$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft File: xvo-z74pzTYwaQdi6zKIEDptCKA.mft (raw, json) Hash identifier: 7X23xG5grFS1VoAQ5Y00aeXwBbZprXnk39jng1EHwT8= Subject key identifier: 64:D3:39:D3:F2:E0:ED:17:3F:C2:8D:46:7C:95:53:2F:4C:3B:32:68 Authority key identifier: C6:FA:3E:CF:BE:29:CD:36:30:69:07:62:EB:32:88:10:3A:6D:08:A0 Certificate issuer: /CN=A91D9A6D/serialNumber=C6FA3ECFBE29CD3630690762EB3288103A6D08A0 Certificate serial: 0D05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft Manifest number: 0CFC Signing time: Fri 04 Apr 2025 18:11:57 +0000 Manifest this update: Fri 04 Apr 2025 18:11:56 +0000 Manifest next update: Fri 11 Apr 2025 18:11:56 +0000 Files and hashes: 1: xvo-z74pzTYwaQdi6zKIEDptCKA.crl (hash: hnbH1/dhywck9TD40g66U6rS1BHpjZwhMwdI8Y0NdM8=) 2: 959C0ABE93EA11EE91A46031C4F9AE02.roa (hash: zaaI7glaXmXh9SgsYn6TR4c53oO0mNcbR/BG6cqEOFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.crl rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3333 (0xd05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9A6D Validity Not Before: Apr 4 18:11:56 2025 GMT Not After : Apr 11 18:11:56 2025 GMT Subject: CN=67f020ed-ce71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5d:77:16:78:29:39:ef:0a:41:2e:27:5f:ce: b8:be:ed:c3:d7:5b:4e:62:ad:3d:07:f1:c9:60:0a: 4b:49:62:8a:38:c4:af:13:4f:9b:5b:10:58:bb:7e: d1:c9:7a:fc:a9:76:7f:e9:79:86:68:ec:66:12:d7: 2c:94:aa:aa:ae:a0:8f:70:ad:b2:ba:a5:21:0f:df: 34:5d:5f:fd:e7:63:58:37:71:78:4f:b4:07:8d:5f: 40:19:ca:b3:8e:18:e8:b8:93:0d:88:f7:ce:87:4d: 56:97:a9:c7:f7:30:22:f9:f9:f3:48:d6:1c:3d:c5: 21:64:6d:35:03:3e:ce:8f:82:18:51:c0:d2:be:09: 68:cb:ff:38:bc:9a:d3:33:c6:ae:25:13:9c:3c:9f: 94:5e:26:a4:de:6e:9b:05:55:65:e2:a6:19:96:b7: fc:2d:6d:5a:2d:e8:45:3f:af:c7:d7:c6:18:20:da: f6:ae:af:0e:98:8f:97:64:3f:87:3b:f9:33:d2:5a: 5d:43:3c:a7:cd:4e:a5:3f:0b:8f:47:0b:ae:05:3b: be:40:88:16:6f:3c:59:91:30:2b:57:2a:c1:c5:3b: 32:6f:81:4d:2c:cd:29:0c:8a:b9:51:ce:38:83:6a: e2:a3:b9:53:e8:86:85:ce:4d:02:14:29:4b:28:96: 69:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D3:39:D3:F2:E0:ED:17:3F:C2:8D:46:7C:95:53:2F:4C:3B:32:68 X509v3 Authority Key Identifier: keyid:C6:FA:3E:CF:BE:29:CD:36:30:69:07:62:EB:32:88:10:3A:6D:08:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:32:cd:b8:e4:b4:dd:ac:95:51:da:f6:50:5c:7b:9f:6b:13: d5:fb:77:98:bc:26:38:78:4a:63:9c:e5:51:5e:d4:44:bc:64: a3:33:d6:8b:c8:55:4f:02:fc:a5:e0:62:e1:f6:76:18:83:b3: 3d:03:80:27:bc:01:6d:cb:43:99:fa:5b:e3:09:b0:8a:71:ea: b4:c0:f5:b2:57:03:d0:4f:2c:4c:2f:b3:15:b3:55:e1:e4:34: b8:dd:50:f3:95:9d:c3:04:48:ef:4b:69:eb:b4:7c:fa:36:c1: 7b:c1:3d:b8:97:e6:0b:16:d7:63:2d:fc:49:1d:72:0c:19:f5: 52:3a:6a:d8:4c:90:c0:62:7f:77:d0:c2:c4:80:4a:fb:bb:f2: a9:53:63:6b:9c:cc:d8:b5:1f:69:e5:b3:6c:73:11:d6:62:09: d0:23:73:d3:14:24:0a:61:b5:b0:0b:41:a2:1a:c2:ff:6a:6a: 0b:fe:b7:4a:c8:ca:ad:46:c2:5e:f2:24:44:ac:d9:54:52:0f: 0e:74:e6:26:fb:cc:fe:45:44:f8:4d:46:44:08:62:bb:1d:a6: 84:4b:a9:39:95:b5:46:68:f2:dd:f3:17:74:66:db:58:69:ab: 03:54:4b:1d:aa:12:bd:c7:2b:84:3b:3c:66:63:97:e9:c5:34: 92:16:08:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlBNkQxMTAvBgNVBAUTKEM2RkEzRUNGQkUyOUNEMzYzMDY5MDc2MkVCMzI4ODEw M0E2RDA4QTAwHhcNMjUwNDA0MTgxMTU2WhcNMjUwNDExMTgxMTU2WjAYMRYwFAYD VQQDEw02N2YwMjBlZC1jZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF13FngpOe8KQS4nX864vu3D11tOYq09B/HJYApLSWKKOMSvE0+bWxBYu37R yXr8qXZ/6XmGaOxmEtcslKqqrqCPcK2yuqUhD980XV/952NYN3F4T7QHjV9AGcqz jhjouJMNiPfOh01Wl6nH9zAi+fnzSNYcPcUhZG01Az7Oj4IYUcDSvgloy/84vJrT M8auJROcPJ+UXiak3m6bBVVl4qYZlrf8LW1aLehFP6/H18YYINr2rq8OmI+XZD+H O/kz0lpdQzynzU6lPwuPRwuuBTu+QIgWbzxZkTArVyrBxTsyb4FNLM0pDIq5Uc44 g2rio7lT6IaFzk0CFClLKJZpUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTTOdPy 4O0XP8KNRnyVUy9MOzJoMB8GA1UdIwQYMBaAFMb6Ps++Kc02MGkHYusyiBA6bQig MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUE2RC9BMjFFNzFEMkRC OEUxMUU5QTM1MjYyMjRDNEY5QUUwMi94dm8tejc0cHpUWXdhUWRpNnpLSUVEcHRD S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h2by16NzRwelRZd2FRZGk2ektJRURwdENLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUE2RC9BMjFFNzFEMkRCOEUxMUU5QTM1MjYyMjRDNEY5QUUwMi94dm8tejc0cHpU WXdhUWRpNnpLSUVEcHRDS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASMs245LTdrJVR2vZQXHufaxPV+3eYvCY4eEpjnOVRXtREvGSjM9aL yFVPAvyl4GLh9nYYg7M9A4AnvAFty0OZ+lvjCbCKceq0wPWyVwPQTyxML7MVs1Xh 5DS43VDzlZ3DBEjvS2nrtHz6NsF7wT24l+YLFtdjLfxJHXIMGfVSOmrYTJDAYn93 0MLEgEr7u/KpU2NrnMzYtR9p5bNscxHWYgnQI3PTFCQKYbWwC0GiGsL/amoL/rdK yMqtRsJe8iRErNlUUg8OdOYm+8z+RUT4TUZECGK7HaaES6k5lbVGaPLd8xd0ZttY aasDVEsdqhK9xyuEOzxmY5fpxTSSFgiZ -----END CERTIFICATE-----Generated at Sat Apr 5 19:33:45 2025 by rpki-client