$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json) Hash identifier: Ulvtg68tDFYnQ/B3gcS4yXI+uSE5wwkvEc/ha2KRWn4= Subject key identifier: 09:15:2F:74:A0:79:7F:2F:C0:94:9C:9F:1A:F8:E3:D8:1B:E7:5F:39 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft Manifest number: 016A Signing time: Fri 25 Apr 2025 03:02:20 +0000 Manifest this update: Fri 25 Apr 2025 03:02:19 +0000 Manifest next update: Fri 02 May 2025 03:02:19 +0000 Files and hashes: 1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: niT8GrthTN6FPhq7XDx/uE+N/yLxi2gnWdk2YF94TPI=) 2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: rMbpJoWHf1iUdvaVh3Kk+Bpj7rhb6c9ybWRGPS4X+R4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: Apr 25 03:02:19 2025 GMT Not After : May 2 03:02:19 2025 GMT Subject: CN=680afb3b-2d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:54:cb:b8:29:c3:c8:f9:c0:e4:ec:60:62:7c: 5a:48:43:c8:32:8e:16:7c:c7:91:07:3b:82:0b:01: 65:6e:8a:bd:73:da:b6:c0:18:74:bf:04:e8:4e:38: 9d:dc:8d:8d:44:07:9f:d3:e6:fc:90:52:8d:3e:7c: 82:7a:78:b0:7f:db:32:bb:c4:71:2a:36:09:a4:38: 0f:5a:f6:4d:43:cf:06:c9:3a:18:54:49:c3:b3:bd: a1:f0:b5:76:87:17:f3:4b:ab:c1:52:d9:e6:b5:d6: 23:91:0b:30:85:05:d7:b0:41:42:b2:30:ca:86:52: 07:ea:11:86:a9:9a:ed:ac:72:73:eb:5e:bc:4a:e3: 15:89:a6:80:2f:0c:57:36:0d:10:50:9e:2a:97:9d: b3:eb:17:12:fc:e9:a8:d9:e9:a2:f5:8d:68:d8:63: 09:bb:dc:1e:db:bc:5b:04:d2:d2:4b:70:67:77:55: ab:3a:f8:8f:6b:73:0e:8a:d3:e0:61:e1:b7:02:fa: 7b:f3:b7:ac:a6:19:a4:31:31:09:4d:a6:7d:4e:26: 71:36:d6:29:5a:86:f4:76:2a:77:97:10:48:ce:bf: d3:aa:c2:aa:91:20:7b:7c:89:9a:e7:10:28:41:eb: 6a:d5:55:db:7e:aa:81:79:4b:68:e0:2d:80:cd:31: 62:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:15:2F:74:A0:79:7F:2F:C0:94:9C:9F:1A:F8:E3:D8:1B:E7:5F:39 X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:c9:b0:4c:fc:73:07:d1:3d:a0:1f:50:d3:f5:43:23:03:db: 2d:bc:c7:44:fa:8b:18:22:2f:73:56:d3:d8:1b:3d:d3:45:2f: b8:ec:b3:a8:2a:87:a6:8a:91:9d:07:30:11:0f:8d:90:de:ef: 34:f5:ab:04:98:4d:d6:ac:c1:14:62:fe:bc:34:1b:ca:a9:c2: c7:b2:d3:03:8d:9c:96:a1:35:26:b6:34:5e:c7:fe:90:df:9f: d3:12:f1:26:18:94:1c:89:fa:4d:63:6a:55:5f:d4:07:a6:6a: 91:cf:f1:85:80:91:30:4d:d4:51:21:0a:d8:c1:a7:ca:ad:6a: 12:42:a2:13:51:16:f6:1a:6e:e3:bd:3f:c7:08:45:82:cf:58: 4e:5a:2f:2d:f9:14:7b:1e:ef:03:41:dc:19:1a:55:2b:fa:7e: 25:21:c1:60:14:c3:9b:f5:a9:29:49:9e:32:aa:32:f4:d0:6d: 24:e5:6b:d3:12:cc:89:9a:33:1f:4a:29:32:9c:5e:95:54:10: 12:fa:9f:46:92:61:ff:96:3d:9f:f8:8e:3f:05:c6:69:6e:5c: fb:83:4c:26:36:35:6c:69:7b:88:72:41:f1:64:25:fe:50:35: 63:13:fe:8a:31:72:be:4a:a6:ef:4a:70:17:8e:c8:e7:33:c4: 0a:7e:f5:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUwNDI1MDMwMjE5WhcNMjUwNTAyMDMwMjE5WjAYMRYwFAYD VQQDEw02ODBhZmIzYi0yZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1TLuCnDyPnA5OxgYnxaSEPIMo4WfMeRBzuCCwFlboq9c9q2wBh0vwToTjid 3I2NRAef0+b8kFKNPnyCeniwf9syu8RxKjYJpDgPWvZNQ88GyToYVEnDs72h8LV2 hxfzS6vBUtnmtdYjkQswhQXXsEFCsjDKhlIH6hGGqZrtrHJz6168SuMViaaALwxX Ng0QUJ4ql52z6xcS/Omo2emi9Y1o2GMJu9we27xbBNLSS3Bnd1WrOviPa3MOitPg YeG3Avp787esphmkMTEJTaZ9TiZxNtYpWob0dip3lxBIzr/TqsKqkSB7fIma5xAo Qetq1VXbfqqBeUto4C2AzTFi2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkVL3Sg eX8vwJScnxr449gb5185MB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCybBM/HMH0T2gH1DT9UMjA9stvMdE+osYIi9zVtPYGz3TRS+47LOo KoemipGdBzARD42Q3u809asEmE3WrMEUYv68NBvKqcLHstMDjZyWoTUmtjRex/6Q 35/TEvEmGJQcifpNY2pVX9QHpmqRz/GFgJEwTdRRIQrYwafKrWoSQqITURb2Gm7j vT/HCEWCz1hOWi8t+RR7Hu8DQdwZGlUr+n4lIcFgFMOb9akpSZ4yqjL00G0k5WvT EsyJmjMfSikynF6VVBAS+p9GkmH/lj2f+I4/BcZpblz7g0wmNjVsaXuIckHxZCX+ UDVjE/6KMXK+SqbvSnAXjsjnM8QKfvXu -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:46 2025 by rpki-client