$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: TVkgY8jPydoEJXI06kcoBZvxZWy2lWaEOidQZ5veWMo= Subject key identifier: E6:6F:97:95:F7:AF:4C:A1:DE:3B:A2:DD:DA:26:69:94:28:F1:57:9E Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 029C Signing time: Thu 13 Mar 2025 01:08:21 +0000 Manifest this update: Thu 13 Mar 2025 01:08:20 +0000 Manifest next update: Thu 20 Mar 2025 01:08:20 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: vP2lY5Y0Mbr2mPlyLOt0kkhGb8LAJhNjqkLKOaZvcGg=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: cUJGyZcVowcCyXH2QiojzhWnaBYy0l9+HvH8D9IR1zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 01:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73 Validity Not Before: Mar 13 01:08:20 2025 GMT Not After : Mar 20 01:08:20 2025 GMT Subject: CN=67d23004-ccbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:26:a0:19:10:2f:35:18:a7:ba:24:4b:29:b9: fc:4e:45:5d:bc:c2:89:5b:48:9b:cf:a5:08:03:16: 61:c4:e4:a8:b7:43:bb:d2:96:ad:9d:7c:48:6e:ff: 87:a0:bd:31:d8:01:9d:fb:7a:e3:b3:02:cf:c9:64: 61:8a:ce:99:dc:8b:36:fb:15:cc:34:33:87:3d:bf: 64:59:d4:2b:03:09:6d:d3:18:1d:36:23:3e:db:3b: 9a:e0:9a:0d:b4:72:4c:b2:fc:7c:c2:e5:cb:45:6b: 86:23:81:0b:a0:c2:00:a5:aa:70:0d:fb:b7:4d:13: 1d:5a:cb:33:dd:af:12:2a:d3:f5:2f:d8:df:0b:d4: 65:56:26:bb:60:d2:64:15:5b:c9:1e:69:d9:23:ab: cc:ec:d2:ab:14:88:33:c7:12:c6:4c:fa:3d:c1:ce: 2a:1b:a0:61:7c:cd:a4:7c:82:3d:e7:4c:f2:8b:32: a2:24:51:25:e9:29:fc:37:2e:11:f7:65:86:90:c6: 91:ca:f2:b0:d0:33:25:a8:49:20:59:c5:65:a8:90: 53:cf:c7:0a:da:96:4f:6e:94:eb:70:52:e6:38:ce: 5a:a2:43:fc:1c:04:d2:8c:24:63:9c:fd:fb:85:64: d2:48:f5:3f:70:4b:32:49:1d:7e:0d:76:4a:fe:e1: 2e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6F:97:95:F7:AF:4C:A1:DE:3B:A2:DD:DA:26:69:94:28:F1:57:9E X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:59:49:f8:80:e6:07:a1:ed:2e:79:2f:d3:a3:88:ba:e8:63: d8:7d:e8:00:2c:ba:08:0b:41:3b:af:ed:bf:88:04:34:64:d7: c4:7f:cd:88:09:be:11:8a:51:32:1b:6d:0f:07:b2:fc:dd:a4: 8c:b1:cd:45:31:a3:2c:a7:58:c7:f0:63:8b:6d:ce:56:d3:4b: 19:93:53:4f:5b:ff:00:b6:a7:8b:94:6f:33:39:c5:cf:9b:76: 1c:d9:ac:e5:73:ee:bd:35:32:90:3d:3d:d6:cf:4d:cf:cd:65: da:93:38:c7:01:89:35:68:ed:e7:c2:6f:fd:d7:42:1a:cf:2c: 9e:bc:bc:c0:0c:74:9f:3a:a7:0e:c8:4a:d4:bd:12:a9:a0:52: f4:14:ac:a4:06:68:13:38:26:79:7d:55:aa:8d:3d:a0:5d:13: 4a:6e:1f:fb:80:e7:8c:06:b0:21:a9:fd:bf:21:da:19:a5:e3: 98:dd:b2:de:8c:e0:e2:67:37:d3:b9:b3:12:67:a1:28:61:09: f4:5e:fc:0e:76:21:59:06:6b:fd:52:e2:16:0f:55:e8:96:c9: c5:c9:54:31:d6:33:60:67:33:d5:78:eb:e6:25:5e:2e:82:93: a9:5b:80:ca:4d:7a:a6:18:40:ec:f4:03:69:00:6f:1c:95:57: 9a:4e:a0:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwMzEzMDEwODIwWhcNMjUwMzIwMDEwODIwWjAYMRYwFAYD VQQDEw02N2QyMzAwNC1jY2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCagGRAvNRinuiRLKbn8TkVdvMKJW0ibz6UIAxZhxOSot0O70patnXxIbv+H oL0x2AGd+3rjswLPyWRhis6Z3Is2+xXMNDOHPb9kWdQrAwlt0xgdNiM+2zua4JoN tHJMsvx8wuXLRWuGI4ELoMIApapwDfu3TRMdWssz3a8SKtP1L9jfC9RlVia7YNJk FVvJHmnZI6vM7NKrFIgzxxLGTPo9wc4qG6BhfM2kfII950zyizKiJFEl6Sn8Ny4R 92WGkMaRyvKw0DMlqEkgWcVlqJBTz8cK2pZPbpTrcFLmOM5aokP8HATSjCRjnP37 hWTSSPU/cEsySR1+DXZK/uEuLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZvl5X3 r0yh3jui3domaZQo8VeeMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhWUn4gOYHoe0ueS/To4i66GPYfegALLoIC0E7r+2/iAQ0ZNfEf82I Cb4RilEyG20PB7L83aSMsc1FMaMsp1jH8GOLbc5W00sZk1NPW/8AtqeLlG8zOcXP m3Yc2azlc+69NTKQPT3Wz03PzWXakzjHAYk1aO3nwm/910IazyyevLzADHSfOqcO yErUvRKpoFL0FKykBmgTOCZ5fVWqjT2gXRNKbh/7gOeMBrAhqf2/IdoZpeOY3bLe jODiZzfTubMSZ6EoYQn0XvwOdiFZBmv9UuIWD1XolsnFyVQx1jNgZzPVeOvmJV4u gpOpW4DKTXqmGEDs9ANpAG8clVeaTqBV -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:08 2025 by rpki-client