$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: ft8hvasjqqX7fyWcrnD1ZwWTWkrTVa2k/6b4m3vQAgw= Subject key identifier: 08:7F:A9:46:24:2D:C4:22:D8:84:FB:E7:21:6B:AE:33:82:5F:90:AF Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 07A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 0799 Signing time: Fri 04 Apr 2025 21:24:50 +0000 Manifest this update: Fri 04 Apr 2025 21:24:49 +0000 Manifest next update: Fri 11 Apr 2025 21:24:49 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: ep6A/BK5b75beJE4NMSiUsswq1Oel7GcTgUEYuxEKsc=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1952 (0x7a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088 Validity Not Before: Apr 4 21:24:49 2025 GMT Not After : Apr 11 21:24:49 2025 GMT Subject: CN=67f04e22-a8fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dc:f0:2e:23:53:37:ba:e8:0d:cf:b6:6e:e5: ec:91:b0:dd:72:61:02:0b:4a:a4:4b:e2:38:2f:d5: 73:6e:ea:55:45:d1:38:65:33:d0:3a:e1:c1:a1:e2: c0:e0:3f:ee:af:3b:75:83:2e:53:25:d2:40:3c:07: 8b:0f:6b:90:ca:47:93:2b:f3:3f:77:79:ea:9c:cd: 1a:74:4a:1a:c9:ac:3c:d6:ea:d1:b9:01:3e:44:ba: ac:4c:30:35:b6:64:98:d4:09:37:1a:7f:ff:13:ef: 5d:a7:a9:7a:1a:b0:a7:a2:15:90:06:2c:cb:4d:68: bd:92:a9:33:02:17:eb:4e:69:9a:31:22:e5:f5:c5: 8f:59:df:d4:67:b4:cb:d5:04:ac:96:d5:d5:a3:2e: c5:eb:b7:20:99:1c:dd:a7:db:92:65:f9:0c:d3:be: 84:cb:a9:05:1c:cd:16:55:b7:d1:5d:60:06:17:90: 8f:12:d3:2c:8d:a8:6e:0b:03:51:b5:4d:27:bb:af: 76:50:50:33:36:3d:15:fb:08:1a:d8:0d:51:1b:00: fb:bd:1d:a3:a6:04:f3:cb:51:b6:85:c3:65:88:78: c7:58:75:13:ef:71:e0:71:5a:d0:76:83:09:d0:eb: 17:ff:dd:78:9b:bf:f0:7f:fa:67:fc:f9:4a:a9:b7: 9d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7F:A9:46:24:2D:C4:22:D8:84:FB:E7:21:6B:AE:33:82:5F:90:AF X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:68:41:ed:70:ce:73:0f:7e:1e:11:47:36:0b:27:c9:1e:26: 7a:96:b3:71:22:ed:b9:7e:2d:9c:5d:d0:65:ed:9b:01:54:54: 51:28:97:40:12:b0:a7:75:ee:f8:4d:04:26:43:c3:88:66:2f: c8:b9:dd:8d:ff:38:01:e8:cf:f9:8e:22:6a:34:32:10:5a:00: c0:06:6e:0b:fc:75:b1:c4:82:8c:7a:c4:5d:3b:b5:3c:da:3e: 27:1c:2f:21:df:77:e7:6b:af:03:74:8e:9e:0f:7b:b3:34:48: 81:5c:8f:9d:54:68:9e:ec:1f:d9:84:43:8e:09:62:b4:e5:c5: 4f:e7:6f:a1:2c:93:e2:bd:2c:9f:da:9a:03:c9:9a:38:2a:83: 16:66:73:b6:b0:0c:e8:89:47:ae:f7:68:3d:62:2e:98:32:d8: 44:bd:e3:6e:4b:dd:19:7b:14:b6:e8:15:5f:1d:85:d0:ef:7d: 31:0f:a6:5e:ed:17:7f:73:68:19:26:b6:9f:11:57:87:86:f0: f9:6a:95:e9:82:4c:51:ee:30:d9:4b:e4:3d:6f:28:f5:78:4f: 43:2d:07:61:5f:c3:13:c1:aa:3c:72:59:c1:71:47:23:c0:53: 55:4c:29:66:5a:90:50:d3:62:ed:64:50:ca:93:cf:79:26:79: 28:14:06:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUwNDA0MjEyNDQ5WhcNMjUwNDExMjEyNDQ5WjAYMRYwFAYD VQQDEw02N2YwNGUyMi1hOGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19zwLiNTN7roDc+2buXskbDdcmECC0qkS+I4L9VzbupVRdE4ZTPQOuHBoeLA 4D/urzt1gy5TJdJAPAeLD2uQykeTK/M/d3nqnM0adEoayaw81urRuQE+RLqsTDA1 tmSY1Ak3Gn//E+9dp6l6GrCnohWQBizLTWi9kqkzAhfrTmmaMSLl9cWPWd/UZ7TL 1QSsltXVoy7F67cgmRzdp9uSZfkM076Ey6kFHM0WVbfRXWAGF5CPEtMsjahuCwNR tU0nu692UFAzNj0V+wga2A1RGwD7vR2jpgTzy1G2hcNliHjHWHUT73HgcVrQdoMJ 0OsX/914m7/wf/pn/PlKqbedNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAh/qUYk LcQi2IT75yFrrjOCX5CvMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+aEHtcM5zD34eEUc2CyfJHiZ6lrNxIu25fi2cXdBl7ZsBVFRRKJdA ErCnde74TQQmQ8OIZi/Iud2N/zgB6M/5jiJqNDIQWgDABm4L/HWxxIKMesRdO7U8 2j4nHC8h33fna68DdI6eD3uzNEiBXI+dVGie7B/ZhEOOCWK05cVP52+hLJPivSyf 2poDyZo4KoMWZnO2sAzoiUeu92g9Yi6YMthEveNuS90ZexS26BVfHYXQ730xD6Ze 7Rd/c2gZJrafEVeHhvD5apXpgkxR7jDZS+Q9byj1eE9DLQdhX8MTwao8clnBcUcj wFNVTClmWpBQ02LtZFDKk895JnkoFAYm -----END CERTIFICATE-----Generated at Sun Apr 6 13:46:43 2025 by rpki-client