$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: rCFIFPy4K6E25w4HUYr1OjS3yIY0+b8cJSnT6zHKAUo= Subject key identifier: 27:B4:7B:65:40:99:78:4A:41:1F:2A:B4:B2:2D:8D:F8:9A:0D:60:3F Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01A1 Signing time: Thu 03 Apr 2025 02:42:19 +0000 Manifest this update: Thu 03 Apr 2025 02:42:19 +0000 Manifest next update: Thu 10 Apr 2025 02:42:19 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: cQJCMxvL6sR9z+Lrp83S2eiw+4mFIXUjShDdjnUrspM=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240 Validity Not Before: Apr 3 02:42:19 2025 GMT Not After : Apr 10 02:42:19 2025 GMT Subject: CN=67edf58b-7697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:85:bf:d9:14:17:d8:69:08:bd:46:bc:9d:8b: 29:76:74:e3:ab:0b:82:e3:d7:aa:fc:1f:37:11:84: 3c:a8:0e:12:85:4e:14:77:2a:59:21:4d:81:95:0b: c5:37:b4:57:13:ff:5d:30:0a:5f:63:3f:d0:8c:8c: c3:fd:bc:0c:1c:c1:69:10:6e:0a:5f:2d:56:e8:7b: ec:00:09:d7:3a:92:f2:56:7f:36:a3:a7:e7:ea:a9: 2a:d4:e8:26:f0:fc:8e:d9:49:af:82:9a:b5:56:84: b7:c3:be:b4:f2:7f:f0:b7:68:fe:52:36:e9:9d:13: a6:b7:3b:64:05:68:82:f8:5b:f6:c4:6e:ad:51:89: 58:c4:63:95:b3:c0:29:aa:4f:e0:6c:ec:d3:51:ee: 13:58:52:f1:dc:bc:71:5f:98:e9:7c:8b:fa:38:73: b5:b0:79:1b:42:fd:fe:0c:28:2d:d8:b7:46:9d:2d: 00:34:2f:20:55:ef:9d:c1:4e:20:13:bd:62:33:26: 5a:e6:4f:23:c3:9e:fe:44:36:ca:4a:90:eb:ad:73: 5c:f7:98:8e:6b:07:ec:a9:84:ac:a4:ca:08:ee:ea: 14:4f:5d:9b:43:79:62:f3:49:e7:72:f1:55:60:05: e2:2e:06:e2:86:7d:c2:a5:fc:e5:2c:52:7f:ab:58: da:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B4:7B:65:40:99:78:4A:41:1F:2A:B4:B2:2D:8D:F8:9A:0D:60:3F X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ee:80:90:eb:a2:8e:15:7b:16:e9:9b:fa:5d:dc:65:ea:f4: a9:00:b6:15:55:7a:ac:0a:9b:2b:85:69:b3:40:96:fd:65:aa: 92:cb:cd:6a:fe:12:d7:dc:11:7f:f9:0d:7b:0e:8e:75:e3:05: 38:0a:68:e2:4f:cf:b2:a4:7a:a8:b1:b9:46:23:bb:4f:39:f5: 19:a2:7f:d2:23:b0:d3:94:53:18:cd:72:d5:5e:96:1f:1f:66: b9:8c:f5:70:e6:01:30:a6:85:e2:2e:f0:22:7f:f0:a4:21:31: 2b:fd:7b:ea:17:8a:25:fc:8d:cc:8d:03:4a:08:eb:8f:19:85: a7:f9:7b:02:78:7d:df:45:b7:00:f8:97:b2:bc:7f:7e:ce:2e: 1d:06:33:ae:6b:9c:92:42:e3:58:34:21:aa:10:4a:a2:1e:d4: cb:36:e7:c9:db:f6:ba:88:bc:d9:bf:1b:c7:a3:a9:cf:ee:2a: 21:89:4b:40:b8:28:22:b8:ef:29:a7:b6:d6:43:56:79:5b:bd: bc:b1:1d:32:98:eb:9d:91:e1:35:f0:ee:b1:a8:96:c4:d5:6f: c7:73:c1:e1:06:45:45:67:33:51:d8:23:d1:57:15:08:3e:60: 1a:7c:55:eb:08:78:bc:53:87:f2:8f:e0:5f:ac:b6:06:19:1a: 2e:09:d8:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwNDAzMDI0MjE5WhcNMjUwNDEwMDI0MjE5WjAYMRYwFAYD VQQDEw02N2VkZjU4Yi03Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54W/2RQX2GkIvUa8nYspdnTjqwuC49eq/B83EYQ8qA4ShU4UdypZIU2BlQvF N7RXE/9dMApfYz/QjIzD/bwMHMFpEG4KXy1W6HvsAAnXOpLyVn82o6fn6qkq1Ogm 8PyO2Umvgpq1VoS3w7608n/wt2j+UjbpnROmtztkBWiC+Fv2xG6tUYlYxGOVs8Ap qk/gbOzTUe4TWFLx3LxxX5jpfIv6OHO1sHkbQv3+DCgt2LdGnS0ANC8gVe+dwU4g E71iMyZa5k8jw57+RDbKSpDrrXNc95iOawfsqYSspMoI7uoUT12bQ3li80nncvFV YAXiLgbihn3CpfzlLFJ/q1ja/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCe0e2VA mXhKQR8qtLItjfiaDWA/MB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE7oCQ66KOFXsW6Zv6Xdxl6vSpALYVVXqsCpsrhWmzQJb9ZaqSy81q /hLX3BF/+Q17Do514wU4CmjiT8+ypHqosblGI7tPOfUZon/SI7DTlFMYzXLVXpYf H2a5jPVw5gEwpoXiLvAif/CkITEr/XvqF4ol/I3MjQNKCOuPGYWn+XsCeH3fRbcA +JeyvH9+zi4dBjOua5ySQuNYNCGqEEqiHtTLNufJ2/a6iLzZvxvHo6nP7iohiUtA uCgiuO8pp7bWQ1Z5W728sR0ymOudkeE18O6xqJbE1W/Hc8HhBkVFZzNR2CPRVxUI PmAafFXrCHi8U4fyj+BfrLYGGRouCdg1 -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:05 2025 by rpki-client