$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: ezVLNn5r/B4W+z6Sd08aFrXv7ZZbvqyzRg6FRmNZpfA= Subject key identifier: B0:36:69:24:85:83:23:40:8F:D8:AA:1E:5F:4F:53:8B:90:E2:DD:56 Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 0717 Signing time: Wed 02 Apr 2025 21:51:47 +0000 Manifest this update: Wed 02 Apr 2025 21:51:46 +0000 Manifest next update: Wed 09 Apr 2025 21:51:46 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: N7NCdlLEgvCsRt5fWkB/rHIjoru5xiqgTMsS6M2/RAw=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: YBEc7X7y2zLa5OdEGOrRlwoEuxYs7fU2wrxzm81YklQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA Validity Not Before: Apr 2 21:51:46 2025 GMT Not After : Apr 9 21:51:46 2025 GMT Subject: CN=67edb173-4647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:55:00:bd:cb:bf:5f:08:a8:43:86:7e:46:e9: 3f:05:ca:23:26:85:7f:5e:2a:03:16:3a:ad:39:ec: 5e:db:8e:40:c3:14:37:2a:ca:b2:91:c2:19:a5:cf: c1:49:75:ca:56:3e:8c:77:6b:86:96:7e:23:19:b7: 61:89:ea:2d:d4:92:1a:42:2b:ab:b4:74:fb:c4:a4: e2:f8:d5:aa:1c:ce:c9:7c:d3:45:d7:ab:a3:7a:7d: a0:7c:a8:14:86:68:15:73:37:02:be:d8:4e:ef:1f: 7e:97:72:e8:4d:cd:22:29:68:9d:f3:8a:fb:4a:d1: 40:22:35:3a:27:46:08:38:a0:a8:8c:93:cb:5b:9c: b2:c9:cf:a0:61:0f:b1:74:c2:f1:17:26:de:7e:9d: fa:a8:95:80:ce:c6:37:38:f9:a9:0e:ad:b0:a4:93: 34:22:d3:35:fd:16:db:c6:85:8b:53:03:48:59:85: f1:e7:f4:ca:6d:08:e1:0d:dd:8d:c9:68:26:33:82: 43:58:f4:0a:c3:c6:d9:85:1d:99:63:5f:e5:39:f2: 76:d5:42:3b:55:06:78:a6:5a:c1:77:eb:3a:90:a5: e9:15:c6:f6:07:e8:36:42:bb:f4:67:75:18:74:37: 46:9c:96:4e:a3:64:f3:0b:e3:e9:a6:31:a3:1d:71: 0b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:36:69:24:85:83:23:40:8F:D8:AA:1E:5F:4F:53:8B:90:E2:DD:56 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d3:4e:91:9d:7f:06:87:9d:9e:32:2f:1d:87:88:9e:6c:ed: 4d:5b:70:23:26:5a:af:4e:49:b3:4d:52:6b:cc:20:94:07:ff: 33:f0:96:8f:27:e3:6f:f9:bf:1a:f5:9b:ac:6c:67:92:4a:da: a3:67:7c:02:4c:b2:a9:a3:6b:39:6d:d7:93:c5:0c:a2:c9:92: c2:3c:6b:ae:fa:59:81:b9:87:af:8c:d7:34:4c:1e:e8:51:98: 22:d1:f5:42:cc:9d:e5:29:4a:90:c2:d7:b3:12:67:12:60:ab: 66:3d:e9:55:ba:12:96:32:53:9a:ee:ca:64:40:19:4e:d5:4c: fd:7a:d3:5b:ca:2b:d1:6e:51:a7:69:50:8c:de:02:bf:fc:bb: ba:88:58:60:44:78:f6:d5:7a:9a:3f:0a:24:b1:4b:ad:77:00: 4f:2b:36:d2:ca:1c:6e:92:3a:31:62:e3:0a:e7:d5:b6:a5:2d: b9:34:e4:5a:a2:a9:47:94:92:25:11:3d:bd:cb:61:c8:6d:ba: 1a:bd:56:7c:1d:89:a1:21:80:dd:69:0e:5d:5d:e7:ff:e9:92: 32:3d:35:97:04:74:b3:af:4e:e9:63:b7:8d:c5:70:0d:53:0d: 89:cf:d2:d5:c0:23:58:6e:08:6b:ef:e1:f7:ad:cc:01:44:77: 6d:d9:1f:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjUwNDAyMjE1MTQ2WhcNMjUwNDA5MjE1MTQ2WjAYMRYwFAYD VQQDEw02N2VkYjE3My00NjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlUAvcu/XwioQ4Z+Ruk/BcojJoV/XioDFjqtOexe245AwxQ3KsqykcIZpc/B SXXKVj6Md2uGln4jGbdhieot1JIaQiurtHT7xKTi+NWqHM7JfNNF16ujen2gfKgU hmgVczcCvthO7x9+l3LoTc0iKWid84r7StFAIjU6J0YIOKCojJPLW5yyyc+gYQ+x dMLxFybefp36qJWAzsY3OPmpDq2wpJM0ItM1/RbbxoWLUwNIWYXx5/TKbQjhDd2N yWgmM4JDWPQKw8bZhR2ZY1/lOfJ21UI7VQZ4plrBd+s6kKXpFcb2B+g2Qrv0Z3UY dDdGnJZOo2TzC+PppjGjHXELLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLA2aSSF gyNAj9iqHl9PU4uQ4t1WMB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/006RnX8Gh52eMi8dh4iebO1NW3AjJlqvTkmzTVJrzCCUB/8z8JaP J+Nv+b8a9ZusbGeSStqjZ3wCTLKpo2s5bdeTxQyiyZLCPGuu+lmBuYevjNc0TB7o UZgi0fVCzJ3lKUqQwtezEmcSYKtmPelVuhKWMlOa7spkQBlO1Uz9etNbyivRblGn aVCM3gK//Lu6iFhgRHj21XqaPwoksUutdwBPKzbSyhxukjoxYuMK59W2pS25NORa oqlHlJIlET29y2HIbboavVZ8HYmhIYDdaQ5dXef/6ZIyPTWXBHSzr07pY7eNxXAN Uw2Jz9LVwCNYbghr7+H3rcwBRHdt2R+4 -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:13 2025 by rpki-client