$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: 9ewAoFS/fSQpPCpO7gj9p7IS2HZUW3aOqNsI7b7kDMo= Subject key identifier: F6:15:5A:14:77:8C:C2:A8:3A:2C:DC:A7:E4:92:86:BA:89:A6:4B:9F Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 4D Signing time: Sat 29 Mar 2025 06:39:22 +0000 Manifest this update: Sat 29 Mar 2025 06:39:22 +0000 Manifest next update: Sat 05 Apr 2025 06:39:22 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: VUIOpP8csoQ18ln+G71qxMwdrAlq9TPXOGTbL5Sv3bw=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: G7IWl5XTyAgfWE48sRsXaPS6r+SeXaYM6TeXGgT/8zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025 Validity Not Before: Mar 29 06:39:22 2025 GMT Not After : Apr 5 06:39:22 2025 GMT Subject: CN=67e7959a-8ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cf:83:e3:17:c9:a1:c4:27:69:1a:72:6c:aa: 86:85:c9:96:19:62:4e:b2:ff:67:5f:71:6e:6b:49: 4e:b1:76:d5:01:60:0e:83:7a:cc:da:91:ab:d1:80: a6:5e:18:1e:8a:97:eb:d6:11:d0:c0:a9:75:74:e3: 46:82:37:bf:99:0e:13:ea:5c:ba:a9:36:5a:e5:cd: 98:75:96:79:d6:3f:2e:99:14:72:c5:7d:e6:db:8f: 24:6e:0d:62:80:c3:85:c9:6c:88:b4:bb:26:8a:75: f4:7c:7b:0d:70:8d:6a:d6:c3:80:1a:36:ec:44:98: 66:f0:bb:d6:27:30:ca:97:6a:45:f8:36:06:d4:af: 92:63:74:ad:5d:f8:9d:5b:a6:98:04:86:25:e4:4c: 2e:03:1c:c4:c3:16:68:44:f3:b3:4b:9e:f2:57:12: 42:ba:50:d2:9b:ee:2d:0f:28:c9:5b:4f:d8:28:98: 23:d1:c4:5b:80:4c:c0:76:cc:4f:b8:4f:65:67:cc: 61:02:18:ba:3a:85:77:30:94:bb:45:e7:cd:64:a9: 33:57:2a:54:a3:f7:18:e2:b7:cf:69:82:42:3c:dd: 40:f7:ab:2f:51:e0:9b:93:5a:5c:31:18:43:ee:4e: 46:a7:75:e5:b1:4c:48:61:4d:c7:d7:a5:4a:2c:3f: e7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:15:5A:14:77:8C:C2:A8:3A:2C:DC:A7:E4:92:86:BA:89:A6:4B:9F X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:3f:eb:ec:ac:9e:df:8e:8e:6a:13:89:22:85:68:d3:16:c3: 6b:54:67:51:7a:07:cf:08:81:6d:6d:b1:02:4f:47:fb:6a:1e: 01:80:5f:eb:3f:2b:2d:c7:94:e3:91:f7:45:9d:2f:13:ca:33: 6e:ed:30:bf:6a:2a:48:f9:77:45:ad:9b:6a:c6:1e:07:eb:53: 27:69:13:4e:16:53:4a:99:68:4e:e3:a8:9d:47:6e:66:27:e3: 67:7f:c2:4f:2e:29:da:f8:43:fc:27:90:e6:1a:68:7c:4a:3a: f0:3d:ed:65:7f:bf:a5:cd:f7:0b:95:e4:23:3e:5f:62:18:0b: 75:68:26:fb:50:eb:45:9a:9b:96:e8:b5:01:ec:ba:c7:f2:d3: 11:17:af:e6:52:23:66:7a:46:ae:de:da:ca:e8:27:b4:5a:34: f2:97:3d:9c:5e:e9:4c:52:94:89:2d:7d:ab:0c:ad:71:81:dd: 65:ac:c3:7d:3a:dc:f9:9e:91:ed:34:c8:cf:d7:7d:3e:2d:2c: f4:88:1e:73:d2:43:b3:58:21:34:81:3f:9f:5d:82:31:0c:24: a0:b1:34:76:17:bf:10:7c:66:bf:42:08:e2:89:b4:17:71:97: 4e:6f:ee:26:42:e6:4c:76:b2:ba:ed:b6:06:ce:61:b1:ca:f8: 4c:90:34:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoNUYwMDRENTdFQjM2RjQyNjcyRTY2RjMwMDVGNjQ2OUI2 Mjg5MTcxQjAeFw0yNTAzMjkwNjM5MjJaFw0yNTA0MDUwNjM5MjJaMBgxFjAUBgNV BAMTDTY3ZTc5NTlhLThjZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtz4PjF8mhxCdpGnJsqoaFyZYZYk6y/2dfcW5rSU6xdtUBYA6DeszakavRgKZe GB6Kl+vWEdDAqXV040aCN7+ZDhPqXLqpNlrlzZh1lnnWPy6ZFHLFfebbjyRuDWKA w4XJbIi0uyaKdfR8ew1wjWrWw4AaNuxEmGbwu9YnMMqXakX4NgbUr5JjdK1d+J1b ppgEhiXkTC4DHMTDFmhE87NLnvJXEkK6UNKb7i0PKMlbT9gomCPRxFuATMB2zE+4 T2VnzGECGLo6hXcwlLtF581kqTNXKlSj9xjit89pgkI83UD3qy9R4JuTWlwxGEPu TkandeWxTEhhTcfXpUosP+efAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9hVaFHeM wqg6LNyn5JKGuommS58wHwYDVR0jBBgwFoAUXwBNV+s29CZy5m8wBfZGm2KJFxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1Lzk1NkY2NjJDOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHdCTlYtczI5Q1p5NW04d0JmWkdtMktKRnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx MDI1Lzk1NkY2NjJDOUQ4NDExRUY4MTdFMTQyMEM0RjlBRTAyL1h3Qk5WLXMyOUNa eTVtOHdCZlpHbTJLSkZ4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADU/6+ysnt+OjmoTiSKFaNMWw2tUZ1F6B88IgW1tsQJPR/tqHgGAX+s/ Ky3HlOOR90WdLxPKM27tML9qKkj5d0Wtm2rGHgfrUydpE04WU0qZaE7jqJ1HbmYn 42d/wk8uKdr4Q/wnkOYaaHxKOvA97WV/v6XN9wuV5CM+X2IYC3VoJvtQ60Wam5bo tQHsusfy0xEXr+ZSI2Z6Rq7e2sroJ7RaNPKXPZxe6UxSlIktfasMrXGB3WWsw306 3Pmeke00yM/XfT4tLPSIHnPSQ7NYITSBP59dgjEMJKCxNHYXvxB8Zr9CCOKJtBdx l05v7iZC5kx2srrttgbOYbHK+EyQNK4= -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:09 2025 by rpki-client