$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: rfDjvKODxwkp8yFndnAMSpEBc+9YORvvHsmDsZOfSsI= Subject key identifier: D2:63:84:D9:FE:33:F7:48:F0:35:8D:F8:82:65:89:14:89:73:7A:26 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 09C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 09BB Signing time: Fri 18 Apr 2025 20:05:17 +0000 Manifest this update: Fri 18 Apr 2025 20:05:17 +0000 Manifest next update: Fri 25 Apr 2025 20:05:17 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: 8xE/4j+fs6rDzs7ffKtQgRukIxSSpZNpziAHNkj+Igw=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 18:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2504 (0x9c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Apr 18 20:05:17 2025 GMT Not After : Apr 25 20:05:17 2025 GMT Subject: CN=6802b07d-fd43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a5:81:8d:1d:1f:3d:bd:ea:b2:49:a3:7b:7f: 71:95:e2:b0:1d:8f:53:b3:9a:8f:4a:d4:a0:73:38: e3:1f:49:79:f4:fa:28:5d:69:4d:18:41:58:d0:e5: 14:c6:41:47:36:22:58:4c:ac:8e:38:fe:5d:02:4c: 8d:5a:9e:df:01:2f:72:58:d8:0c:67:70:b9:b7:13: f7:16:de:8d:68:28:90:ea:fc:04:65:bf:a4:99:e4: f8:d4:42:a7:b5:5f:77:50:9a:13:76:87:d1:03:9f: d1:7e:04:61:21:ce:4f:88:22:fd:d6:c0:0a:72:e9: e9:f0:dd:e0:ca:2c:21:88:d3:3a:85:7d:41:9c:7c: b4:de:c2:b2:41:88:a0:97:e2:10:68:0b:38:50:68: 5b:19:9e:d6:36:8a:e4:1c:3d:d4:02:43:c1:3d:93: 15:7a:a0:1e:67:05:cd:ee:0c:be:43:5f:3e:f5:97: 81:fa:ca:24:a3:32:48:14:83:88:2a:41:df:ef:67: 36:02:a4:1c:3c:f3:6a:02:06:4a:a7:34:83:63:61: b3:6b:86:f0:68:1a:34:5e:68:c2:14:33:54:42:ad: cf:b9:f4:2f:9d:61:24:88:3f:2f:1f:39:fc:09:78: c4:b6:5f:ff:6b:97:9d:a4:9a:db:34:94:06:58:e1: 7e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:63:84:D9:FE:33:F7:48:F0:35:8D:F8:82:65:89:14:89:73:7A:26 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:5f:46:30:dc:4e:57:82:b1:cd:44:74:6f:38:7f:b0:2c:42: 6e:5f:60:25:91:7f:7c:6b:dd:ca:c1:04:3f:ad:d2:45:55:c0: 3c:10:1d:f4:e9:77:ae:64:20:c9:a6:5c:8d:2b:5f:e3:53:c8: 4e:ba:b4:e5:0d:cb:bd:60:bc:e7:84:8c:18:95:63:4e:f5:24: 93:0d:bb:2a:7f:36:cd:8a:da:08:66:86:09:af:2b:77:5c:52: 3e:b9:45:9c:8c:e2:a4:9a:4e:53:38:23:dd:d6:72:81:06:75: 28:c1:bf:b4:8b:7e:fa:14:a9:fc:62:1e:17:f1:1d:6b:73:de: f9:93:d3:2d:02:0f:ae:fd:d8:b7:a8:e7:32:81:2f:9a:ed:0e: 54:3b:72:a0:4f:e3:fe:98:64:54:88:10:42:ea:89:0b:54:6d: 96:e9:92:64:4d:09:2c:f0:3b:4f:08:2f:4e:42:f9:e0:ef:64: f3:25:82:3a:c9:17:3d:c1:91:62:5d:c2:6a:dc:d3:ae:8c:10: 3d:37:c6:ca:15:97:12:db:62:49:5a:2f:8c:6c:d3:96:a1:35: e1:9f:ad:b8:31:b6:ad:b5:41:17:35:08:6c:4a:7a:51:e6:79: 5b:45:7e:da:07:77:5e:d8:84:c9:b8:1b:6d:75:64:f8:a9:0a: 8f:c6:ad:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUwNDE4MjAwNTE3WhcNMjUwNDI1MjAwNTE3WjAYMRYwFAYD VQQDEw02ODAyYjA3ZC1mZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaWBjR0fPb3qskmje39xleKwHY9Ts5qPStSgczjjH0l59PooXWlNGEFY0OUU xkFHNiJYTKyOOP5dAkyNWp7fAS9yWNgMZ3C5txP3Ft6NaCiQ6vwEZb+kmeT41EKn tV93UJoTdofRA5/RfgRhIc5PiCL91sAKcunp8N3gyiwhiNM6hX1BnHy03sKyQYig l+IQaAs4UGhbGZ7WNorkHD3UAkPBPZMVeqAeZwXN7gy+Q18+9ZeB+sokozJIFIOI KkHf72c2AqQcPPNqAgZKpzSDY2Gza4bwaBo0XmjCFDNUQq3PufQvnWEkiD8vHzn8 CXjEtl//a5edpJrbNJQGWOF+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJjhNn+ M/dI8DWN+IJliRSJc3omMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2X0Yw3E5XgrHNRHRvOH+wLEJuX2AlkX98a93KwQQ/rdJFVcA8EB30 6XeuZCDJplyNK1/jU8hOurTlDcu9YLznhIwYlWNO9SSTDbsqfzbNitoIZoYJryt3 XFI+uUWcjOKkmk5TOCPd1nKBBnUowb+0i376FKn8Yh4X8R1rc975k9MtAg+u/di3 qOcygS+a7Q5UO3KgT+P+mGRUiBBC6okLVG2W6ZJkTQks8DtPCC9OQvng72TzJYI6 yRc9wZFiXcJq3NOujBA9N8bKFZcS22JJWi+MbNOWoTXhn624MbattUEXNQhsSnpR 5nlbRX7aB3de2ITJuBttdWT4qQqPxq1P -----END CERTIFICATE-----Generated at Sat Apr 19 02:13:17 2025 by rpki-client