$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: g79jbQEF0fJZ2ZZXwSKetufi4V348pvVZbawmsURNmA= Subject key identifier: 24:85:21:7A:71:B4:3A:B3:DF:71:E2:73:FC:8E:23:66:36:A7:79:4C Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 064C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 0643 Signing time: Thu 10 Apr 2025 22:31:41 +0000 Manifest this update: Thu 10 Apr 2025 22:31:41 +0000 Manifest next update: Thu 17 Apr 2025 22:31:41 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: U57xe9ql+dVIq9TDZs5joPSx7iIrFepKzQw+dA4b+lk=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: zRXwtVciA3XUq61vGPC3fC7y/rZPmZqFfk9/8k9uEj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1612 (0x64c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4 Validity Not Before: Apr 10 22:31:41 2025 GMT Not After : Apr 17 22:31:41 2025 GMT Subject: CN=67f846cd-c9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:6d:cf:0a:5b:a8:81:e1:30:24:d5:1b:08: 33:0d:76:fa:48:c9:ce:d2:bf:3f:2d:23:65:83:7d: f5:29:02:53:44:5a:e6:ec:81:1f:cf:bd:ab:a4:55: 42:e2:80:48:d7:1d:7d:56:16:58:e2:31:13:a6:41: c5:29:f2:be:e8:47:63:b3:44:d2:cb:8e:39:4d:19: b3:b4:8e:31:bd:7e:f3:76:4a:cd:16:cf:b3:2b:a4: 74:e6:b3:fa:9e:6b:87:fe:ec:bc:40:18:85:5a:8e: 30:ac:09:99:83:56:95:11:d2:54:70:79:51:d8:52: 3e:cc:37:0b:45:2c:26:2b:78:58:3e:f9:73:be:2e: 1e:24:78:59:75:46:69:81:00:4f:29:25:5a:31:53: 6c:46:c3:bd:22:0b:ee:c8:66:1d:74:2c:ad:2f:54: f7:c4:56:4e:83:53:28:8c:04:86:d8:11:4e:bf:48: fa:7f:99:6d:59:9e:e2:33:47:16:ae:63:30:dd:34: 02:cb:d0:94:62:3b:f5:ce:9a:35:d3:a4:2e:e7:45: d7:8c:6c:48:6d:e4:1a:6a:5f:e7:10:77:09:1a:fd: 87:2f:a8:d8:d9:0b:a7:52:0c:be:92:46:52:b6:80: 6a:65:f9:56:92:e2:a3:4f:75:6b:44:47:44:1d:3c: d8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:85:21:7A:71:B4:3A:B3:DF:71:E2:73:FC:8E:23:66:36:A7:79:4C X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:78:dc:8c:0b:e8:7f:70:b8:a0:b4:b2:98:a7:4e:48:ab:e1: 6c:35:be:93:d8:19:86:fc:bf:54:12:0f:4a:e6:09:69:c4:51: 86:fd:c5:71:9f:05:33:f6:0a:6a:33:f8:62:50:b5:be:9a:8c: e8:7c:a3:7d:66:ab:d6:d0:92:0d:2d:2e:d1:53:6c:c9:ec:09: 04:10:7d:43:1d:36:11:a1:3d:1c:fe:f5:16:fd:3e:f2:f6:df: dd:48:f6:e9:d7:af:c9:6c:68:ba:8d:03:f2:6c:36:08:ab:f4: 17:87:2f:84:80:a1:90:14:cd:19:10:23:24:fd:67:cf:33:28: 5c:e0:61:0d:4e:87:26:38:ff:3e:f5:b1:c3:1d:82:b2:59:34: 78:a0:59:15:55:ba:5a:0e:a1:3d:51:09:dc:fa:09:b1:69:58: 5e:d8:78:64:2b:98:2b:51:05:ef:d7:79:f4:1d:89:49:7d:6a: 5a:6b:76:d6:10:62:9d:f6:97:a8:13:fc:5e:b4:d5:37:3e:e1: a4:f0:dd:d4:76:aa:b2:6c:90:b5:dd:41:8c:af:67:cf:15:14: 7d:07:58:e7:dc:08:aa:e8:2f:2f:c3:66:09:d6:41:cc:b2:fe: f1:77:a3:95:25:10:5d:50:d9:59:4a:83:ba:c0:60:c2:b8:86: 3c:cb:7c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUwNDEwMjIzMTQxWhcNMjUwNDE3MjIzMTQxWjAYMRYwFAYD VQQDEw02N2Y4NDZjZC1jOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+ttzwpbqIHhMCTVGwgzDXb6SMnO0r8/LSNlg331KQJTRFrm7IEfz72rpFVC 4oBI1x19VhZY4jETpkHFKfK+6Edjs0TSy445TRmztI4xvX7zdkrNFs+zK6R05rP6 nmuH/uy8QBiFWo4wrAmZg1aVEdJUcHlR2FI+zDcLRSwmK3hYPvlzvi4eJHhZdUZp gQBPKSVaMVNsRsO9IgvuyGYddCytL1T3xFZOg1MojASG2BFOv0j6f5ltWZ7iM0cW rmMw3TQCy9CUYjv1zpo106Qu50XXjGxIbeQaal/nEHcJGv2HL6jY2QunUgy+kkZS toBqZflWkuKjT3VrREdEHTzYIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSFIXpx tDqz33Hic/yOI2Y2p3lMMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMeNyMC+h/cLigtLKYp05Iq+FsNb6T2BmG/L9UEg9K5glpxFGG/cVx nwUz9gpqM/hiULW+mozofKN9ZqvW0JINLS7RU2zJ7AkEEH1DHTYRoT0c/vUW/T7y 9t/dSPbp16/JbGi6jQPybDYIq/QXhy+EgKGQFM0ZECMk/WfPMyhc4GENTocmOP8+ 9bHDHYKyWTR4oFkVVbpaDqE9UQnc+gmxaVhe2HhkK5grUQXv13n0HYlJfWpaa3bW EGKd9peoE/xetNU3PuGk8N3UdqqybJC13UGMr2fPFRR9B1jn3Aiq6C8vw2YJ1kHM sv7xd6OVJRBdUNlZSoO6wGDCuIY8y3yj -----END CERTIFICATE-----Generated at Sat Apr 12 02:22:18 2025 by rpki-client