$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: LF/W+2BXfERUKRSZvoSM1MywNZhLNryLvEejUOyXY9c= Subject key identifier: B6:DB:E2:58:B6:B5:03:6E:26:B4:32:79:E7:04:DB:93:99:F1:25:AC Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 0116 Signing time: Thu 03 Apr 2025 04:05:03 +0000 Manifest this update: Thu 03 Apr 2025 04:05:02 +0000 Manifest next update: Thu 10 Apr 2025 04:05:02 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: Im2op7UrJQqP0WubvNBTL1xk923sJLERbiz91JokZ6k=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: YxGxJeshNnV3Vuuq1mbiFcEZbIJHwrpzAcTYwU5uciY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884 Validity Not Before: Apr 3 04:05:02 2025 GMT Not After : Apr 10 04:05:02 2025 GMT Subject: CN=67ee08ef-beda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fe:25:b1:d1:4a:04:cb:ef:34:de:b8:61:ac: c3:aa:73:0c:a2:43:0e:52:67:e3:aa:9a:23:21:14: 29:43:80:81:6c:0d:16:eb:59:e2:6d:78:23:b2:87: 3c:6a:e0:ec:3f:17:61:67:e0:3b:6a:47:52:9f:dd: 22:9e:e5:fa:f5:1d:7d:f1:6c:71:12:74:e5:63:c8: 44:06:40:9c:86:f5:4e:6d:45:7e:57:ba:c8:6d:db: 46:55:4d:62:d9:a5:9d:c4:ef:33:6f:d3:f2:49:b2: bf:e7:0d:c0:d6:e7:68:52:94:07:68:9e:37:a4:46: 91:45:e3:8c:03:b7:a5:1c:ee:3f:bd:a7:40:63:8d: d6:f0:9f:73:3b:d4:da:35:c3:cb:64:b1:11:c2:e8: 7b:aa:52:9e:ce:5f:19:4d:54:d3:2d:78:06:aa:fe: a3:1a:2a:6e:08:f9:40:bd:b8:26:23:44:5f:b0:27: b9:f9:53:99:63:d1:c0:47:d4:d1:33:95:c3:4a:0e: 02:96:bb:a1:2a:50:ce:af:41:3b:c4:a5:e0:a0:cf: 27:c1:49:1b:59:52:33:25:a8:4c:cd:e9:3e:ef:4f: b3:b2:47:49:fc:d0:85:24:ad:17:28:f9:d1:1e:88: f7:a3:27:51:e7:ef:d6:46:58:d3:3e:d9:8d:ab:f5: 37:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:DB:E2:58:B6:B5:03:6E:26:B4:32:79:E7:04:DB:93:99:F1:25:AC X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:de:37:fc:b9:de:06:39:50:d0:ab:e5:45:5e:2a:3f:6a:cd: e2:c6:f7:a8:12:b3:be:d2:ec:e0:d8:40:d5:d4:92:d2:29:af: 98:fd:39:07:4e:40:be:e3:cc:d6:ab:b1:e4:3f:e7:39:99:71: 89:5b:4c:68:34:fd:a6:89:61:10:28:90:39:90:81:8f:6f:4f: 70:c7:05:43:72:2d:96:1b:1a:61:aa:99:43:aa:ee:68:f6:66: 39:01:e5:46:eb:c4:e2:f6:5f:f4:ab:68:7f:d1:b0:4a:36:69: a2:22:95:44:ea:88:80:ce:3c:d3:7f:1d:06:65:6e:7c:48:b2: c9:8b:54:04:e5:0a:cd:84:0d:32:5d:f6:a9:ba:14:b7:1e:97: 95:ab:84:a8:61:e5:21:ad:d1:4f:bf:c4:a1:6b:7e:f9:19:d7: da:ee:8f:86:13:8f:27:66:32:7f:17:a5:34:31:00:f8:05:9e: ea:bc:87:b8:09:09:a9:2c:e1:06:75:cd:e5:f8:25:5d:6f:64: d4:f9:d4:df:7f:f5:01:cd:e7:2d:ff:71:ac:3e:b1:4a:17:a9: fd:45:20:6c:9d:80:6d:08:0a:fe:01:7b:3b:85:8f:c3:7f:61: f1:5b:e7:dd:34:f0:cc:60:16:e3:36:74:be:eb:72:87:a1:d4: ac:d4:86:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwNDAzMDQwNTAyWhcNMjUwNDEwMDQwNTAyWjAYMRYwFAYD VQQDEw02N2VlMDhlZi1iZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmf4lsdFKBMvvNN64YazDqnMMokMOUmfjqpojIRQpQ4CBbA0W61nibXgjsoc8 auDsPxdhZ+A7akdSn90inuX69R198WxxEnTlY8hEBkCchvVObUV+V7rIbdtGVU1i 2aWdxO8zb9PySbK/5w3A1udoUpQHaJ43pEaRReOMA7elHO4/vadAY43W8J9zO9Ta NcPLZLERwuh7qlKezl8ZTVTTLXgGqv6jGipuCPlAvbgmI0RfsCe5+VOZY9HAR9TR M5XDSg4ClruhKlDOr0E7xKXgoM8nwUkbWVIzJahMzek+70+zskdJ/NCFJK0XKPnR Hoj3oydR5+/WRljTPtmNq/U36QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbb4li2 tQNuJrQyeecE25OZ8SWsMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc3jf8ud4GOVDQq+VFXio/as3ixveoErO+0uzg2EDV1JLSKa+Y/TkH TkC+48zWq7HkP+c5mXGJW0xoNP2miWEQKJA5kIGPb09wxwVDci2WGxphqplDqu5o 9mY5AeVG68Ti9l/0q2h/0bBKNmmiIpVE6oiAzjzTfx0GZW58SLLJi1QE5QrNhA0y XfapuhS3HpeVq4SoYeUhrdFPv8Sha375Gdfa7o+GE48nZjJ/F6U0MQD4BZ7qvIe4 CQmpLOEGdc3l+CVdb2TU+dTff/UBzect/3GsPrFKF6n9RSBsnYBtCAr+AXs7hY/D f2HxW+fdNPDMYBbjNnS+63KHodSs1IZk -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:12 2025 by rpki-client