$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft File: xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft (raw, json) Hash identifier: ZaU1BCKn9+rnEpS4UxhOTVODLEgfZhiM8vMPznW3d/A= Subject key identifier: 31:DD:92:AF:05:7A:9E:3E:DB:ED:8E:FD:70:57:18:B5:6B:30:5C:48 Authority key identifier: C4:43:9D:C0:1E:20:D1:6C:C5:A0:EF:98:17:D4:1B:F6:28:97:65:24 Certificate issuer: /CN=A913EF9C/serialNumber=C4439DC01E20D16CC5A0EF9817D41BF628976524 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft Manifest number: 35 Signing time: Fri 25 Apr 2025 06:36:13 +0000 Manifest this update: Fri 25 Apr 2025 06:36:13 +0000 Manifest next update: Fri 02 May 2025 06:36:12 +0000 Files and hashes: 1: xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.crl (hash: fCzmzkboyZS1jk5TID7vIz7HDJGzYyBVU0IjjIsXOi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.crl rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF9C, serialNumber=C4439DC01E20D16CC5A0EF9817D41BF628976524 Validity Not Before: Apr 25 06:36:13 2025 GMT Not After : May 2 06:36:12 2025 GMT Subject: CN=680b2d5d-0457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8d:e9:b1:64:36:49:e9:97:a7:81:62:ad:5a: fd:f8:7a:aa:1a:bc:ec:31:a4:55:4f:aa:05:ab:f0: a3:20:6a:e9:92:71:39:ff:99:13:eb:81:d8:39:79: 93:3b:75:34:df:06:1d:3b:75:dc:64:75:63:31:85: 84:4f:bf:11:a2:70:32:92:89:2e:b1:57:71:26:47: 35:c7:cd:78:1e:b6:a4:ab:07:6f:32:bf:93:85:b2: 9f:ee:3b:1d:1b:21:5c:d7:2d:b5:0e:06:3a:91:2b: 39:01:88:29:6f:89:8c:b9:a3:1f:82:4a:cd:a4:d8: bb:1b:22:ba:f7:7f:8b:5b:30:bb:b9:5d:85:f8:85: c2:ab:8a:ae:1a:74:7e:30:0b:bb:ee:23:9e:6d:7c: 4d:3f:de:f6:cf:b0:35:8d:2d:26:03:cb:28:58:8a: bd:ef:bc:07:7e:49:56:25:30:64:80:17:09:ee:69: de:97:97:2f:3b:60:0a:5c:bb:71:9a:f0:5f:1a:b3: 06:09:71:06:ea:a5:e2:8c:af:8a:65:da:31:04:17: 8e:39:8d:c2:fb:9d:7b:9c:69:64:ff:ce:af:64:71: b8:cc:1f:b8:df:dc:fd:4e:eb:0a:28:cc:41:81:48: ed:ec:e0:93:73:25:bb:aa:cc:1c:0e:de:38:8a:8e: a1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DD:92:AF:05:7A:9E:3E:DB:ED:8E:FD:70:57:18:B5:6B:30:5C:48 X509v3 Authority Key Identifier: keyid:C4:43:9D:C0:1E:20:D1:6C:C5:A0:EF:98:17:D4:1B:F6:28:97:65:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ae:0e:ad:dc:18:32:45:76:e6:64:48:9a:a1:06:7c:ee:38: 14:f0:55:23:89:88:8e:80:f2:86:e9:ad:7d:6d:8f:a1:4b:8e: b3:ba:19:1b:53:19:39:d6:84:89:79:a2:9e:cc:d0:90:37:9d: 0f:22:3f:ab:e0:8c:21:28:2d:01:96:51:ce:ba:de:68:8f:12: 2c:09:7c:9a:c1:59:cb:b0:f1:ce:a1:fd:e0:75:e0:e8:86:9d: 71:14:2c:e6:4a:87:68:96:1a:6b:27:ce:39:fe:62:69:17:08: ee:53:59:11:87:32:63:e5:01:c1:fd:5d:cd:6f:34:8a:2e:11: cd:56:54:54:10:c8:da:b0:cf:7b:9a:ee:b0:78:47:02:af:e6: f6:a3:ce:7e:97:5c:12:35:cd:10:63:3b:e9:11:c5:d6:21:11: 99:30:7a:b2:d1:19:fb:fb:3c:17:f8:d9:c9:20:d1:7f:f7:71: 0a:9e:14:73:c6:2d:ee:7a:33:b4:58:be:d9:e3:c3:f2:d7:bb: 15:04:a8:d5:32:03:db:3a:32:0a:d3:16:60:9b:e5:40:3f:96: 5e:d7:c8:4c:3a:7b:a7:d2:27:c1:bc:bc:0b:65:7d:cd:ef:01: 70:ec:fe:85:ae:d5:87:2c:69:fa:7d:a9:36:03:e7:a7:75:9d: 14:82:33:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RUY5QzExMC8GA1UEBRMoQzQ0MzlEQzAxRTIwRDE2Q0M1QTBFRjk4MTdENDFCRjYy ODk3NjUyNDAeFw0yNTA0MjUwNjM2MTNaFw0yNTA1MDIwNjM2MTJaMBgxFjAUBgNV BAMTDTY4MGIyZDVkLTA0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxjemxZDZJ6ZengWKtWv34eqoavOwxpFVPqgWr8KMgaumScTn/mRPrgdg5eZM7 dTTfBh07ddxkdWMxhYRPvxGicDKSiS6xV3EmRzXHzXgetqSrB28yv5OFsp/uOx0b IVzXLbUOBjqRKzkBiClviYy5ox+CSs2k2LsbIrr3f4tbMLu5XYX4hcKriq4adH4w C7vuI55tfE0/3vbPsDWNLSYDyyhYir3vvAd+SVYlMGSAFwnuad6Xly87YApcu3Ga 8F8aswYJcQbqpeKMr4pl2jEEF445jcL7nXucaWT/zq9kcbjMH7jf3P1O6woozEGB SO3s4JNzJbuqzBwO3jiKjqE1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMd2SrwV6 nj7b7Y79cFcYtWswXEgwHwYDVR0jBBgwFoAUxEOdwB4g0WzFoO+YF9Qb9iiXZSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNFRjlDL0NEMkNBOEY4RDNF QTExRUZBNjZDNDc2MEM0RjlBRTAyL3hFT2R3QjRnMFd6Rm9PLVlGOVFiOWlpWFpT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveEVPZHdCNGcwV3pGb08tWUY5UWI5aWlYWlNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNF RjlDL0NEMkNBOEY4RDNFQTExRUZBNjZDNDc2MEM0RjlBRTAyL3hFT2R3QjRnMFd6 Rm9PLVlGOVFiOWlpWFpTUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABquDq3cGDJFduZkSJqhBnzuOBTwVSOJiI6A8obprX1tj6FLjrO6GRtT GTnWhIl5op7M0JA3nQ8iP6vgjCEoLQGWUc663miPEiwJfJrBWcuw8c6h/eB14OiG nXEULOZKh2iWGmsnzjn+YmkXCO5TWRGHMmPlAcH9Xc1vNIouEc1WVFQQyNqwz3ua 7rB4RwKv5vajzn6XXBI1zRBjO+kRxdYhEZkwerLRGfv7PBf42ckg0X/3cQqeFHPG Le56M7RYvtnjw/LXuxUEqNUyA9s6MgrTFmCb5UA/ll7XyEw6e6fSJ8G8vAtlfc3v AXDs/oWu1Ycsafp9qTYD56d1nRSCMyg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:37 2025 by rpki-client