$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft File: xIoOQPt_45dbEsI-AwrFTFIFcWM.mft (raw, json) Hash identifier: A0EAEYcGsn+XNhVkKvSaCWZDjzPIyXXA3kOmN7jdp1s= Subject key identifier: F4:AC:AA:94:5E:53:DA:12:F2:45:2D:B6:CD:F4:E7:2A:97:D3:2C:F0 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 053E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft Manifest number: 053A Signing time: Fri 04 Apr 2025 23:34:48 +0000 Manifest this update: Fri 04 Apr 2025 23:34:48 +0000 Manifest next update: Fri 11 Apr 2025 23:34:48 +0000 Files and hashes: 1: xIoOQPt_45dbEsI-AwrFTFIFcWM.crl (hash: oc9Aeal0VOG53Im95KK3NN1QPN1QGSb9NH0CuAjtvDM=) 2: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (hash: tglvnraOKLhDlwg3ok6ZNO34EJEOJeyX625ohOQmYAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC Validity Not Before: Apr 4 23:34:48 2025 GMT Not After : Apr 11 23:34:48 2025 GMT Subject: CN=67f06c98-2885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:04:3c:0f:28:2e:82:5b:91:cc:65:40:ec:5f: a2:67:ea:75:39:c5:6d:8b:5c:77:e8:b0:91:5f:5e: 42:59:13:0d:b3:be:f6:9d:50:20:f8:de:13:63:5d: 80:c7:50:43:32:8e:24:fc:95:a3:c9:cc:d9:a0:a8: 45:ca:d0:21:a0:59:6a:08:0f:db:46:97:ad:e2:47: f8:8b:31:6c:71:f0:ac:9b:3d:e6:f8:e3:24:91:2a: 6c:56:9f:a3:55:14:49:db:e0:44:47:ee:c4:ab:da: 74:6c:c9:f4:1b:d4:2e:28:7b:9e:27:15:66:8d:7a: 8b:a8:cb:69:d0:dd:c5:12:09:0b:9f:fb:ba:81:3f: d4:36:be:5d:29:a8:ae:89:bd:eb:a3:b3:7a:6c:53: fc:19:f8:d3:2a:4c:5d:74:d1:3a:30:69:bf:16:f2: 1e:2c:bc:cc:ac:cd:c1:e8:3b:c4:50:0f:f0:0f:ae: 6a:02:06:bf:92:11:de:30:fa:23:fc:9e:65:b3:0c: fd:e5:b5:04:ba:3a:36:cb:8f:b7:a6:21:6e:b2:72: 8d:38:8f:76:f2:58:79:b7:a3:58:3c:06:64:e2:a0: 8a:85:a5:29:03:fc:b4:3b:e4:b7:3b:fd:81:2b:e8: 51:80:e5:ba:d4:d2:8f:75:dd:9b:de:28:55:d9:78: 8a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AC:AA:94:5E:53:DA:12:F2:45:2D:B6:CD:F4:E7:2A:97:D3:2C:F0 X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:0b:8c:cf:93:8d:10:a2:73:27:4c:6d:ec:62:7e:3b:9b:91: 60:cb:e9:9d:6b:f6:b7:2f:c9:64:66:65:cd:43:00:1d:54:b7: 2b:dd:43:48:b4:29:7a:2c:0b:91:df:f1:36:af:43:41:80:4c: f5:5d:09:2f:62:1c:8c:ca:99:52:19:7a:16:c3:29:b6:20:c4: 8a:ad:37:0f:b9:54:84:b4:95:4e:21:81:21:f3:77:ca:58:53: b8:8b:93:7c:40:18:0a:0b:ac:3f:98:71:87:86:ec:76:20:9c: fc:dc:30:d7:e3:2d:7b:59:85:2e:b5:09:3a:f1:bd:94:d7:89: 62:58:bb:79:bb:9b:56:b9:cf:9c:70:3c:da:1d:5e:ed:bb:c0: 24:14:43:02:77:0a:6e:51:e0:1d:51:2d:9b:d3:43:78:6f:e4: 58:6f:94:dd:b3:e0:7e:cc:65:f2:5a:9f:f0:f7:b4:8a:35:31: 4d:fd:c0:0b:cf:4c:77:97:fc:71:01:4f:6f:96:0c:64:b0:cb: 68:32:a1:7c:4e:84:1f:31:35:27:47:b0:b8:ab:97:77:8e:41: 9b:16:f6:70:77:8a:d9:6b:f3:5d:f8:bb:cd:f5:f9:b9:7e:e2: 62:04:61:2e:67:7c:e5:f6:39:31:f4:48:28:da:31:53:de:18: 0e:17:a1:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjUwNDA0MjMzNDQ4WhcNMjUwNDExMjMzNDQ4WjAYMRYwFAYD VQQDEw02N2YwNmM5OC0yODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wQ8DygugluRzGVA7F+iZ+p1OcVti1x36LCRX15CWRMNs772nVAg+N4TY12A x1BDMo4k/JWjyczZoKhFytAhoFlqCA/bRpet4kf4izFscfCsmz3m+OMkkSpsVp+j VRRJ2+BER+7Eq9p0bMn0G9QuKHueJxVmjXqLqMtp0N3FEgkLn/u6gT/UNr5dKaiu ib3ro7N6bFP8GfjTKkxddNE6MGm/FvIeLLzMrM3B6DvEUA/wD65qAga/khHeMPoj /J5lswz95bUEujo2y4+3piFusnKNOI928lh5t6NYPAZk4qCKhaUpA/y0O+S3O/2B K+hRgOW61NKPdd2b3ihV2XiKzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSsqpRe U9oS8kUtts305yqX0yzwMB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhCQy85MjA5MjM5MEVBRDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1 ZGJFc0ktQXdyRlRGSUZjV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeC4zPk40QonMnTG3sYn47m5Fgy+mda/a3L8lkZmXNQwAdVLcr3UNI tCl6LAuR3/E2r0NBgEz1XQkvYhyMyplSGXoWwym2IMSKrTcPuVSEtJVOIYEh83fK WFO4i5N8QBgKC6w/mHGHhux2IJz83DDX4y17WYUutQk68b2U14liWLt5u5tWuc+c cDzaHV7tu8AkFEMCdwpuUeAdUS2b00N4b+RYb5Tds+B+zGXyWp/w97SKNTFN/cAL z0x3l/xxAU9vlgxksMtoMqF8ToQfMTUnR7C4q5d3jkGbFvZwd4rZa/Nd+LvN9fm5 fuJiBGEuZ3zl9jkx9Ego2jFT3hgOF6Es -----END CERTIFICATE-----Generated at Sat Apr 5 11:44:27 2025 by rpki-client