$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft File: XKcmhHc2ig8SXvQrkg12wnEpzCs.mft (raw, json) Hash identifier: l63Cfjgkb33AMO+ijhJ9DVKU9JsXWS5AkeChwHN6vVw= Subject key identifier: 79:F9:67:DA:1D:1F:E8:4D:0E:58:40:6B:19:A3:B2:D6:EA:92:C6:4A Authority key identifier: 5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B Certificate issuer: /CN=A91EA742/serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft Manifest number: D8 Signing time: Sat 29 Mar 2025 04:57:05 +0000 Manifest this update: Sat 29 Mar 2025 04:57:05 +0000 Manifest next update: Sat 05 Apr 2025 04:57:05 +0000 Files and hashes: 1: XKcmhHc2ig8SXvQrkg12wnEpzCs.crl (hash: NsBga67/STl8O6O4Y0uBZci1Fm1pnjP18aWMmuW9AEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA742 Validity Not Before: Mar 29 04:57:05 2025 GMT Not After : Apr 5 04:57:05 2025 GMT Subject: CN=67e77da1-7a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:90:85:05:23:52:66:a6:37:6d:97:59:b0:b0: f6:e5:6a:1f:8d:8a:5f:d2:5e:89:1a:40:af:a8:24: 54:19:ea:82:95:c2:33:37:1c:90:65:97:07:26:19: b4:27:5e:71:a8:20:b2:03:90:3d:0e:98:d3:36:09: ed:1e:a5:d4:7f:d0:f1:d4:fe:2f:51:25:cd:60:7a: b5:32:6d:ee:12:e0:2b:cc:51:e6:c7:54:c1:82:d7: e7:0a:52:9f:cf:de:0e:de:cd:d5:c9:1f:58:26:18: 31:59:bb:81:54:eb:ef:94:15:66:5e:36:aa:de:5e: 25:7b:7b:b5:81:15:5e:98:b5:f5:b5:eb:03:c0:1e: 9d:2d:ed:4c:c6:f7:ab:77:d2:50:4a:2c:ad:88:5f: 1d:11:b7:cd:b5:2d:eb:97:b6:35:2b:99:69:7b:25: 08:a0:9e:a7:ee:6f:ac:ee:a3:d1:c1:ca:a4:97:da: b9:50:e5:0d:8d:a0:87:90:1d:ae:a6:5b:b4:bd:1d: 8d:93:14:a9:a8:02:b0:43:17:19:e7:5a:1e:b0:47: 46:04:20:1d:cc:31:fd:b8:a9:60:29:cf:03:db:c5: f0:f0:a9:e3:b4:f0:29:8a:cf:4a:e3:8f:b5:25:60: 1f:59:f4:f6:89:4f:b5:0d:8d:a1:8f:84:5c:ba:15: d8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F9:67:DA:1D:1F:E8:4D:0E:58:40:6B:19:A3:B2:D6:EA:92:C6:4A X509v3 Authority Key Identifier: keyid:5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:6b:c7:4b:47:cf:cd:ea:55:05:92:b8:27:8e:3a:44:35:d5: 78:df:57:ca:01:7e:a5:4f:5f:e6:fb:98:70:2a:28:e2:11:f4: 36:7c:0f:57:ce:5a:88:ed:b1:57:9e:6b:f6:4b:41:b5:13:46: 1f:03:50:44:b6:6e:cd:86:20:cd:28:58:14:f1:33:35:14:c8: 75:b0:39:91:b5:b1:ce:0d:36:a2:0d:48:bd:38:96:cc:3c:83: 6b:14:d5:a5:34:39:a5:36:ff:f0:a6:3e:73:d8:41:63:26:c7: 41:b8:87:cc:b8:b5:a5:51:06:45:88:c4:8b:21:2e:a7:60:28: 66:a1:97:84:2e:06:6c:b6:28:60:b4:63:14:fe:bf:fb:6c:46: 01:cf:76:52:d2:c6:7f:50:00:21:e2:28:b2:83:a3:b7:06:db: 6e:98:f8:27:63:1f:45:47:ab:17:65:37:52:f7:ac:e8:9f:fc: f8:cf:e7:da:9c:27:d6:00:2b:cf:59:00:bd:82:c1:87:34:fa: bd:64:ec:dd:ac:19:1e:65:7e:08:31:b0:53:ce:06:85:6b:b5: ae:f1:8d:ae:92:e7:8d:17:26:ea:15:89:41:f7:86:d4:c6:1d: 61:bc:ed:7e:35:93:e4:72:a1:7a:f4:cf:15:42:25:0c:23:c1: 36:7d:b8:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3NDIxMTAvBgNVBAUTKDVDQTcyNjg0NzczNjhBMEYxMjVFRjQyQjkyMEQ3NkMy NzEyOUNDMkIwHhcNMjUwMzI5MDQ1NzA1WhcNMjUwNDA1MDQ1NzA1WjAYMRYwFAYD VQQDEw02N2U3N2RhMS03YTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJCFBSNSZqY3bZdZsLD25WofjYpf0l6JGkCvqCRUGeqClcIzNxyQZZcHJhm0 J15xqCCyA5A9DpjTNgntHqXUf9Dx1P4vUSXNYHq1Mm3uEuArzFHmx1TBgtfnClKf z94O3s3VyR9YJhgxWbuBVOvvlBVmXjaq3l4le3u1gRVemLX1tesDwB6dLe1Mxver d9JQSiytiF8dEbfNtS3rl7Y1K5lpeyUIoJ6n7m+s7qPRwcqkl9q5UOUNjaCHkB2u plu0vR2NkxSpqAKwQxcZ51oesEdGBCAdzDH9uKlgKc8D28Xw8KnjtPApis9K44+1 JWAfWfT2iU+1DY2hj4RcuhXYrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn5Z9od H+hNDlhAaxmjstbqksZKMB8GA1UdIwQYMBaAFFynJoR3NooPEl70K5INdsJxKcwr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc0Mi9EQkE4QTVFMkMw NTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9YS2NtaEhjMmlnOFNYdlFya2cxMnduRXB6 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLY21oSGMyaWc4U1h2UXJrZzEyd25FcHpDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTc0Mi9EQkE4QTVFMkMwNTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9YS2NtaEhjMmln OFNYdlFya2cxMnduRXB6Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0a8dLR8/N6lUFkrgnjjpENdV431fKAX6lT1/m+5hwKijiEfQ2fA9X zlqI7bFXnmv2S0G1E0YfA1BEtm7NhiDNKFgU8TM1FMh1sDmRtbHODTaiDUi9OJbM PINrFNWlNDmlNv/wpj5z2EFjJsdBuIfMuLWlUQZFiMSLIS6nYChmoZeELgZstihg tGMU/r/7bEYBz3ZS0sZ/UAAh4iiyg6O3BttumPgnYx9FR6sXZTdS96zon/z4z+fa nCfWACvPWQC9gsGHNPq9ZOzdrBkeZX4IMbBTzgaFa7Wu8Y2ukueNFybqFYlB94bU xh1hvO1+NZPkcqF69M8VQiUMI8E2fbhI -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:07 2025 by rpki-client