$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft File: XDfN_Mjp6QxBFko5HukDtN5U37E.mft (raw, json) Hash identifier: CpDvJZhLMcmyRx6R/fUuJ9eoo4KQWURh261CEny7AdM= Subject key identifier: 0D:98:0A:1A:31:2D:A0:24:48:8A:82:49:68:4E:8A:CF:3F:75:EA:86 Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft Manifest number: 061C Signing time: Fri 28 Mar 2025 23:01:55 +0000 Manifest this update: Fri 28 Mar 2025 23:01:54 +0000 Manifest next update: Fri 04 Apr 2025 23:01:54 +0000 Files and hashes: 1: XDfN_Mjp6QxBFko5HukDtN5U37E.crl (hash: L9papCrs8a+znQQpPLXuxbUL0e2un2jGCKK+8/dRPFQ=) 2: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (hash: oheVgwgcc5IUYSIleOKjSz3O1d0TWSDn9p0tlk0co7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA Validity Not Before: Mar 28 23:01:54 2025 GMT Not After : Apr 4 23:01:54 2025 GMT Subject: CN=67e72a62-3e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:5c:e4:98:d8:e9:26:ac:aa:86:4f:00:49: d5:18:cc:a6:cc:80:da:10:e5:b7:5a:d8:85:82:ec: 04:5a:0d:92:64:98:49:26:da:bd:32:e2:6a:6b:4e: ca:7c:72:36:d5:ca:5f:c5:6d:72:a9:3c:91:ab:5a: 24:02:76:6f:87:ba:f2:ee:30:3f:08:97:b0:b9:24: 10:fb:da:97:cb:ec:f0:51:2d:e8:db:2d:94:5a:01: e8:8b:dd:83:d7:84:ce:36:32:0a:07:bf:fa:1b:30: ef:01:2a:22:26:bc:a5:83:0b:fc:7a:10:6f:1f:d5: 0f:6a:24:f2:0f:64:5c:4a:34:53:bf:28:f6:1f:71: 21:98:f3:23:b1:77:22:29:5c:32:c2:f7:4f:a7:64: b9:67:d6:fb:78:f5:3d:51:8d:e4:53:f0:2c:43:80: 33:e5:9f:92:39:0f:1b:66:e4:be:82:14:04:91:50: b6:c0:6e:fb:c0:2e:e3:30:84:40:31:b8:3a:a9:a2: 3a:39:db:c5:ea:fa:86:25:5c:19:9a:a0:45:f0:3f: 82:74:12:75:96:84:ce:f2:c1:b9:99:8d:68:13:ce: ec:47:17:75:84:37:68:e6:b9:b0:1e:2a:30:a3:75: 02:0a:2c:15:3f:72:20:7f:4a:39:20:3a:a2:73:b0: 08:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:98:0A:1A:31:2D:A0:24:48:8A:82:49:68:4E:8A:CF:3F:75:EA:86 X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:0b:1e:30:16:f8:5f:03:95:0c:2a:46:fb:ea:91:57:92:dc: 45:d7:44:a0:e5:74:1f:0f:02:d5:98:d0:35:e0:21:48:89:15: c9:03:ca:e5:ee:6b:1b:b0:e6:02:33:8f:fd:a4:36:c3:8e:9a: e5:57:bd:d8:0a:28:78:fc:ad:c2:1a:61:81:ca:a4:bf:67:fe: 0f:c3:3e:8f:a0:48:f1:a6:67:cf:52:5a:88:18:b2:e7:0e:33: cf:57:9e:eb:69:9f:da:12:88:94:7f:30:7c:31:1b:0c:de:b2: c1:a4:ce:27:04:5c:2b:bb:be:7b:9e:2e:53:1e:9d:aa:96:fa: 49:ee:4a:be:60:e9:d2:46:26:c8:e2:7a:8e:6b:5a:f0:b1:1d: a0:18:14:99:fe:ab:60:97:09:d9:4d:6a:4c:49:84:83:a4:8d: 74:bf:97:8f:9a:b3:e6:2e:13:14:f6:b2:ad:ee:8e:da:89:b8: 95:f9:57:77:bf:d8:69:b4:73:8b:38:45:52:de:fc:c4:c9:16: 37:46:47:7f:8a:f4:c8:c1:ca:54:32:c0:7c:cc:6c:ad:15:29: f3:e7:cb:30:52:72:88:80:40:3d:a3:c2:d7:dd:9e:6d:fb:f6: 55:bf:19:1f:87:d7:d5:bc:b2:58:ca:73:8d:df:18:6d:d2:4e: 7f:59:39:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjUwMzI4MjMwMTU0WhcNMjUwNDA0MjMwMTU0WjAYMRYwFAYD VQQDEw02N2U3MmE2Mi0zZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiRc5JjY6SasqoZPAEnVGMymzIDaEOW3WtiFguwEWg2SZJhJJtq9MuJqa07K fHI21cpfxW1yqTyRq1okAnZvh7ry7jA/CJewuSQQ+9qXy+zwUS3o2y2UWgHoi92D 14TONjIKB7/6GzDvASoiJrylgwv8ehBvH9UPaiTyD2RcSjRTvyj2H3EhmPMjsXci KVwywvdPp2S5Z9b7ePU9UY3kU/AsQ4Az5Z+SOQ8bZuS+ghQEkVC2wG77wC7jMIRA Mbg6qaI6OdvF6vqGJVwZmqBF8D+CdBJ1loTO8sG5mY1oE87sRxd1hDdo5rmwHiow o3UCCiwVP3Igf0o5IDqic7AIgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2YChox LaAkSIqCSWhOis8/deqGMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUVCQS84Mzk0RTI1MDkxRUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZR eEJGa281SHVrRHRONVUzN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxCx4wFvhfA5UMKkb76pFXktxF10Sg5XQfDwLVmNA14CFIiRXJA8rl 7msbsOYCM4/9pDbDjprlV73YCih4/K3CGmGByqS/Z/4Pwz6PoEjxpmfPUlqIGLLn DjPPV57raZ/aEoiUfzB8MRsM3rLBpM4nBFwru757ni5THp2qlvpJ7kq+YOnSRibI 4nqOa1rwsR2gGBSZ/qtglwnZTWpMSYSDpI10v5ePmrPmLhMU9rKt7o7aibiV+Vd3 v9hptHOLOEVS3vzEyRY3Rkd/ivTIwcpUMsB8zGytFSnz58swUnKIgEA9o8LX3Z5t +/ZVvxkfh9fVvLJYynON3xht0k5/WTm2 -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:08 2025 by rpki-client