$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: LpDlb9cdeusb+8R6HYcPOA7kH4HIGBWqBI4OiksUIz8= Subject key identifier: 53:6E:EF:E6:B1:BE:16:BE:9E:2E:EB:3E:9B:A9:E7:09:B5:89:5A:D4 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 0479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0462 Signing time: Fri 25 Apr 2025 00:00:37 +0000 Manifest this update: Fri 25 Apr 2025 00:00:37 +0000 Manifest next update: Fri 02 May 2025 00:00:37 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: vGHsOkHyrFgSeEhaWMebwnjExFSV1J/RpNBsqDguawc=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Apr 25 00:00:37 2025 GMT Not After : May 2 00:00:37 2025 GMT Subject: CN=680ad0a5-a417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a6:74:26:9f:41:77:68:02:f4:0e:d2:ba:14: b6:ec:fe:18:01:cb:52:f6:79:17:76:b8:f2:a5:6f: 17:62:9b:20:6f:91:ea:05:6f:6d:43:b6:fb:a6:9e: ac:f1:31:cf:ad:f3:7e:67:42:c5:66:76:f3:6e:1d: 95:fe:e5:b7:4c:ca:19:1a:1c:74:50:bf:41:4e:03: 40:bd:a5:d6:f9:67:84:46:d6:a3:13:82:b7:34:fd: 39:cd:97:37:ea:b2:eb:59:63:45:4d:ec:5e:d6:3e: d0:51:2f:02:73:8e:7f:00:0b:d8:4b:11:d5:a9:e4: bf:b3:ea:42:bc:f3:a4:e4:3d:e7:8a:63:67:d8:28: aa:c1:09:89:9c:c9:be:be:03:b9:83:12:0a:b6:af: 89:8f:24:bb:dd:07:dd:1e:fd:d1:d4:c1:bc:24:80: 70:a6:7a:09:47:3e:8d:68:7a:1d:05:54:dd:cb:0e: c1:8c:ca:98:b9:f0:6c:c7:be:44:16:42:73:1b:c1: 3c:63:8f:ee:1a:cc:9d:da:28:14:78:15:ef:6c:19: 36:a5:d2:b1:50:2d:75:9d:06:01:2f:96:6e:7c:f0: dd:88:7d:e6:dc:70:34:7b:32:70:13:20:a7:d5:da: f2:9f:e8:e8:4d:2c:4c:00:c5:bd:87:74:24:e1:a5: 39:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:6E:EF:E6:B1:BE:16:BE:9E:2E:EB:3E:9B:A9:E7:09:B5:89:5A:D4 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:b2:60:16:11:70:67:e1:0c:e9:f4:e8:0d:c8:89:71:d9:00: d1:29:40:d9:b3:17:61:d1:8a:26:31:01:3b:cc:b0:85:0f:f7: 43:3b:7c:81:e7:78:c5:cf:a5:d9:83:09:4d:0b:a9:39:99:62: 36:8c:a1:61:95:ab:06:62:9c:8b:3b:af:43:ee:7e:f5:7a:91: 44:b5:10:8a:ae:c5:24:55:17:61:a0:d3:45:96:61:ee:6e:53: 6d:b1:97:be:2c:67:6d:06:90:31:d6:38:58:70:0a:67:d1:58: 96:17:17:61:95:d4:61:aa:93:e5:98:9e:1a:cb:27:2f:7c:cd: 63:89:46:ec:59:0a:de:5e:8d:5a:55:7f:3a:ed:51:b5:47:54: b2:9e:e4:68:ee:b5:06:02:57:ca:64:fe:45:f1:7c:4f:5e:69: 35:f6:5c:02:30:7b:e7:65:ac:98:04:f7:97:ee:45:e5:86:de: 46:26:c7:f1:c9:dc:67:ae:c7:e7:b0:76:35:ba:71:20:4d:6a: 7d:8e:7d:5b:f0:19:4b:68:50:40:7e:7d:09:01:1d:0f:8c:26: 7d:9e:41:2c:92:0a:0a:f6:68:62:be:b6:64:c8:17:65:41:77: 42:d3:a9:0a:5c:91:35:82:ed:7c:4e:fe:b4:4f:72:b4:ad:6e: cb:b9:af:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwNDI1MDAwMDM3WhcNMjUwNTAyMDAwMDM3WjAYMRYwFAYD VQQDEw02ODBhZDBhNS1hNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KZ0Jp9Bd2gC9A7SuhS27P4YActS9nkXdrjypW8XYpsgb5HqBW9tQ7b7pp6s 8THPrfN+Z0LFZnbzbh2V/uW3TMoZGhx0UL9BTgNAvaXW+WeERtajE4K3NP05zZc3 6rLrWWNFTexe1j7QUS8Cc45/AAvYSxHVqeS/s+pCvPOk5D3nimNn2CiqwQmJnMm+ vgO5gxIKtq+JjyS73QfdHv3R1MG8JIBwpnoJRz6NaHodBVTdyw7BjMqYufBsx75E FkJzG8E8Y4/uGsyd2igUeBXvbBk2pdKxUC11nQYBL5ZufPDdiH3m3HA0ezJwEyCn 1dryn+joTSxMAMW9h3Qk4aU5GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNu7+ax vha+ni7rPpup5wm1iVrUMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjsmAWEXBn4Qzp9OgNyIlx2QDRKUDZsxdh0YomMQE7zLCFD/dDO3yB 53jFz6XZgwlNC6k5mWI2jKFhlasGYpyLO69D7n71epFEtRCKrsUkVRdhoNNFlmHu blNtsZe+LGdtBpAx1jhYcApn0ViWFxdhldRhqpPlmJ4ayycvfM1jiUbsWQreXo1a VX867VG1R1SynuRo7rUGAlfKZP5F8XxPXmk19lwCMHvnZayYBPeX7kXlht5GJsfx ydxnrsfnsHY1unEgTWp9jn1b8BlLaFBAfn0JAR0PjCZ9nkEskgoK9mhivrZkyBdl QXdC06kKXJE1gu18Tv60T3K0rW7Lua9U -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:31 2025 by rpki-client