$ rpki-client -vvf rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft File: xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft (raw, json) Hash identifier: 5Oq/bEzefC2VrZ5RiPtkFQxaSdiyrWJrcDfi45p4cvY= Subject key identifier: D7:0E:8F:DE:85:7B:CB:CF:36:1D:DB:B2:A9:8D:E6:F1:A8:C5:56:F6 Authority key identifier: C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF Certificate issuer: /CN=A91E37D1/serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft Manifest number: 016A Signing time: Sat 29 Mar 2025 03:22:48 +0000 Manifest this update: Sat 29 Mar 2025 03:22:48 +0000 Manifest next update: Sat 05 Apr 2025 03:22:48 +0000 Files and hashes: 1: xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl (hash: EPWrgTSM2Q8XX7Vy1ui6Se1g1MGATsdh/YsPCJoKpzA=) 2: 59A00A402C7111EFA821586AC4F9AE02.roa (hash: 0JcJhlyjlF7wNse9vwSRpqDIz9jgkXs09QG/XtA+FYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E37D1 Validity Not Before: Mar 29 03:22:48 2025 GMT Not After : Apr 5 03:22:48 2025 GMT Subject: CN=67e76788-694b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:67:b2:9f:84:70:bb:e7:79:d2:4e:16:eb:4f: 7c:4e:33:b6:fc:53:30:ed:e9:71:dd:1f:78:54:d2: 98:e3:de:ad:07:73:9c:98:c5:3f:5b:3f:e0:9f:49: 53:1b:68:92:af:e3:ca:f3:e6:db:5e:f6:cd:bb:6f: 34:48:77:25:8c:a5:c1:e8:49:48:c5:f4:63:9e:99: 6f:2e:54:79:70:a7:96:99:69:d9:2d:dd:1f:d6:13: fb:6d:15:ee:20:60:19:0b:49:84:0e:a2:c2:2a:a7: 68:21:66:1b:68:3c:6e:90:7d:0f:b8:15:da:a5:a4: 92:7c:49:e2:90:36:53:8b:4b:dc:86:60:63:bb:6b: 2a:c3:4a:08:9d:e7:77:0f:8a:5e:b4:5f:33:6e:cd: a7:c7:bb:d3:d7:06:04:11:ef:49:ec:a5:c5:0a:ae: 50:bc:f5:b1:12:8c:ca:04:d8:46:0e:ba:8d:0a:c0: b7:14:83:2c:1e:e7:7d:2d:3f:6b:f3:1b:ce:2b:2f: 5e:01:16:c6:f1:e1:b4:19:54:5e:b6:e4:c9:e4:50: 3b:1c:9d:aa:06:33:57:d5:67:8f:4f:7c:d7:12:6f: c8:b4:a4:86:45:50:f9:b2:7e:7e:32:cd:40:50:c5: 28:2d:88:91:a4:be:5e:40:fc:e9:7a:fa:cd:37:8a: 80:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0E:8F:DE:85:7B:CB:CF:36:1D:DB:B2:A9:8D:E6:F1:A8:C5:56:F6 X509v3 Authority Key Identifier: keyid:C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:94:4f:8a:73:fc:2d:3e:1d:2b:68:cf:44:6f:27:a3:2b:c1: 44:f8:69:12:0b:b1:74:e0:19:c3:91:b3:17:07:d7:56:6c:57: 13:59:2a:ce:e0:24:c8:60:be:a5:5c:d4:ba:f2:aa:2f:34:16: 80:d0:1f:97:87:0c:70:e9:ec:48:1e:9c:21:8c:d9:97:c7:2a: 8f:4f:38:61:76:b7:da:72:1f:9d:ee:7c:aa:5b:d0:fd:79:7c: c9:57:cf:d5:96:38:96:d3:bc:69:b4:29:24:46:8d:04:1d:d6: 72:19:5b:e7:83:8a:ba:b9:b3:f4:9b:ae:7e:e7:69:1d:63:53: be:6d:ab:c0:c9:8d:14:09:f6:ba:42:36:8e:5c:04:da:e3:5b: ea:5d:ed:26:d4:ee:0e:b7:4a:c7:8c:f2:f5:45:c8:93:00:0b: 26:d0:94:7b:3e:aa:68:0c:a5:43:01:f5:34:d8:bb:4c:bf:52: 77:0c:22:69:d8:44:b3:a0:0a:2f:2e:f4:cc:af:03:59:95:bb: 9a:b5:fe:f0:42:9c:05:52:41:b7:04:be:bf:53:7a:3b:a4:6e: 65:ea:e0:78:d1:fe:73:a3:fb:a7:d6:19:e1:14:35:c9:65:1a: 5c:0f:2f:ea:3f:16:8e:e1:ba:0b:08:10:57:c4:4b:aa:79:21: 52:58:60:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3RDExMTAvBgNVBAUTKEM1QkQ4QTUwQ0FENUEwNUVGRTU3N0M0OUM0NzE0RTVE OUFCQjdGRUYwHhcNMjUwMzI5MDMyMjQ4WhcNMjUwNDA1MDMyMjQ4WjAYMRYwFAYD VQQDEw02N2U3Njc4OC02OTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWeyn4Rwu+d50k4W6098TjO2/FMw7elx3R94VNKY496tB3OcmMU/Wz/gn0lT G2iSr+PK8+bbXvbNu280SHcljKXB6ElIxfRjnplvLlR5cKeWmWnZLd0f1hP7bRXu IGAZC0mEDqLCKqdoIWYbaDxukH0PuBXapaSSfEnikDZTi0vchmBju2sqw0oIned3 D4petF8zbs2nx7vT1wYEEe9J7KXFCq5QvPWxEozKBNhGDrqNCsC3FIMsHud9LT9r 8xvOKy9eARbG8eG0GVRetuTJ5FA7HJ2qBjNX1WePT3zXEm/ItKSGRVD5sn5+Ms1A UMUoLYiRpL5eQPzpevrNN4qABwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcOj96F e8vPNh3bsqmN5vGoxVb2MB8GA1UdIwQYMBaAFMW9ilDK1aBe/ld8ScRxTl2au3/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzdEMS8wNUE5OEYwRUUz QjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9GNy1WM3hKeEhGT1hacTdm LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiMktVTXJWb0Y3LVYzeEp4SEZPWFpxN2YtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzdEMS8wNUE5OEYwRUUzQjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9G Ny1WM3hKeEhGT1hacTdmLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFlE+Kc/wtPh0raM9EbyejK8FE+GkSC7F04BnDkbMXB9dWbFcTWSrO 4CTIYL6lXNS68qovNBaA0B+Xhwxw6exIHpwhjNmXxyqPTzhhdrfach+d7nyqW9D9 eXzJV8/VljiW07xptCkkRo0EHdZyGVvng4q6ubP0m65+52kdY1O+bavAyY0UCfa6 QjaOXATa41vqXe0m1O4Ot0rHjPL1RciTAAsm0JR7PqpoDKVDAfU02LtMv1J3DCJp 2ESzoAovLvTMrwNZlbuatf7wQpwFUkG3BL6/U3o7pG5l6uB40f5zo/un1hnhFDXJ ZRpcDy/qPxaO4boLCBBXxEuqeSFSWGAH -----END CERTIFICATE-----Generated at Fri Apr 4 21:53:58 2025 by rpki-client