$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft File: XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft (raw, json) Hash identifier: Ri6W1pqFXkLCMzSMcq7fazLXrpD46NisKT6G0SogA08= Subject key identifier: 0F:70:C2:2F:C1:39:DC:9A:C3:4E:0E:DA:F8:63:9A:28:0D:20:94:27 Authority key identifier: 5C:32:7B:4A:23:5B:F8:90:FD:26:91:FB:03:E9:4A:6F:16:CB:F2:3C Certificate issuer: /CN=A91FBD89/serialNumber=5C327B4A235BF890FD2691FB03E94A6F16CBF23C Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft Manifest number: 0193 Signing time: Tue 08 Apr 2025 23:26:52 +0000 Manifest this update: Tue 08 Apr 2025 23:26:52 +0000 Manifest next update: Tue 15 Apr 2025 23:26:52 +0000 Files and hashes: 1: XDJ7SiNb-JD9JpH7A-lKbxbL8jw.crl (hash: OMC4ks1XRDMwt7WOI4EF6eEs2fjqA3UYf6SmzVHiMn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89 Validity Not Before: Apr 8 23:26:52 2025 GMT Not After : Apr 15 23:26:52 2025 GMT Subject: CN=67f5b0bc-ddd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ec:c4:15:bd:d6:5b:4c:9f:d0:d8:1c:df:1d: 78:1b:36:46:42:6a:b4:ac:2d:80:33:9a:9b:d1:59: b4:bd:87:d4:a2:e7:50:fb:45:d1:79:a1:d4:8e:6d: 12:84:b7:66:46:67:3f:88:c2:95:00:2f:bb:ec:4b: 39:e9:ff:99:0e:e4:e9:4b:42:6e:b7:d4:04:d8:02: df:06:17:ce:37:82:3f:d5:ff:21:89:9c:e9:c4:00: 77:94:8d:9f:d6:41:63:56:47:dd:87:8b:ab:72:ec: 3e:1d:75:c6:8e:eb:b0:28:95:15:0a:e9:13:eb:90: 21:cf:7c:3d:82:ef:b5:fa:37:7c:41:e4:26:4d:e5: 81:1b:78:a2:ad:68:4f:e2:38:08:bf:28:ee:cc:95: 1d:a4:6f:74:a8:68:30:22:b2:a0:9b:5f:a7:f5:d5: 88:34:a0:5d:3a:58:d2:19:f3:ce:f3:7b:2a:d2:77: 01:5a:16:3d:da:d3:74:f4:6e:2c:f2:62:be:17:f3: 80:5d:a3:e5:81:c6:a2:da:33:13:60:84:75:2b:62: 51:57:eb:40:0d:a7:40:9e:47:89:e3:1b:49:67:dd: 00:89:2e:37:23:b8:0f:0e:cc:c5:ab:2e:88:f7:a0: 6a:68:55:6b:0c:d0:35:b1:1a:4c:a5:6f:65:2f:8b: 63:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:70:C2:2F:C1:39:DC:9A:C3:4E:0E:DA:F8:63:9A:28:0D:20:94:27 X509v3 Authority Key Identifier: keyid:5C:32:7B:4A:23:5B:F8:90:FD:26:91:FB:03:E9:4A:6F:16:CB:F2:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:87:8a:68:89:1c:12:c4:8c:19:2a:f1:1b:22:f6:a5:6a:aa: ef:5d:92:62:7f:cc:26:95:65:39:37:aa:e0:68:ad:a7:83:96: 47:81:7e:16:51:f2:dc:09:e4:a4:55:a0:85:8c:81:4a:2d:b4: 99:40:69:8a:77:cb:d3:70:db:cd:0b:6e:ce:5a:16:1d:28:e9: 24:f4:8a:1d:4a:6f:2f:db:fc:93:1a:56:6a:85:ce:9a:5f:82: 95:d3:46:4e:cf:1a:24:99:40:93:d6:4d:e7:98:b3:72:08:d7: 73:81:5d:42:04:10:09:8e:20:cc:c2:5a:62:72:93:9d:f6:af: a9:71:4a:a4:fb:ea:06:c6:16:b0:5f:0d:a9:9b:b8:34:ee:41: 4f:e3:92:77:ed:b8:49:a0:c7:98:28:b0:10:98:7d:96:cb:70: 9c:83:f3:f0:9f:d1:b2:73:cd:a8:07:55:06:74:01:65:51:18: 09:05:ec:7c:ea:7d:e8:54:5b:0a:99:c3:24:cd:32:df:c6:f7: b0:68:8c:5c:ee:2d:58:e4:21:91:ec:84:72:6e:96:12:3c:de: ee:fc:f1:57:9a:95:e6:40:59:d1:a7:3c:92:ef:4f:82:c8:f4: 3a:55:65:03:74:99:c2:23:8b:44:ac:e9:47:85:90:2f:b9:e5: 0e:1a:e7:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDMzI3QjRBMjM1QkY4OTBGRDI2OTFGQjAzRTk0QTZG MTZDQkYyM0MwHhcNMjUwNDA4MjMyNjUyWhcNMjUwNDE1MjMyNjUyWjAYMRYwFAYD VQQDEw02N2Y1YjBiYy1kZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+zEFb3WW0yf0Ngc3x14GzZGQmq0rC2AM5qb0Vm0vYfUoudQ+0XReaHUjm0S hLdmRmc/iMKVAC+77Es56f+ZDuTpS0Jut9QE2ALfBhfON4I/1f8hiZzpxAB3lI2f 1kFjVkfdh4urcuw+HXXGjuuwKJUVCukT65Ahz3w9gu+1+jd8QeQmTeWBG3iirWhP 4jgIvyjuzJUdpG90qGgwIrKgm1+n9dWINKBdOljSGfPO83sq0ncBWhY92tN09G4s 8mK+F/OAXaPlgcai2jMTYIR1K2JRV+tADadAnkeJ4xtJZ90AiS43I7gPDszFqy6I 96BqaFVrDNA1sRpMpW9lL4tjuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9wwi/B Odyaw04O2vhjmigNIJQnMB8GA1UdIwQYMBaAFFwye0ojW/iQ/SaR+wPpSm8Wy/I8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS83NUIyODZDMkFF OTYxMUVEOEE5NjU2NjRDNEY5QUUwMi9YREo3U2lOYi1KRDlKcEg3QS1sS2J4Ykw4 ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hESjdTaU5iLUpEOUpwSDdBLWxLYnhiTDhqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS83NUIyODZDMkFFOTYxMUVEOEE5NjU2NjRDNEY5QUUwMi9YREo3U2lOYi1K RDlKcEg3QS1sS2J4Ykw4ancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+h4poiRwSxIwZKvEbIvalaqrvXZJif8wmlWU5N6rgaK2ng5ZHgX4W UfLcCeSkVaCFjIFKLbSZQGmKd8vTcNvNC27OWhYdKOkk9IodSm8v2/yTGlZqhc6a X4KV00ZOzxokmUCT1k3nmLNyCNdzgV1CBBAJjiDMwlpicpOd9q+pcUqk++oGxhaw Xw2pm7g07kFP45J37bhJoMeYKLAQmH2Wy3Ccg/Pwn9Gyc82oB1UGdAFlURgJBex8 6n3oVFsKmcMkzTLfxvewaIxc7i1Y5CGR7IRybpYSPN7u/PFXmpXmQFnRpzyS70+C yPQ6VWUDdJnCI4tErOlHhZAvueUOGudD -----END CERTIFICATE-----Generated at Fri Apr 11 00:39:36 2025 by rpki-client