$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft File: cXLtDPRHBezrGWHROgV-z_MHyG8.mft (raw, json) Hash identifier: KU+op8u07XaR2Ch3vfd3vUxd54kFMkSFP/0Y0oZ22BQ= Subject key identifier: F0:72:80:64:C5:B4:C9:2E:63:41:C5:EA:41:1E:D7:89:EE:C2:AC:39 Authority key identifier: 71:72:ED:0C:F4:47:05:EC:EB:19:61:D1:3A:05:7E:CF:F3:07:C8:6F Certificate issuer: /CN=A913B7C7/serialNumber=7172ED0CF44705ECEB1961D13A057ECFF307C86F Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft Manifest number: 58 Signing time: Fri 25 Apr 2025 06:09:34 +0000 Manifest this update: Fri 25 Apr 2025 06:09:34 +0000 Manifest next update: Fri 02 May 2025 06:09:34 +0000 Files and hashes: 1: cXLtDPRHBezrGWHROgV-z_MHyG8.crl (hash: r0WoHZIo+zQOK71PflsG+5sOB5n2Yd6LkNFHQfKhv40=) 2: 1A1C5AF89D9C11EFAAA9FA6AC4F9AE02.roa (hash: hV0+1IwRiq4hHk9yI+8OcLJdXek+Jfs+77Mer9xXqoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.crl rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7C7, serialNumber=7172ED0CF44705ECEB1961D13A057ECFF307C86F Validity Not Before: Apr 25 06:09:34 2025 GMT Not After : May 2 06:09:34 2025 GMT Subject: CN=680b271e-4f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:71:4d:b9:ed:dd:21:41:b9:b5:bb:4f:61: 96:ac:39:f9:e5:05:dc:51:58:72:d4:a3:78:31:43: 3f:16:7a:81:ad:4f:64:65:70:bb:30:83:b7:a5:ea: 09:a3:d7:c1:68:04:82:b0:28:d7:eb:7c:38:2a:98: 40:2a:e9:af:da:58:41:52:f2:23:f4:2a:38:bc:6f: d5:d6:dd:13:d6:ad:32:58:fc:dd:e2:fc:0b:b9:38: c2:15:69:b5:e9:38:6d:60:a1:dc:9b:51:8d:e3:ff: 4b:17:cc:02:e1:37:14:5f:ed:76:8b:52:50:80:70: f5:43:08:5f:a6:1f:84:0f:9c:80:68:15:2a:23:27: f4:2b:74:0c:dd:0d:5b:56:11:c0:b5:9d:ec:51:83: 68:04:b2:4d:8e:b4:86:18:c4:5a:85:92:db:c4:43: 82:0e:e6:ee:ee:fa:ed:f8:ca:97:fc:d7:28:d7:58: 6d:a7:02:e8:86:e0:e5:b0:06:08:49:46:e2:db:0d: 16:83:fa:7e:25:be:21:15:22:fc:f5:a0:d2:fd:4c: 35:b7:24:69:5e:65:40:c6:c9:97:4d:97:54:2f:7a: 85:b0:88:4b:1e:6f:2a:a4:02:36:7d:25:1f:27:fc: 32:69:4b:d3:97:d0:88:4e:35:e3:2f:83:b3:19:a1: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:72:80:64:C5:B4:C9:2E:63:41:C5:EA:41:1E:D7:89:EE:C2:AC:39 X509v3 Authority Key Identifier: keyid:71:72:ED:0C:F4:47:05:EC:EB:19:61:D1:3A:05:7E:CF:F3:07:C8:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:54:db:5a:b5:9c:81:56:11:f5:60:cc:ce:6f:16:fd:9a:11: ab:bb:86:01:1b:29:3e:13:27:00:0d:c3:0e:ec:68:df:34:c0: d6:14:f9:46:ae:bd:d8:88:42:f9:4a:a2:98:61:6e:88:57:8a: e1:35:59:23:05:1c:55:36:4f:e4:7d:30:2a:16:35:93:84:98: ae:69:43:ec:ff:be:3b:6b:1a:00:6b:72:9e:b5:54:6b:2b:8f: e9:b4:97:a6:9c:86:df:9a:ac:bd:fe:76:3f:62:6e:e1:52:01: 02:e8:a4:17:a4:e5:5a:47:d9:40:ce:ad:e6:86:50:b1:fa:3e: d7:b3:fa:5b:55:cd:d5:3e:b8:48:b8:70:5c:f7:22:8d:95:df: 71:0a:94:f1:3a:db:a2:63:14:6b:a8:f8:21:97:55:2a:c2:f1: 9e:b5:e5:4e:ac:6e:1c:c1:8e:11:62:ef:20:0a:dc:24:f6:e9: 88:e8:11:13:4c:15:53:f8:ee:67:cc:8c:8e:35:f9:6e:5f:a3: 32:59:30:a1:ed:cb:d5:1f:f7:3f:0a:da:92:e2:93:0e:58:0d: 5f:03:6c:e0:2b:c9:6d:fc:e5:ce:e4:72:9e:fc:42:8e:fd:37: 5e:49:e9:c3:5f:91:6b:81:84:31:77:ec:cd:f6:3f:ef:87:7d: 1d:00:60:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjdDNzExMC8GA1UEBRMoNzE3MkVEMENGNDQ3MDVFQ0VCMTk2MUQxM0EwNTdFQ0ZG MzA3Qzg2RjAeFw0yNTA0MjUwNjA5MzRaFw0yNTA1MDIwNjA5MzRaMBgxFjAUBgNV BAMTDTY4MGIyNzFlLTRmNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6H3FNue3dIUG5tbtPYZasOfnlBdxRWHLUo3gxQz8WeoGtT2RlcLswg7el6gmj 18FoBIKwKNfrfDgqmEAq6a/aWEFS8iP0Kji8b9XW3RPWrTJY/N3i/Au5OMIVabXp OG1godybUY3j/0sXzALhNxRf7XaLUlCAcPVDCF+mH4QPnIBoFSojJ/QrdAzdDVtW EcC1nexRg2gEsk2OtIYYxFqFktvEQ4IO5u7u+u34ypf81yjXWG2nAuiG4OWwBghJ RuLbDRaD+n4lviEVIvz1oNL9TDW3JGleZUDGyZdNl1QveoWwiEsebyqkAjZ9JR8n /DJpS9OX0IhONeMvg7MZoYMVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8HKAZMW0 yS5jQcXqQR7Xie7CrDkwHwYDVR0jBBgwFoAUcXLtDPRHBezrGWHROgV+z/MHyG8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCN0M3L0FBMkE3ODRDOUQ5 QjExRUY4NjA1MDQ2OUM0RjlBRTAyL2NYTHREUFJIQmV6ckdXSFJPZ1Ytel9NSHlH OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hMdERQUkhCZXpyR1dIUk9nVi16X01IeUc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC N0M3L0FBMkE3ODRDOUQ5QjExRUY4NjA1MDQ2OUM0RjlBRTAyL2NYTHREUFJIQmV6 ckdXSFJPZ1Ytel9NSHlHOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAARU21q1nIFWEfVgzM5vFv2aEau7hgEbKT4TJwANww7saN80wNYU+Uau vdiIQvlKophhbohXiuE1WSMFHFU2T+R9MCoWNZOEmK5pQ+z/vjtrGgBrcp61VGsr j+m0l6acht+arL3+dj9ibuFSAQLopBek5VpH2UDOreaGULH6Ptez+ltVzdU+uEi4 cFz3Io2V33EKlPE626JjFGuo+CGXVSrC8Z615U6sbhzBjhFi7yAK3CT26YjoERNM FVP47mfMjI41+W5fozJZMKHty9Uf9z8K2pLikw5YDV8DbOAryW385c7kcp78Qo79 N15J6cNfkWuBhDF37M32P++HfR0AYHs= -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:01 2025 by rpki-client