$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: vCtrjCiA++u/Xj0tBsiLNgOclwszRzZ7bd/SW0LDDmE= Subject key identifier: 49:07:35:67:88:2D:C7:2E:C2:E3:3E:1B:72:A8:47:34:16:40:98:A7 Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 027B Signing time: Fri 25 Apr 2025 01:26:01 +0000 Manifest this update: Fri 25 Apr 2025 01:26:00 +0000 Manifest next update: Fri 02 May 2025 01:26:00 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: VssGIc5ZRfFkEuq9epkEQF8WTWcAq57QTSR85JDGc18=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: EuoLXvibJYzVLshOhBvVYHJccoZUmB/oPyzL/sJ9KVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9, serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: Apr 25 01:26:00 2025 GMT Not After : May 2 01:26:00 2025 GMT Subject: CN=680ae4a9-db41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:58:21:ea:57:79:f7:98:62:54:e9:e2:d8:36: 0b:74:ae:5b:a7:75:cc:0a:af:13:55:c3:58:78:77: 25:84:3f:3b:91:90:89:9f:ae:10:d3:b7:64:34:5d: 78:8e:0d:e4:89:3c:10:e3:c6:2a:ac:50:01:0b:ae: a1:11:e4:6b:9c:48:7f:aa:1b:d2:de:c6:ad:cd:9f: 45:b9:ca:89:00:e3:8d:5c:ea:47:61:0c:ae:4b:cf: f2:ef:3a:7f:c7:dc:71:6c:35:aa:f3:16:1a:a1:b8: 88:a1:a9:b5:a7:42:75:81:91:5a:83:b2:5b:ad:e9: 3b:b1:6d:37:0d:50:fe:f1:1d:72:48:8c:8b:42:65: 78:e7:09:be:4c:de:13:f9:54:36:a9:ce:96:72:f0: 41:83:1b:a2:a4:d5:bc:2c:12:8a:86:b9:d8:e6:e0: f6:cd:d6:19:1e:24:55:18:f4:a6:db:c2:c4:20:7a: 4a:75:ea:62:dd:82:38:6b:0d:df:4c:b9:c0:53:c3: 86:f5:e1:56:0e:a8:a8:38:aa:2d:b8:16:f9:be:86: 26:6a:a7:d8:4d:c3:29:18:f3:b7:ee:bf:05:39:5f: 1b:c0:2a:bf:0b:fe:7e:0f:46:b0:89:27:f1:42:0d: bd:26:55:78:6e:a6:83:68:d5:4e:15:11:55:44:c7: 9b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:07:35:67:88:2D:C7:2E:C2:E3:3E:1B:72:A8:47:34:16:40:98:A7 X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:be:ca:36:6c:c4:46:a0:0c:fe:77:ef:b3:68:9c:6f:a7:01: b5:b3:d6:ee:2a:ce:58:1a:df:b8:64:5a:ac:3e:9e:e6:49:e8: d2:42:38:69:d0:f1:6d:cf:c6:30:8e:9b:13:45:0f:cd:d0:24: 3b:86:c9:a3:83:0b:20:57:eb:14:0d:80:25:a3:0c:49:f5:ad: c3:23:01:0b:ad:e7:e5:9e:6d:e8:03:33:2f:64:0f:af:c9:2c: 7a:26:61:8c:f5:34:c4:b2:7e:3e:45:ec:b1:46:32:7d:c8:bc: fc:5b:59:20:d5:5a:ad:a1:59:e1:8b:2f:7b:53:1f:a5:be:f2: 53:c2:04:02:e1:43:4b:92:70:96:f8:87:03:10:0f:8e:52:c6: 47:1d:42:74:ca:13:51:70:5c:36:55:4c:66:39:b8:29:0e:49: 56:41:7d:71:a4:57:c1:56:46:c6:4f:5a:de:0a:ab:17:f8:78: d6:53:ff:e4:60:6f:54:bb:ee:b1:c8:42:e6:0e:6e:7f:69:56: dd:38:cc:47:66:84:c0:fa:e4:c7:ef:4c:9c:65:61:04:36:e5: b0:16:4d:f3:a3:8a:4b:fb:97:19:16:35:59:83:9a:bc:04:86: 0e:61:63:c9:b6:b8:96:93:7d:ee:d0:47:d0:66:67:bf:7e:83: f6:1c:2e:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjUwNDI1MDEyNjAwWhcNMjUwNTAyMDEyNjAwWjAYMRYwFAYD VQQDEw02ODBhZTRhOS1kYjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01gh6ld595hiVOni2DYLdK5bp3XMCq8TVcNYeHclhD87kZCJn64Q07dkNF14 jg3kiTwQ48YqrFABC66hEeRrnEh/qhvS3satzZ9FucqJAOONXOpHYQyuS8/y7zp/ x9xxbDWq8xYaobiIoam1p0J1gZFag7Jbrek7sW03DVD+8R1ySIyLQmV45wm+TN4T +VQ2qc6WcvBBgxuipNW8LBKKhrnY5uD2zdYZHiRVGPSm28LEIHpKdepi3YI4aw3f TLnAU8OG9eFWDqioOKotuBb5voYmaqfYTcMpGPO37r8FOV8bwCq/C/5+D0awiSfx Qg29JlV4bqaDaNVOFRFVRMebbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkHNWeI LccuwuM+G3KoRzQWQJinMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQvso2bMRGoAz+d++zaJxvpwG1s9buKs5YGt+4ZFqsPp7mSejSQjhp 0PFtz8YwjpsTRQ/N0CQ7hsmjgwsgV+sUDYAlowxJ9a3DIwELreflnm3oAzMvZA+v ySx6JmGM9TTEsn4+ReyxRjJ9yLz8W1kg1VqtoVnhiy97Ux+lvvJTwgQC4UNLknCW +IcDEA+OUsZHHUJ0yhNRcFw2VUxmObgpDklWQX1xpFfBVkbGT1reCqsX+HjWU//k YG9Uu+6xyELmDm5/aVbdOMxHZoTA+uTH70ycZWEENuWwFk3zo4pL+5cZFjVZg5q8 BIYOYWPJtriWk33u0EfQZme/foP2HC5i -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:55 2025 by rpki-client