$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft File: xVznjEX0hWCLgkNgYAPYCooWzNY.mft (raw, json) Hash identifier: 9+Z/o+U8s6q5nBgyYBg8NVv78obzUQKjwAwajq5ysyE= Subject key identifier: 0E:2B:76:10:6D:2C:60:AF:07:6C:C7:9B:C4:10:B5:41:F8:FF:9B:7A Authority key identifier: C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 Certificate issuer: /CN=A91E6E96/serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Certificate serial: 047C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft Manifest number: 0478 Signing time: Sat 29 Mar 2025 00:20:48 +0000 Manifest this update: Sat 29 Mar 2025 00:20:48 +0000 Manifest next update: Sat 05 Apr 2025 00:20:48 +0000 Files and hashes: 1: xVznjEX0hWCLgkNgYAPYCooWzNY.crl (hash: IQf1kssQGxgtGWwLXrfjE/zd9UnVvWq/7T2j3J3mKwc=) 2: 64DE26F6386011EC83DC2E23C4F9AE02.roa (hash: U5GEFoFbAoED1KEx2xWUb5hktSCjTMeSRDs24OHWcTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6E96 Validity Not Before: Mar 29 00:20:48 2025 GMT Not After : Apr 5 00:20:48 2025 GMT Subject: CN=67e73ce0-598a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7f:3a:2e:8a:bc:28:cf:2f:5e:c1:bd:6b:c7: 86:af:a7:31:8a:5d:e3:f0:be:b9:67:e3:83:79:91: 46:9b:38:b8:57:20:12:9a:f5:bc:11:0a:b6:bc:b7: fa:18:e3:7f:44:6a:ea:72:10:03:68:c9:a2:94:74: c7:66:3c:c3:a4:4c:d7:96:a9:a8:e8:85:89:a4:04: 28:b7:33:fe:d6:21:97:6f:04:ec:75:3c:55:31:ac: f1:de:c5:fe:f0:25:ec:d6:aa:30:89:40:a3:ae:b7: e0:a0:8e:65:1c:c7:d0:32:cf:b4:a7:16:92:ca:fd: 00:d6:8b:c7:a0:45:ec:70:2d:51:29:b2:c0:7e:7b: 71:10:3d:0e:22:78:6d:0e:7c:99:20:75:4f:c8:5f: f7:72:08:d7:3a:ac:ea:dc:8c:c3:e2:57:f2:23:a2: fe:ae:9e:8b:3b:61:1e:59:07:8b:03:dd:10:7a:5e: c3:13:a2:05:55:79:ae:2f:68:8d:72:44:4c:54:21: 90:c9:ae:25:8a:a1:d2:a3:e8:31:6f:86:2b:55:65: 10:91:32:fb:b6:71:3d:c8:e0:33:7f:a9:fe:46:cf: 59:2f:b5:68:3c:52:2b:bc:5c:91:bf:ca:7a:5f:18: a5:59:d0:b3:23:ca:b9:94:94:4d:95:13:00:41:1e: fc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2B:76:10:6D:2C:60:AF:07:6C:C7:9B:C4:10:B5:41:F8:FF:9B:7A X509v3 Authority Key Identifier: keyid:C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:49:0c:32:fa:46:0d:92:5d:e7:c5:c5:58:40:6e:0e:23:af: 36:32:84:1b:29:34:42:f9:af:7b:15:0d:92:c3:79:a7:fc:d2: 85:63:6f:68:d2:0e:87:a6:6d:b5:01:a5:d6:ac:bc:4f:8e:a4: 7d:17:d7:7b:d5:d0:f7:4d:8a:01:71:82:10:35:fa:d4:d3:2f: 7e:9d:ba:b6:6c:7b:60:80:56:3c:d9:89:b7:55:99:1c:fb:a7: 78:02:31:5b:30:96:8f:df:9c:88:3d:d8:6c:56:74:16:c1:97: fc:43:d1:88:e5:83:b7:fc:ef:ae:bc:f9:b6:b7:85:0e:1f:7d: 0d:56:93:a9:62:81:50:36:8d:1a:b4:0f:b5:a6:72:97:aa:ef: 32:00:c1:2f:86:ba:9a:2f:fe:d6:08:9f:41:1e:d5:a5:b9:f2: ba:e3:0e:37:c5:91:5f:eb:8c:11:64:c0:6e:37:a1:72:2c:53: af:fe:50:45:03:ee:ea:b1:bd:fe:da:f1:88:cc:53:41:e1:16: 26:18:b3:ac:ea:7d:0a:c5:d5:db:b4:9b:4b:b3:22:92:d5:ba: a1:93:c5:95:4f:45:f3:22:72:e4:d8:b4:4e:36:b8:1b:c8:67: 0c:81:5a:30:3d:b9:b5:13:b4:d4:e7:dc:cb:2a:bf:93:2b:a7: be:6e:a6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFOTYxMTAvBgNVBAUTKEM1NUNFNzhDNDVGNDg1NjA4QjgyNDM2MDYwMDNEODBB OEExNkNDRDYwHhcNMjUwMzI5MDAyMDQ4WhcNMjUwNDA1MDAyMDQ4WjAYMRYwFAYD VQQDEw02N2U3M2NlMC01OThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn386Loq8KM8vXsG9a8eGr6cxil3j8L65Z+ODeZFGmzi4VyASmvW8EQq2vLf6 GON/RGrqchADaMmilHTHZjzDpEzXlqmo6IWJpAQotzP+1iGXbwTsdTxVMazx3sX+ 8CXs1qowiUCjrrfgoI5lHMfQMs+0pxaSyv0A1ovHoEXscC1RKbLAfntxED0OInht DnyZIHVPyF/3cgjXOqzq3IzD4lfyI6L+rp6LO2EeWQeLA90Qel7DE6IFVXmuL2iN ckRMVCGQya4liqHSo+gxb4YrVWUQkTL7tnE9yOAzf6n+Rs9ZL7VoPFIrvFyRv8p6 XxilWdCzI8q5lJRNlRMAQR78DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4rdhBt LGCvB2zHm8QQtUH4/5t6MB8GA1UdIwQYMBaAFMVc54xF9IVgi4JDYGAD2AqKFszW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkU5Ni83QjlEM0RFQTM4 NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhXQ0xna05nWUFQWUNvb1d6 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWem5qRVgwaFdDTGdrTmdZQVBZQ29vV3pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkU5Ni83QjlEM0RFQTM4NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhX Q0xna05nWUFQWUNvb1d6TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5SQwy+kYNkl3nxcVYQG4OI682MoQbKTRC+a97FQ2Sw3mn/NKFY29o 0g6Hpm21AaXWrLxPjqR9F9d71dD3TYoBcYIQNfrU0y9+nbq2bHtggFY82Ym3VZkc +6d4AjFbMJaP35yIPdhsVnQWwZf8Q9GI5YO3/O+uvPm2t4UOH30NVpOpYoFQNo0a tA+1pnKXqu8yAMEvhrqaL/7WCJ9BHtWlufK64w43xZFf64wRZMBuN6FyLFOv/lBF A+7qsb3+2vGIzFNB4RYmGLOs6n0KxdXbtJtLsyKS1bqhk8WVT0XzInLk2LRONrgb yGcMgVowPbm1E7TU59zLKr+TK6e+bqZd -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:42 2025 by rpki-client