fd:fb:37:fb:d0:34:66:e3:5a:40:7e:9f: de:f7:5d:83:9d:f4:4f:93:be:e0:ab:3b:9d:68:1d: 98:de:ba:25:fd:44:eb:ff:69:72:8d:02:ee:da:3b: 0c:6e:f1:04:2b:a0:22:22:e7:32:e3:89:7d:6e:72: 5f:5c:5d:b0:b0:f4:d6:8e:8b:9f:31:e4:1f:b6:d7: 92:cf:dc:22:31:6f:72:85:c1:c4:73:b8:1f:ce:61: 75:36:39:d4:80:b3:c5:d3:ce:2e:04:8f:c8:9f:8f: 6f:35:ea:f6:b7:79:a5:80:a3:c1:5e:4a:66:87:ba: ba:f2:be:9d:cb:cb:17:a4:fb:49:f2:87:68:78:02: f1:f1:8d:5b:65:30:29:2a:d1:fd:15:55:8f:c4:96: cb:4f:af:83:31:bd:bd:59:4a:1d:c1:a5:d1:67:ff: a6:1c:ac:20:14:cb:27:08:25:f5:e7:84:0d:5c:02: 4c:34:33:f2:ea:92:5a:d5:78:0f:2a:d4:16:83:35: ca:d7:c2:de:ef:f9:ac:48:22:16:50:b1:97:1d:f5: d9:02:2a:19:37:22:e3:75:6e:37:cf:24:b1:f7:50: 1d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BB:E4:4D:2D:A1:8D:24:28:45:86:2F:B2:71:6A:6C:51:C9:8C:CC X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:d9:d1:e7:f3:06:aa:73:5d:d5:cb:71:21:20:5c:41:3f:00: e8:a2:a0:36:00:ce:db:64:01:3d:a8:d5:e9:42:75:35:02:90: e7:bc:b4:c2:23:d8:00:a6:3d:41:19:d6:3a:7b:8a:5c:75:a5: 6c:e3:b1:99:3c:e7:ed:a5:e4:1d:39:30:c4:93:0f:66:d5:a7: 37:ef:47:9f:ea:95:da:cf:61:81:a2:99:de:1a:0b:4f:98:0f: 8a:aa:3e:63:77:f9:bb:c5:6b:4e:30:f9:b7:5d:77:01:a9:5a: a9:7f:d7:dd:a0:fb:2f:40:b4:f9:3b:b2:c0:12:4c:73:8d:33: 5e:5a:d6:2d:b8:b3:d0:7e:0c:94:a3:41:11:7b:a2:31:dc:21: ea:a1:30:36:6f:11:85:e8:e6:a6:09:c6:66:88:e0:30:86:e8: 3c:8a:f3:f4:9d:be:8c:c4:e8:86:3a:5d:52:32:b1:f3:44:24: f5:16:14:ca:9b:62:74:f6:90:22:ba:bf:fa:67:61:75:84:e1: 50:78:31:24:2b:2d:f5:1f:70:bd:86:56:27:76:c9:82:11:2d: 3c:7a:66:f3:36:3c:fb:c9:80:44:84:02:60:e9:20:93:f4:0b: c0:51:12:7b:1d:71:c4:e5:93:fe:76:8c:00:80:60:c7:4c:a4: ce:e8:41:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUwNDExMDQ1MzIzWhcNMjUwNDE4MDQ1MzIzWjAYMRYwFAYD VQQDEw02N2Y4YTA0My1jMzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1b66sqwuxnn0SCtZZcW3loNrO5aInlf4GX/rj5RTGZH9+zf70DRm41pAfp/e 912DnfRPk77gqzudaB2Y3rol/UTr/2lyjQLu2jsMbvEEK6AiIucy44l9bnJfXF2w sPTWjoufMeQftteSz9wiMW9yhcHEc7gfzmF1NjnUgLPF084uBI/In49vNer2t3ml gKPBXkpmh7q68r6dy8sXpPtJ8odoeALx8Y1bZTApKtH9FVWPxJbLT6+DMb29WUod waXRZ/+mHKwgFMsnCCX154QNXAJMNDPy6pJa1XgPKtQWgzXK18Le7/msSCIWULGX HfXZAioZNyLjdW43zySx91AdpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLi75E0t oY0kKEWGL7JxamxRyYzMMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU2dHn8waqc13Vy3EhIFxBPwDooqA2AM7bZAE9qNXpQnU1ApDnvLTC I9gApj1BGdY6e4pcdaVs47GZPOftpeQdOTDEkw9m1ac370ef6pXaz2GBopneGgtP mA+Kqj5jd/m7xWtOMPm3XXcBqVqpf9fdoPsvQLT5O7LAEkxzjTNeWtYtuLPQfgyU o0ERe6Ix3CHqoTA2bxGF6OamCcZmiOAwhug8ivP0nb6MxOiGOl1SMrHzRCT1FhTK m2J09pAiur/6Z2F1hOFQeDEkKy31H3C9hlYndsmCES08embzNjz7yYBEhAJg6SCT 9AvAURJ7HXHE5ZP+dowAgGDHTKTO6EGZ -----END CERTIFICATE-----Generated at Sat Apr 12 23:55:36 2025 by rpki-client