$ rpki-client -vvf rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft File: xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft (raw, json) Hash identifier: 7Nw9G8aR9fzK35XnAKo3a5Jt70F7jmr3PcjU8AOJbBA= Subject key identifier: 16:06:76:BE:0A:37:05:92:D4:0E:BE:F4:07:31:5C:41:AF:78:CA:72 Authority key identifier: C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A Certificate issuer: /CN=A91411C0/serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Certificate serial: 06C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft Manifest number: 06BF Signing time: Thu 24 Apr 2025 21:54:41 +0000 Manifest this update: Thu 24 Apr 2025 21:54:40 +0000 Manifest next update: Thu 01 May 2025 21:54:40 +0000 Files and hashes: 1: xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl (hash: Kq+yu4VSG6CfDQL2youHi6jUG/4V4k5zuvzUXyB+Qsw=) 2: 0361CF86560211EB97A98D46C4F9AE02.roa (hash: +cH8RmJhdymM82G2tjdg2T5wIUQwcB/rD1A615a7HRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411C0, serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Validity Not Before: Apr 24 21:54:40 2025 GMT Not After : May 1 21:54:40 2025 GMT Subject: CN=680ab321-e6de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f2:95:7d:74:42:41:58:06:08:49:30:f8:c6: 52:02:bf:17:d2:fc:29:a6:ef:62:49:87:b7:57:49: b1:5a:37:d2:e4:ed:4e:ea:e0:62:7d:69:1e:ab:18: ee:01:ae:a2:65:90:b7:9c:42:dc:a0:d6:0e:09:e9: 1d:a0:e9:fe:2b:98:f2:fb:7a:1c:82:30:ec:93:13: 04:b0:85:19:b0:22:ba:90:78:9c:fc:89:24:fe:69: 7d:04:b7:c8:68:9a:ff:be:8d:bf:c6:2c:36:ae:b5: b3:23:39:10:8c:d1:01:31:e4:e6:9c:b4:61:87:e4: a2:23:9f:e0:80:72:30:d1:68:c5:5e:63:8f:ff:a4: cb:ff:5c:90:44:a2:19:67:99:e5:b4:05:86:58:c2: 85:39:b2:9f:ea:97:6b:18:77:17:b6:d1:ff:af:0a: 91:54:52:02:af:0a:f8:d2:ab:ff:74:53:55:b0:cd: 35:6f:1f:67:ee:22:1b:5a:f0:75:74:97:eb:b1:00: 15:c2:4a:7a:9f:30:da:5f:56:b4:a4:da:7f:6d:d4: 81:c2:92:ac:bd:d9:85:87:17:eb:2d:74:11:ea:6c: 28:d4:6a:d6:da:ce:79:1d:57:85:fd:dc:42:d6:12: 89:18:6c:84:98:9e:39:20:91:ef:a5:35:22:b2:bf: 65:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:06:76:BE:0A:37:05:92:D4:0E:BE:F4:07:31:5C:41:AF:78:CA:72 X509v3 Authority Key Identifier: keyid:C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:80:bf:e2:eb:f3:d2:5a:73:51:4b:05:31:e9:cf:e2:d1:1a: 77:aa:50:14:08:38:ca:3e:9e:46:18:a8:20:c9:ca:76:a7:ee: 27:c4:ca:be:b1:09:30:f1:78:0b:90:5b:20:a3:3a:43:32:5f: 53:8b:0a:73:1a:93:a7:df:a0:b7:8a:3d:48:9b:13:cd:23:1c: b4:47:7c:ae:d5:db:4f:29:31:ef:19:02:93:46:b3:54:38:d6: 57:e3:a2:43:29:f5:2a:f6:09:a8:1b:d2:5e:c1:88:d4:50:da: b5:a9:1c:87:91:11:75:c4:01:05:65:23:0c:8d:ba:64:88:59: 95:1c:f4:a1:9a:93:7d:3a:52:df:4a:87:3c:3a:7d:90:3b:28: 4a:23:60:36:9c:de:40:62:06:b4:14:42:b4:00:09:ac:ee:65: 94:d0:c3:20:49:57:ca:ae:4a:e2:1e:3b:9c:60:f6:f2:e1:11: 9f:a5:32:b6:13:a5:8e:a6:90:01:55:11:0f:2a:0a:90:1e:00: 00:1d:96:a5:41:5e:16:64:b8:fa:48:44:6c:a1:53:ab:cf:d5: 85:81:b1:12:a0:9b:7a:df:50:f2:dd:42:e2:10:81:c7:f6:46: 30:47:89:64:ca:94:57:32:57:64:96:78:d7:36:b9:29:13:b2: e9:8a:06:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQzAxMTAvBgNVBAUTKEM0MjNCMDgwMzI2MjMzREFDMDhDQzMwRDc0QTY1RkY0 QTUyOUQwOUEwHhcNMjUwNDI0MjE1NDQwWhcNMjUwNTAxMjE1NDQwWjAYMRYwFAYD VQQDEw02ODBhYjMyMS1lNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofKVfXRCQVgGCEkw+MZSAr8X0vwppu9iSYe3V0mxWjfS5O1O6uBifWkeqxju Aa6iZZC3nELcoNYOCekdoOn+K5jy+3ocgjDskxMEsIUZsCK6kHic/Ikk/ml9BLfI aJr/vo2/xiw2rrWzIzkQjNEBMeTmnLRhh+SiI5/ggHIw0WjFXmOP/6TL/1yQRKIZ Z5nltAWGWMKFObKf6pdrGHcXttH/rwqRVFICrwr40qv/dFNVsM01bx9n7iIbWvB1 dJfrsQAVwkp6nzDaX1a0pNp/bdSBwpKsvdmFhxfrLXQR6mwo1GrW2s55HVeF/dxC 1hKJGGyEmJ45IJHvpTUisr9l1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYGdr4K NwWS1A6+9AcxXEGveMpyMB8GA1UdIwQYMBaAFMQjsIAyYjPawIzDDXSmX/SlKdCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFDMC9COTYwMzc1ODU1 RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05ckFqTU1OZEtaZjlLVXAw Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDT3dnREppTTlyQWpNTU5kS1pmOUtVcDBKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFDMC9COTYwMzc1ODU1RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05 ckFqTU1OZEtaZjlLVXAwSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcgL/i6/PSWnNRSwUx6c/i0Rp3qlAUCDjKPp5GGKggycp2p+4nxMq+ sQkw8XgLkFsgozpDMl9TiwpzGpOn36C3ij1ImxPNIxy0R3yu1dtPKTHvGQKTRrNU ONZX46JDKfUq9gmoG9JewYjUUNq1qRyHkRF1xAEFZSMMjbpkiFmVHPShmpN9OlLf Soc8On2QOyhKI2A2nN5AYga0FEK0AAms7mWU0MMgSVfKrkriHjucYPby4RGfpTK2 E6WOppABVREPKgqQHgAAHZalQV4WZLj6SERsoVOrz9WFgbESoJt631Dy3ULiEIHH 9kYwR4lkypRXMldklnjXNrkpE7Lpigah -----END CERTIFICATE-----Generated at Sat Apr 26 13:46:47 2025 by rpki-client