$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft File: x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft (raw, json) Hash identifier: iacrLM5OF+wQ4JSWq2aoGXY36xvb7oQBcTOioJhHK60= Subject key identifier: 78:67:19:12:FC:BB:C5:60:1E:25:9F:35:6F:0C:71:09:D7:3B:5F:B6 Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B Certificate issuer: /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Certificate serial: 0537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft Manifest number: 0533 Signing time: Sat 12 Apr 2025 23:08:01 +0000 Manifest this update: Sat 12 Apr 2025 23:08:00 +0000 Manifest next update: Sat 19 Apr 2025 23:08:00 +0000 Files and hashes: 1: x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl (hash: IlsnqAtqs+QM4z6mgj2KX26mujnRQsGRP2EX27yRdv4=) 2: 4756B350EF9011EBAAE0375AC4F9AE02.roa (hash: l/5p1WINKz3TNzRuWnRaS5/CleEw3KzqgOzzW2+y1jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 23:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3377, serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Validity Not Before: Apr 12 23:08:00 2025 GMT Not After : Apr 19 23:08:00 2025 GMT Subject: CN=67faf251-6ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:73:b8:d1:43:87:23:d7:d8:c9:fb:ca:8e:33: 68:82:56:ef:51:e3:2a:61:ce:9d:ed:2f:2d:8f:d6: 33:40:ed:24:1e:f8:47:e8:36:cc:a8:22:67:b7:3a: cf:c5:ec:8e:ac:f3:36:e1:76:fa:3a:ea:9e:4d:f0: c9:86:0e:49:33:5e:32:4e:45:4e:37:24:48:97:b6: 21:88:53:04:28:2e:6e:2e:18:4f:26:19:85:dc:58: be:8c:ed:38:12:f1:a8:a5:00:5e:4b:74:8f:ae:c9: c5:8b:39:99:04:39:47:14:21:08:aa:f5:59:a5:39: 23:9a:d3:7e:c4:8b:e1:75:ce:5b:82:65:2a:b7:f6: db:ef:c8:7d:6f:f6:f0:59:a0:fd:99:5b:ee:73:53: 28:6e:6e:01:25:ce:1c:cc:f7:92:a5:6c:db:d6:0c: e1:ba:ca:e2:8f:10:e9:8f:26:7c:a3:c2:61:16:38: 7b:a4:24:95:86:c6:d8:b0:d7:e4:6f:ec:8a:18:fe: 70:13:a8:e8:63:17:a3:f6:89:6b:97:99:7b:6d:92: af:29:35:ef:d6:1f:29:ac:bc:3e:e4:55:cb:de:b6: b5:d5:13:75:38:bb:74:97:0c:6d:eb:11:1c:8e:47: 51:3e:c7:93:eb:d5:19:08:b5:31:99:f2:0a:e9:5d: 90:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:67:19:12:FC:BB:C5:60:1E:25:9F:35:6F:0C:71:09:D7:3B:5F:B6 X509v3 Authority Key Identifier: keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8b:9e:ca:f2:45:19:8a:71:40:d9:70:ff:50:db:ba:66:86: f0:24:60:9a:dd:51:b4:72:61:75:56:d3:84:24:19:70:31:04: ca:24:d4:d8:27:9e:05:0e:3a:50:49:40:a9:d8:31:d9:90:d1: 50:c0:3d:2d:9e:2b:0a:74:a8:14:3d:b1:2c:7b:46:18:9b:02: dc:0b:c3:87:33:c1:1a:f5:ee:e2:cb:db:8f:b3:2d:b6:00:b4: f1:76:c4:40:b5:59:1a:8d:6b:19:3c:6b:be:c9:7c:66:1a:b6: 00:3a:dd:ff:31:91:44:f5:91:07:d5:e7:b1:12:03:46:5a:13: bb:a6:d5:34:91:2f:67:49:72:06:e2:14:e1:13:43:5a:ec:b9: 48:38:4a:12:da:7d:06:fa:6b:c3:7f:98:80:3e:91:93:de:c3: 83:4e:32:fa:eb:eb:72:0c:a5:c1:49:6c:5a:db:69:ad:c4:bd: dd:7d:32:28:d2:dc:10:ca:22:57:d2:fd:ec:8a:f4:2c:d7:49: 5f:be:d1:dc:52:ac:e6:3d:fc:d0:51:3a:f6:5a:da:7d:99:19: fe:f1:bf:65:30:0b:06:8a:7a:9b:6c:29:9e:37:5d:ca:cd:9a: 94:bb:60:73:9e:f7:5a:aa:9f:e9:d0:58:22:6e:34:70:b6:d5: 34:e4:5c:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzNzcxMTAvBgNVBAUTKEM3N0MxMzA5RjRBMTUzMEVBMzk1NDE0NTI4ODE1RjlD NzY3QzUxNUIwHhcNMjUwNDEyMjMwODAwWhcNMjUwNDE5MjMwODAwWjAYMRYwFAYD VQQDEw02N2ZhZjI1MS02ZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnO40UOHI9fYyfvKjjNoglbvUeMqYc6d7S8tj9YzQO0kHvhH6DbMqCJntzrP xeyOrPM24Xb6OuqeTfDJhg5JM14yTkVONyRIl7YhiFMEKC5uLhhPJhmF3Fi+jO04 EvGopQBeS3SPrsnFizmZBDlHFCEIqvVZpTkjmtN+xIvhdc5bgmUqt/bb78h9b/bw WaD9mVvuc1Mobm4BJc4czPeSpWzb1gzhusrijxDpjyZ8o8JhFjh7pCSVhsbYsNfk b+yKGP5wE6joYxej9olrl5l7bZKvKTXv1h8prLw+5FXL3ra11RN1OLt0lwxt6xEc jkdRPseT69UZCLUxmfIK6V2QJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhnGRL8 u8VgHiWfNW8McQnXO1+2MB8GA1UdIwQYMBaAFMd8Ewn0oVMOo5VBRSiBX5x2fFFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzM3Ny82MEI3N0RBRUVG OEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3NmpsVUZGS0lGZm5IWjhV VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gzd1RDZlNoVXc2amxVRkZLSUZmbkhaOFVWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzM3Ny82MEI3N0RBRUVGOEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3 NmpsVUZGS0lGZm5IWjhVVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAai57K8kUZinFA2XD/UNu6ZobwJGCa3VG0cmF1VtOEJBlwMQTKJNTY J54FDjpQSUCp2DHZkNFQwD0tnisKdKgUPbEse0YYmwLcC8OHM8Ea9e7iy9uPsy22 ALTxdsRAtVkajWsZPGu+yXxmGrYAOt3/MZFE9ZEH1eexEgNGWhO7ptU0kS9nSXIG 4hThE0Na7LlIOEoS2n0G+mvDf5iAPpGT3sODTjL66+tyDKXBSWxa22mtxL3dfTIo 0twQyiJX0v3sivQs10lfvtHcUqzmPfzQUTr2Wtp9mRn+8b9lMAsGinqbbCmeN13K zZqUu2Bznvdaqp/p0FgibjRwttU05FzI -----END CERTIFICATE-----Generated at Sun Apr 13 05:57:50 2025 by rpki-client