$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft File: XytYId1DwpQ50rruW9wEMpHEe68.mft (raw, json) Hash identifier: HIjpHXLftgmhqQZRIhaJdrvZHrCRepPiOaNeT+tUZ0U= Subject key identifier: 38:99:15:9F:8B:66:B6:BE:55:95:98:A9:72:8D:E1:CF:E5:09:3F:14 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft Manifest number: C3 Signing time: Sat 29 Mar 2025 05:11:10 +0000 Manifest this update: Sat 29 Mar 2025 05:11:10 +0000 Manifest next update: Sat 05 Apr 2025 05:11:10 +0000 Files and hashes: 1: XytYId1DwpQ50rruW9wEMpHEe68.crl (hash: kIYmoaM8HcgYkOhTtqcd92Z4M86b50hys2OBB56KjBM=) 2: 199F588CE21711EE913F3E62C4F9AE02.roa (hash: 3MMDEbkkdNFM/djNh0ORf8UHeAKMwjP4dT3GZUmqZZQ=) 3: F5A311DAE21611EEB7B0D361C4F9AE02.roa (hash: 7eg8s3nshujJWlMFILJG4nxViOoj4GxAMrDMLj0daAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD Validity Not Before: Mar 29 05:11:10 2025 GMT Not After : Apr 5 05:11:10 2025 GMT Subject: CN=67e780ee-8ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f3:34:65:5e:79:09:37:73:c1:40:d9:d6:4c: 57:68:0f:48:7e:5d:a9:4b:10:27:57:4f:23:64:7d: a8:7d:16:f4:90:65:30:5a:d0:5b:db:1b:df:a6:c7: 6d:40:61:36:8c:3b:97:18:c4:fb:09:ee:62:73:89: e6:05:98:a2:d0:3d:b5:57:0e:ba:64:e1:0c:26:69: 34:2d:62:fd:56:49:f4:bd:74:62:3f:c8:9f:28:a1: e5:46:1e:2a:0f:dd:79:d6:3f:a7:a0:ae:e0:42:fb: 01:4d:4b:af:93:86:84:2e:6b:6b:a7:90:33:06:20: 46:a3:ef:4d:60:40:c8:af:cd:fe:1f:d1:29:8a:76: 98:87:1b:25:fb:0f:18:f0:5d:d1:75:6d:f6:c6:5a: 88:05:10:c6:62:1a:a5:0e:df:7b:3c:7c:f6:22:f7: 57:2f:70:17:8e:b4:51:54:3f:1a:5b:74:7a:4b:bc: 2b:d9:28:75:8f:fd:d9:8e:22:ef:b0:0f:fd:65:2c: 81:c6:e2:e9:83:2b:84:0c:e7:9c:33:fa:ef:25:ba: 29:e6:97:59:c5:69:5e:9d:1b:7c:7d:61:0b:b5:a5: 6b:c5:b9:99:24:7e:3e:a2:b6:a7:66:e6:61:61:6e: da:e5:82:20:bc:ee:8d:0f:99:ef:54:e0:da:b6:29: d7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:99:15:9F:8B:66:B6:BE:55:95:98:A9:72:8D:E1:CF:E5:09:3F:14 X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:1e:21:0c:20:ea:ea:b6:bb:12:3f:18:22:9a:07:80:20:4d: a0:0d:cf:3e:63:c8:f0:b0:53:f0:a1:04:26:85:ec:9d:21:2d: 5d:c4:2d:33:7c:42:7c:be:59:13:bd:78:50:a8:ec:3c:b2:cd: 74:d1:f1:b2:fe:9c:4a:0f:57:11:2e:2f:fd:a5:97:cd:ca:58: 3c:6e:fb:35:2c:a4:72:22:83:1c:a3:f2:2e:97:09:1f:65:1c: d0:45:47:32:05:9a:6b:cf:a1:c4:c3:42:af:1a:38:df:17:e9: 2f:d5:8e:10:9a:46:8d:0d:41:96:e1:fd:c8:0c:ef:a7:6f:bc: 88:d1:72:16:4c:be:bd:7a:20:6f:ef:b1:ef:9e:05:ae:6a:6d: d3:cd:22:c2:f0:37:5f:0a:bd:ec:f0:28:ad:0a:b5:05:9d:60: 32:54:5d:aa:40:c7:54:99:3c:fc:65:64:53:bb:65:7c:08:97: b1:9f:b9:c4:ca:44:6d:ae:d0:f1:87:0a:60:11:c1:f5:9c:80: e5:d3:18:4f:f9:29:52:be:fc:c9:c3:63:4a:15:bc:bd:14:ad: 4e:25:b2:54:03:a8:a4:54:39:c1:4f:df:53:7a:77:6a:bd:3f: 0c:49:2c:52:48:2e:04:87:9c:ac:b1:e8:4d:a3:0e:4c:38:cc: 63:71:41:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjUwMzI5MDUxMTEwWhcNMjUwNDA1MDUxMTEwWjAYMRYwFAYD VQQDEw02N2U3ODBlZS04YWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PM0ZV55CTdzwUDZ1kxXaA9Ifl2pSxAnV08jZH2ofRb0kGUwWtBb2xvfpsdt QGE2jDuXGMT7Ce5ic4nmBZii0D21Vw66ZOEMJmk0LWL9Vkn0vXRiP8ifKKHlRh4q D9151j+noK7gQvsBTUuvk4aELmtrp5AzBiBGo+9NYEDIr83+H9EpinaYhxsl+w8Y 8F3RdW32xlqIBRDGYhqlDt97PHz2IvdXL3AXjrRRVD8aW3R6S7wr2Sh1j/3ZjiLv sA/9ZSyBxuLpgyuEDOecM/rvJbop5pdZxWlenRt8fWELtaVrxbmZJH4+oranZuZh YW7a5YIgvO6ND5nvVODatinXwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiZFZ+L Zra+VZWYqXKN4c/lCT8UMB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjJGRC82MzhENjJBMEUxMTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdw UTUwcnJ1Vzl3RU1wSEVlNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgHiEMIOrqtrsSPxgimgeAIE2gDc8+Y8jwsFPwoQQmheydIS1dxC0z fEJ8vlkTvXhQqOw8ss100fGy/pxKD1cRLi/9pZfNylg8bvs1LKRyIoMco/Iulwkf ZRzQRUcyBZprz6HEw0KvGjjfF+kv1Y4QmkaNDUGW4f3IDO+nb7yI0XIWTL69eiBv 77HvngWuam3TzSLC8DdfCr3s8CitCrUFnWAyVF2qQMdUmTz8ZWRTu2V8CJexn7nE ykRtrtDxhwpgEcH1nIDl0xhP+SlSvvzJw2NKFby9FK1OJbJUA6ikVDnBT99Tendq vT8MSSxSSC4Eh5yssehNow5MOMxjcUHZ -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:47 2025 by rpki-client