$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: d+u9It2gI6q6xyE9TpRD3OzAS4QyZ15etgxF+/tUKVY= Subject key identifier: 2A:59:34:4D:A1:EE:2A:F3:A4:FA:BD:8A:B4:AF:44:3E:3D:24:38:F1 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 24EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 24EF Signing time: Thu 10 Apr 2025 14:34:17 +0000 Manifest this update: Thu 10 Apr 2025 14:34:17 +0000 Manifest next update: Thu 17 Apr 2025 14:34:17 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: EB1X/2+KbvgwgUvtB0RWpm/3v1h6y7obK9Dz691UwTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9455 (0x24ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE Validity Not Before: Apr 10 14:34:17 2025 GMT Not After : Apr 17 14:34:17 2025 GMT Subject: CN=67f7d6e9-cf25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2f:e9:85:3b:25:d8:97:53:3c:7d:3e:68:2a: e6:d6:9a:45:16:99:02:6e:01:d4:58:d9:89:16:7a: 8d:e6:62:a6:1d:83:9f:99:6b:4d:f5:bb:b5:ab:eb: 08:c4:1c:27:a9:d0:9d:db:c8:48:07:d8:56:cd:52: a4:1c:ce:5c:4e:5c:b7:40:9b:92:f7:10:a4:3b:1a: a8:a3:f9:02:07:15:4a:72:e0:6a:6c:64:65:af:93: f5:6f:0a:01:fb:22:52:30:b2:e8:4c:fa:91:d3:6d: 34:de:ae:c0:ee:80:18:67:d1:ca:d4:21:02:1e:4c: 53:06:37:a3:91:3b:51:7e:ba:94:b8:dc:a9:00:46: d2:e6:e3:af:28:e9:c6:0c:e7:cd:ab:6d:04:56:88: 0d:8d:fa:52:e0:39:8b:b6:ae:0e:bb:a3:ab:86:08: 47:a0:c0:a6:46:d6:59:fa:10:aa:24:61:b7:c0:63: 04:45:b9:5f:ca:4b:61:8e:ba:dc:b6:91:50:4b:cc: f2:c9:b7:2b:55:2d:83:20:02:48:bc:a8:e0:5d:f9: f3:f4:47:43:60:cf:a7:cb:b6:a2:49:5d:73:bf:17: 08:f9:b2:db:7b:da:8e:4b:ca:3c:8d:7e:b6:b7:c9: 50:7b:28:d3:c3:7d:8a:0e:c1:17:2e:f6:8a:7c:e0: 3e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:59:34:4D:A1:EE:2A:F3:A4:FA:BD:8A:B4:AF:44:3E:3D:24:38:F1 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:da:93:6a:b7:22:ff:d0:d1:73:ae:57:87:ba:61:01:f7:3f: 52:40:4c:21:aa:08:1f:1b:77:d0:fb:53:59:01:bf:33:f7:80: 86:43:26:bf:bf:67:32:0a:22:ce:ad:98:5f:a8:94:46:58:0c: a7:08:13:b8:8c:7b:1d:59:23:86:bc:4a:30:5b:7e:a0:26:f4: 96:58:ac:f9:6c:a4:ea:44:ba:3f:6b:2f:b1:2b:a7:09:63:3a: a5:19:dc:56:50:46:1b:66:04:cd:2a:9a:1b:41:d8:00:12:38: 6b:e6:94:c1:54:cb:a4:f8:6b:be:33:6b:1b:39:7f:31:6a:26: 1f:69:ca:29:23:6e:42:2e:4b:a4:5c:c8:70:11:55:a8:ab:1e: 0a:27:6d:9f:7e:db:54:bd:84:d6:01:a2:b1:f1:26:34:a0:7d: 15:38:86:07:de:22:f0:d1:66:d5:9e:ae:ae:6c:92:76:33:6e: 8e:23:8c:72:f8:f4:34:03:20:b5:5a:e0:58:e2:65:3d:b2:3e: a4:f8:dd:e1:39:63:dc:67:37:14:b4:ef:17:f8:fc:d8:ac:96: 68:95:66:65:13:e3:08:55:81:50:96:5f:1c:5c:96:fa:a7:72: c2:00:c3:f7:9a:bb:ac:c8:8a:85:82:56:4d:b3:d8:c9:d9:7d: 9e:b6:2d:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNDEwMTQzNDE3WhcNMjUwNDE3MTQzNDE3WjAYMRYwFAYD VQQDEw02N2Y3ZDZlOS1jZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApy/phTsl2JdTPH0+aCrm1ppFFpkCbgHUWNmJFnqN5mKmHYOfmWtN9bu1q+sI xBwnqdCd28hIB9hWzVKkHM5cTly3QJuS9xCkOxqoo/kCBxVKcuBqbGRlr5P1bwoB +yJSMLLoTPqR02003q7A7oAYZ9HK1CECHkxTBjejkTtRfrqUuNypAEbS5uOvKOnG DOfNq20EVogNjfpS4DmLtq4Ou6OrhghHoMCmRtZZ+hCqJGG3wGMERblfykthjrrc tpFQS8zyybcrVS2DIAJIvKjgXfnz9EdDYM+ny7aiSV1zvxcI+bLbe9qOS8o8jX62 t8lQeyjTw32KDsEXLvaKfOA+xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpZNE2h 7irzpPq9irSvRD49JDjxMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX2pNqtyL/0NFzrleHumEB9z9SQEwhqggfG3fQ+1NZAb8z94CGQya/ v2cyCiLOrZhfqJRGWAynCBO4jHsdWSOGvEowW36gJvSWWKz5bKTqRLo/ay+xK6cJ YzqlGdxWUEYbZgTNKpobQdgAEjhr5pTBVMuk+Gu+M2sbOX8xaiYfacopI25CLkuk XMhwEVWoqx4KJ22ffttUvYTWAaKx8SY0oH0VOIYH3iLw0WbVnq6ubJJ2M26OI4xy +PQ0AyC1WuBY4mU9sj6k+N3hOWPcZzcUtO8X+PzYrJZolWZlE+MIVYFQll8cXJb6 p3LCAMP3mrusyIqFglZNs9jJ2X2eti0d -----END CERTIFICATE-----Generated at Thu Apr 10 23:20:29 2025 by rpki-client