$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: F3p8q94BGC/WgWDY6KTzvixZeXrP+bFChQDnsSAO1Ow= Subject key identifier: 0B:1D:5C:D6:1C:84:CD:9B:45:81:A3:27:59:3A:A3:BF:52:8D:EC:48 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 02D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 02D8 Signing time: Thu 03 Apr 2025 01:21:22 +0000 Manifest this update: Thu 03 Apr 2025 01:21:21 +0000 Manifest next update: Thu 10 Apr 2025 01:21:21 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: 896j5jiN2V5RxZPA3lONq0YrN4H2FnQlnz41/vtH/rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561 Validity Not Before: Apr 3 01:21:21 2025 GMT Not After : Apr 10 01:21:21 2025 GMT Subject: CN=67ede291-6b5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:0b:aa:af:b9:ab:2e:61:34:1d:3a:41:84: 4e:ef:cf:f1:9b:8a:57:47:dc:c5:0c:0f:0c:86:e6: 72:18:8d:43:82:3b:aa:b2:ef:09:e0:81:8e:7a:fd: 2c:c3:f8:14:18:25:34:61:94:83:be:bb:85:63:07: 78:01:f9:7b:a8:59:44:81:1a:d9:98:3d:d3:37:55: 91:23:d5:11:3f:96:17:cf:1d:ff:4e:e7:9f:c6:61: 59:6f:1e:91:de:98:a6:a3:dd:8b:0f:ca:66:0d:81: 17:88:7b:69:d2:55:dd:37:35:bd:0c:e1:17:6e:f4: be:56:5a:f5:83:7c:c7:4c:46:cd:d1:b3:0e:2b:5d: e3:c9:39:9f:1c:4e:30:2f:4c:9a:6b:2c:71:7d:01: 34:13:e6:81:6b:c9:d5:68:9f:64:b4:d8:ec:84:bf: f0:44:c9:1c:60:3c:3e:27:41:48:f2:48:dc:b3:34: 0b:d9:8f:44:98:d5:99:4d:c2:98:e8:a4:4e:93:2d: f7:a3:77:94:44:b4:cd:0b:72:f0:e7:6d:11:70:59: 7c:5a:8e:90:04:3a:db:de:bf:f8:f7:5d:34:c1:ee: f6:48:31:2f:53:7b:c2:31:b0:03:fc:6a:a5:7f:d8: b5:24:19:69:fe:84:84:87:49:32:27:b5:8b:e8:35: d6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1D:5C:D6:1C:84:CD:9B:45:81:A3:27:59:3A:A3:BF:52:8D:EC:48 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:19:a6:a7:b3:05:ba:c2:c5:af:07:c5:59:8c:af:51:64:6f: f1:d5:7a:fa:7c:27:18:e8:68:00:1c:8f:ee:1e:77:f4:63:96: b9:20:42:5e:c8:6a:ab:45:03:d8:34:66:e2:fc:56:95:96:84: e1:74:00:1a:96:f6:9d:f2:80:64:7b:49:49:6c:22:0d:4c:b5: 79:c4:3f:83:a9:49:76:27:13:72:86:6d:00:58:db:30:23:a7: 8a:42:b4:49:0c:69:59:f7:6b:18:09:fe:9b:e3:7f:2f:01:0a: 0d:21:0f:3f:0e:3f:64:d5:e9:2a:09:a8:ab:88:3f:83:35:0f: fe:22:70:bb:6d:2c:21:b7:bb:1a:38:59:06:c5:7b:d0:b4:5e: 03:6e:8d:e5:c9:2a:b0:c9:e6:02:a8:bf:4b:05:a7:57:cd:a8: 03:02:af:17:b1:cc:a3:13:f2:7e:24:b9:48:5d:03:b0:ac:77: 92:50:68:62:19:9e:ec:48:59:55:69:a6:2e:55:c2:b5:a0:10: c1:3b:a2:1e:25:a8:66:d7:92:38:ec:be:91:be:de:0a:dd:cd: a1:a4:09:2a:40:e7:4f:85:06:ab:d6:78:93:69:25:2b:81:37: d3:f7:73:df:dd:d4:1e:62:da:8c:7e:0e:af:12:b1:2d:12:45: d8:ba:7d:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUwNDAzMDEyMTIxWhcNMjUwNDEwMDEyMTIxWjAYMRYwFAYD VQQDEw02N2VkZTI5MS02YjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dYLqq+5qy5hNB06QYRO78/xm4pXR9zFDA8MhuZyGI1Dgjuqsu8J4IGOev0s w/gUGCU0YZSDvruFYwd4Afl7qFlEgRrZmD3TN1WRI9URP5YXzx3/TuefxmFZbx6R 3pimo92LD8pmDYEXiHtp0lXdNzW9DOEXbvS+Vlr1g3zHTEbN0bMOK13jyTmfHE4w L0yaayxxfQE0E+aBa8nVaJ9ktNjshL/wRMkcYDw+J0FI8kjcszQL2Y9EmNWZTcKY 6KROky33o3eURLTNC3Lw520RcFl8Wo6QBDrb3r/49100we72SDEvU3vCMbAD/Gql f9i1JBlp/oSEh0kyJ7WL6DXWnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsdXNYc hM2bRYGjJ1k6o79SjexIMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHGaanswW6wsWvB8VZjK9RZG/x1Xr6fCcY6GgAHI/uHnf0Y5a5IEJe yGqrRQPYNGbi/FaVloThdAAalvad8oBke0lJbCINTLV5xD+DqUl2JxNyhm0AWNsw I6eKQrRJDGlZ92sYCf6b438vAQoNIQ8/Dj9k1ekqCairiD+DNQ/+InC7bSwht7sa OFkGxXvQtF4Dbo3lySqwyeYCqL9LBadXzagDAq8XscyjE/J+JLlIXQOwrHeSUGhi GZ7sSFlVaaYuVcK1oBDBO6IeJahm15I47L6Rvt4K3c2hpAkqQOdPhQar1niTaSUr gTfT93Pf3dQeYtqMfg6vErEtEkXYun0g -----END CERTIFICATE-----Generated at Fri Apr 4 21:40:04 2025 by rpki-client