$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft File: xHWJli7Q04kmIr5be4vu_ozniKc.mft (raw, json) Hash identifier: GaX2t1FMJTpDg9Ngy8dOayIBF3JccQ5Bb8ShS3VEkAM= Subject key identifier: 4D:32:BE:76:55:15:F7:D4:5C:C5:07:0B:42:7A:7E:D3:CB:2B:01:6B Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft Manifest number: DC Signing time: Thu 13 Mar 2025 03:48:08 +0000 Manifest this update: Thu 13 Mar 2025 03:48:08 +0000 Manifest next update: Thu 20 Mar 2025 03:48:08 +0000 Files and hashes: 1: xHWJli7Q04kmIr5be4vu_ozniKc.crl (hash: /ph3fTa8uhx8+qotJ7XfjqnDdPfiKAq5xYs9hD8wKTM=) 2: 4E2CAC386E8711EF8521ED6FC4F9AE02.roa (hash: rFJbuDYL88Z9KeNowFp3y8pDODtibJ7P1KjjzQ7u73o=) 3: 8C7D223C2DAB11EF88127264C4F9AE02.roa (hash: qHX8rwWLzYwQ68AYEwJa6sYGgUw03regWlERxMTMTs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A13A6 Validity Not Before: Mar 13 03:48:08 2025 GMT Not After : Mar 20 03:48:08 2025 GMT Subject: CN=67d25578-58a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ee:e7:b4:18:41:d4:cc:1d:12:e8:9c:4a:ac: 62:1a:e5:27:30:ab:2a:27:1b:63:a4:5b:d2:c4:9e: 9f:f0:49:a8:34:32:98:ae:a1:59:b6:15:c4:28:0a: b5:27:b1:44:07:48:f6:60:fc:b4:5c:9e:f4:21:52: be:1f:91:9c:fc:7f:b7:e3:f8:f0:93:02:60:d5:cd: a3:ba:6e:a6:85:f9:5b:8c:e5:ac:4e:99:2a:80:96: 60:bf:ea:84:02:68:c6:7f:c9:6a:d1:fe:3b:ef:43: 8f:a2:ef:6a:5a:13:08:d6:3a:aa:c1:1c:05:4a:00: d3:7d:c0:e9:9d:14:26:0b:d3:91:86:21:9a:e5:39: 18:c4:14:14:95:d7:80:5b:86:e3:92:0b:4f:de:34: e2:92:5c:ab:e1:10:47:d6:f9:68:e9:b3:77:f7:5d: 02:36:8e:bb:cc:43:87:71:fb:13:42:94:36:18:3d: 4b:7b:c6:82:d7:7c:7c:9a:15:3a:b2:d3:d9:5d:ad: 4e:9c:5b:b3:2b:89:a5:7e:6a:99:74:d9:c7:13:f8: 52:cf:dd:bf:40:0f:76:29:a1:ee:45:35:98:9f:13: d3:f3:79:ce:7d:cf:69:76:bf:7b:fa:0f:9a:5b:9c: d5:6e:01:08:05:08:8c:10:7d:9c:3a:61:75:f3:5e: 33:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:32:BE:76:55:15:F7:D4:5C:C5:07:0B:42:7A:7E:D3:CB:2B:01:6B X509v3 Authority Key Identifier: keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:6f:90:e2:f5:4a:4e:aa:fc:a6:f3:1b:51:69:fc:2c:e8:e7: 12:cb:55:87:ad:72:0e:0b:ab:a1:7b:da:11:f1:23:cb:da:da: a1:7a:40:16:ac:33:da:e5:b7:32:50:2d:28:f9:3d:dc:11:5f: 13:52:5f:d8:cf:66:ae:b2:87:4b:16:49:c2:fe:5a:94:6f:33: c1:3f:7e:a0:85:9e:52:f0:22:28:c0:fe:68:f3:e2:12:f2:a1: d1:bb:be:5d:fd:c4:8c:e1:df:37:74:c4:f1:4a:ef:54:51:bc: 29:59:f5:5c:03:8b:96:86:4b:e5:27:7e:a8:00:27:29:b3:77: ef:28:88:59:bf:1b:63:b1:9d:76:1a:9f:f0:a8:da:8e:bd:a3: ea:1e:2d:e5:96:a8:c6:92:55:cc:c9:f4:f1:58:f7:56:04:ba: bd:0b:e9:32:7f:ab:0b:b6:01:ad:7b:48:18:ee:02:ed:d4:03: c0:63:c7:3f:b4:b7:78:84:88:ca:bd:1d:d1:2b:63:92:87:ca: d9:32:d4:30:55:e7:75:39:ce:39:83:8e:01:bf:e0:ed:96:9d: b3:b0:93:d1:2e:39:1c:b4:39:98:4b:16:e7:99:0e:72:ef:de: 22:14:07:a6:73:b0:31:dc:d9:af:3f:aa:20:b1:21:93:9d:78: f9:e3:5d:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF OENFNzg4QTcwHhcNMjUwMzEzMDM0ODA4WhcNMjUwMzIwMDM0ODA4WjAYMRYwFAYD VQQDEw02N2QyNTU3OC01OGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO7ntBhB1MwdEuicSqxiGuUnMKsqJxtjpFvSxJ6f8EmoNDKYrqFZthXEKAq1 J7FEB0j2YPy0XJ70IVK+H5Gc/H+34/jwkwJg1c2jum6mhflbjOWsTpkqgJZgv+qE AmjGf8lq0f4770OPou9qWhMI1jqqwRwFSgDTfcDpnRQmC9ORhiGa5TkYxBQUldeA W4bjkgtP3jTiklyr4RBH1vlo6bN3910CNo67zEOHcfsTQpQ2GD1Le8aC13x8mhU6 stPZXa1OnFuzK4mlfmqZdNnHE/hSz92/QA92KaHuRTWYnxPT83nOfc9pdr97+g+a W5zVbgEIBQiMEH2cOmF1814z3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0yvnZV FffUXMUHC0J6ftPLKwFrMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTNBNi84MDc5NEM5QUMwOEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0 a21JcjViZTR2dV9vem5pS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBib5Di9UpOqvym8xtRafws6OcSy1WHrXIOC6uhe9oR8SPL2tqhekAW rDPa5bcyUC0o+T3cEV8TUl/Yz2ausodLFknC/lqUbzPBP36ghZ5S8CIowP5o8+IS 8qHRu75d/cSM4d83dMTxSu9UUbwpWfVcA4uWhkvlJ36oACcps3fvKIhZvxtjsZ12 Gp/wqNqOvaPqHi3llqjGklXMyfTxWPdWBLq9C+kyf6sLtgGte0gY7gLt1APAY8c/ tLd4hIjKvR3RK2OSh8rZMtQwVed1Oc45g44Bv+Dtlp2zsJPRLjkctDmYSxbnmQ5y 794iFAemc7Ax3NmvP6ogsSGTnXj5411+ -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:46 2025 by rpki-client