$ rpki-client -vvf rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft File: _XxIEch8Vm71Xtqw50P_BmufqGY.mft (raw, json) Hash identifier: TFHE8d4OoMLWb3V68mBSlFHjCsYmzCDFaqtSgSW7SsE= Subject key identifier: 7F:0E:AA:18:59:B0:5E:CF:CA:CE:15:64:3F:7E:50:34:BB:07:1B:CE Authority key identifier: FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 Certificate issuer: /CN=A91935EA/serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Certificate serial: 1686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft Manifest number: 167A Signing time: Thu 24 Apr 2025 16:42:27 +0000 Manifest this update: Thu 24 Apr 2025 16:42:27 +0000 Manifest next update: Thu 01 May 2025 16:42:27 +0000 Files and hashes: 1: _XxIEch8Vm71Xtqw50P_BmufqGY.crl (hash: 5qAWXInY5KDBQbTs1t1jrqiqWGOBYh23hgz96lwK0OA=) 2: 01B2AC1E064111E8A62EF586C4F9AE02.roa (hash: rgg5mb9NaJrKC43B9kmiIIRXNUmpRJVP8cl+RRNBMZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:42:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5766 (0x1686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91935EA, serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Validity Not Before: Apr 24 16:42:27 2025 GMT Not After : May 1 16:42:27 2025 GMT Subject: CN=680a69f3-6d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8b:42:2d:58:19:c5:dd:dd:02:ae:56:81:a0: 75:39:54:9f:fa:25:d5:7c:04:03:51:a1:80:d8:1b: 35:c8:7d:5e:c7:c7:9f:9a:37:97:88:8d:ab:b9:cd: 5e:fc:d7:8a:3c:51:f2:2d:dd:ed:ff:b4:3e:3f:f3: 7e:02:2d:8a:a8:05:92:db:21:17:28:2a:92:c8:34: 25:8f:f3:2c:cf:36:97:c4:46:46:66:1f:45:0b:85: 1d:b5:66:bb:b5:63:d5:f0:01:ae:8e:d9:fa:ce:61: 30:94:76:b7:c8:e4:59:c7:d3:da:16:3d:2e:b5:90: 2e:df:7e:e2:bb:fd:19:29:9e:91:88:a0:b6:f1:01: 31:41:c6:55:1e:2e:6b:17:cd:3b:45:06:d0:17:25: 5c:b9:65:3f:9f:05:d5:ba:22:5d:6f:28:fe:e1:1d: bd:95:80:6e:34:fc:7f:a2:2c:c2:da:ac:c5:de:69: b5:2b:ea:b2:df:b5:ba:aa:79:20:61:6b:f2:5a:9b: 39:e0:35:1f:7c:86:04:ea:d5:4e:7f:ee:f6:16:47: be:c3:38:33:7a:89:55:25:4b:37:a5:12:94:f6:a6: 86:48:18:e3:26:86:ba:a5:00:c0:43:f1:aa:d9:cc: e6:d4:23:b0:b5:b1:b8:95:75:78:a4:eb:67:c4:20: 8f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0E:AA:18:59:B0:5E:CF:CA:CE:15:64:3F:7E:50:34:BB:07:1B:CE X509v3 Authority Key Identifier: keyid:FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:2a:a5:09:bf:27:a5:ac:2d:3f:9f:8b:69:9b:12:ed:a5:87: a7:20:73:1a:dc:61:ad:c9:03:9d:23:ce:17:a3:9a:cb:be:32: 2b:26:3b:5d:89:d7:24:fa:d1:6a:36:5d:f7:e8:a1:81:e7:83: f3:09:0c:7f:c7:a8:07:04:db:0b:55:93:4c:75:f0:a4:af:ee: 36:ee:5e:81:06:f6:d8:47:d4:93:6e:ad:56:0c:b0:7f:ad:34: 41:3d:38:08:e9:a3:db:92:6c:dc:40:df:0c:4b:e4:3d:dd:0a: 93:6b:75:a7:c6:72:bc:b1:79:f5:61:44:ea:22:2f:f6:b0:cb: ed:d0:f8:b1:63:cd:70:88:00:62:c9:52:f9:92:0d:80:a1:01: 64:af:48:e8:86:97:be:ce:f8:69:7b:20:33:86:02:8f:5c:80: 2a:88:a5:fc:16:66:59:1c:26:ef:f8:c0:48:04:57:87:36:a6: ce:7d:5c:e7:4b:7e:71:93:7c:93:61:47:57:b9:4f:de:bd:d3: f4:b7:35:4b:bf:d6:dd:7a:89:77:95:d8:b2:8a:59:31:f1:b7: 70:00:2e:48:a8:cf:15:ab:d7:e2:dc:43:1d:78:9e:34:61:98: 80:64:bd:47:95:90:bd:fa:1e:db:23:99:36:78:c5:b5:17:5f: 63:01:c2:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM1RUExMTAvBgNVBAUTKEZEN0M0ODExQzg3QzU2NkVGNTVFREFCMEU3NDNGRjA2 NkI5RkE4NjYwHhcNMjUwNDI0MTY0MjI3WhcNMjUwNTAxMTY0MjI3WjAYMRYwFAYD VQQDEw02ODBhNjlmMy02ZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwItCLVgZxd3dAq5WgaB1OVSf+iXVfAQDUaGA2Bs1yH1ex8efmjeXiI2ruc1e /NeKPFHyLd3t/7Q+P/N+Ai2KqAWS2yEXKCqSyDQlj/MszzaXxEZGZh9FC4UdtWa7 tWPV8AGujtn6zmEwlHa3yORZx9PaFj0utZAu337iu/0ZKZ6RiKC28QExQcZVHi5r F807RQbQFyVcuWU/nwXVuiJdbyj+4R29lYBuNPx/oizC2qzF3mm1K+qy37W6qnkg YWvyWps54DUffIYE6tVOf+72Fke+wzgzeolVJUs3pRKU9qaGSBjjJoa6pQDAQ/Gq 2czm1COwtbG4lXV4pOtnxCCPewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8OqhhZ sF7Pys4VZD9+UDS7BxvOMB8GA1UdIwQYMBaAFP18SBHIfFZu9V7asOdD/wZrn6hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzVFQS8xOURENDY3MDAw QUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZtNzFYdHF3NTBQX0JtdWZx R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YeElFY2g4Vm03MVh0cXc1MFBfQm11ZnFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzVFQS8xOURENDY3MDAwQUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZt NzFYdHF3NTBQX0JtdWZxR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdKqUJvyelrC0/n4tpmxLtpYenIHMa3GGtyQOdI84Xo5rLvjIrJjtd idck+tFqNl336KGB54PzCQx/x6gHBNsLVZNMdfCkr+427l6BBvbYR9STbq1WDLB/ rTRBPTgI6aPbkmzcQN8MS+Q93QqTa3WnxnK8sXn1YUTqIi/2sMvt0PixY81wiABi yVL5kg2AoQFkr0johpe+zvhpeyAzhgKPXIAqiKX8FmZZHCbv+MBIBFeHNqbOfVzn S35xk3yTYUdXuU/evdP0tzVLv9bdeol3ldiyilkx8bdwAC5IqM8Vq9fi3EMdeJ40 YZiAZL1HlZC9+h7bI5k2eMW1F19jAcJ/ -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:30 2025 by rpki-client