$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: e6cXZKE5Oj//bs5/mXeFX/HYiONHSFHil+KdPBQ6pkQ= Subject key identifier: 1D:3B:03:18:C5:DA:1D:A6:E0:E0:E4:0D:00:F1:9B:3A:CF:B2:03:E5 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 12A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 474A Signing time: Fri 04 Apr 2025 14:21:01 +0000 Manifest this update: Fri 04 Apr 2025 14:21:00 +0000 Manifest next update: Fri 11 Apr 2025 14:21:00 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: HYDNTWTHB4UaawmUgxxCAe6UwXN0y7fu1aGeJNMtmRg=) 2: C5FA430E179711EDB9008D18C4F9AE02.roa (hash: GHnN7IPBztwTSkz/5T1Pzn2mpFjuZRSGTdYW2a+IpUM=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: idks1lefYLO6nPenvXoGS0zMdLXoYOwMfOiIKkDlkB8=) 4: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: gZAAhBS7lDX/ARKaEp+quX+YnSdkN0XwL2ShlYH1ilM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:21:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4769 (0x12a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61 Validity Not Before: Apr 4 14:21:00 2025 GMT Not After : Apr 11 14:21:00 2025 GMT Subject: CN=67efeacc-1882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:85:06:62:54:80:e9:87:4f:b6:96:85:66:00: 70:14:27:cb:66:de:2f:66:66:9f:08:d8:d4:89:79: 80:33:fc:ef:94:a0:60:91:b9:3e:86:e7:d6:41:15: cc:cc:b7:7b:c4:b9:ac:77:f7:f8:b8:c2:63:29:b8: f9:a1:b9:e9:d8:e4:92:b8:e6:4b:83:c2:28:63:48: 5a:3d:86:ad:e3:39:e9:58:09:7a:ae:d3:81:a7:02: ae:e1:0b:94:e4:7c:1c:ff:8e:84:1d:2e:fb:fc:4e: 0a:75:50:c2:da:6b:ec:23:78:ee:10:d5:58:d0:13: 54:a4:72:64:8c:19:c1:e0:ef:c8:af:78:d9:a2:e7: 9f:f3:35:99:44:70:a0:19:3e:26:7c:c2:64:00:8e: 8f:6b:55:96:0c:a4:2b:68:c1:39:fe:56:c9:82:e6: 32:91:23:0c:fa:39:d7:a3:da:71:cc:96:bc:c9:6d: c8:de:87:f9:3a:93:47:f0:25:c2:18:cd:ec:23:be: a9:23:f0:d0:70:2f:fc:0c:a3:86:9b:37:f4:f4:2a: 55:fc:e3:32:22:99:5c:51:47:25:7d:32:c9:c1:64: 3e:4a:7d:54:f5:3a:5a:78:8f:b3:62:11:dd:9f:8f: aa:1f:14:a9:b2:28:a3:6c:a8:07:ff:83:5e:e4:be: f4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3B:03:18:C5:DA:1D:A6:E0:E0:E4:0D:00:F1:9B:3A:CF:B2:03:E5 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:bb:3b:03:a3:51:9d:d1:fe:d8:96:04:41:1e:fc:ca:51:d7: e6:d5:9e:79:20:48:4b:59:04:38:4a:e4:8f:c7:5d:a6:b7:4f: 10:b8:3d:49:ed:30:94:d3:f5:af:61:77:da:b1:77:5b:c8:82: 5b:42:2c:9d:0c:a4:62:89:b6:92:29:11:e5:9e:3b:9a:2a:dc: 91:94:88:c7:8e:bd:eb:38:fa:f8:98:8e:8d:2b:86:d3:2b:e1: 61:a2:67:64:f3:4e:ea:95:f9:44:07:26:7d:04:25:33:88:b7: c6:72:10:54:1f:58:af:03:c5:21:1b:14:c7:8f:7a:ca:52:25: 58:f7:25:80:55:a5:9d:2f:18:b3:29:c8:41:73:5a:db:9e:ff: 48:47:a2:11:b1:48:c1:34:80:9e:d9:91:65:de:83:22:df:57: 48:d5:64:9a:12:01:72:0f:e2:31:be:94:a5:e2:1d:53:94:7e: e8:ec:fa:32:f7:6e:4e:06:78:b7:ab:49:c4:cc:61:ba:9e:ca: 9b:66:6f:35:52:1b:c7:5b:11:68:47:22:23:e2:42:37:48:65: 08:20:18:bb:42:57:2e:da:d5:2f:df:4a:54:cf:8d:35:53:23: 7d:6b:a1:c9:73:e8:a7:c6:a6:32:18:f8:8c:a3:5f:63:e1:6f: 62:7f:c5:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjUwNDA0MTQyMTAwWhcNMjUwNDExMTQyMTAwWjAYMRYwFAYD VQQDEw02N2VmZWFjYy0xODgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IUGYlSA6YdPtpaFZgBwFCfLZt4vZmafCNjUiXmAM/zvlKBgkbk+hufWQRXM zLd7xLmsd/f4uMJjKbj5obnp2OSSuOZLg8IoY0haPYat4znpWAl6rtOBpwKu4QuU 5Hwc/46EHS77/E4KdVDC2mvsI3juENVY0BNUpHJkjBnB4O/Ir3jZouef8zWZRHCg GT4mfMJkAI6Pa1WWDKQraME5/lbJguYykSMM+jnXo9pxzJa8yW3I3of5OpNH8CXC GM3sI76pI/DQcC/8DKOGmzf09CpV/OMyIplcUUclfTLJwWQ+Sn1U9TpaeI+zYhHd n4+qHxSpsiijbKgH/4Ne5L70EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB07AxjF 2h2m4ODkDQDxmzrPsgPlMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAquzsDo1Gd0f7YlgRBHvzKUdfm1Z55IEhLWQQ4SuSPx12mt08QuD1J 7TCU0/WvYXfasXdbyIJbQiydDKRiibaSKRHlnjuaKtyRlIjHjr3rOPr4mI6NK4bT K+Fhomdk807qlflEByZ9BCUziLfGchBUH1ivA8UhGxTHj3rKUiVY9yWAVaWdLxiz KchBc1rbnv9IR6IRsUjBNICe2ZFl3oMi31dI1WSaEgFyD+IxvpSl4h1TlH7o7Poy 925OBni3q0nEzGG6nsqbZm81UhvHWxFoRyIj4kI3SGUIIBi7Qlcu2tUv30pUz401 UyN9a6HJc+inxqYyGPiMo19j4W9if8X9 -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:44 2025 by rpki-client