$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json) Hash identifier: Ol5e9T9sEMg74IlZvzFycA6mSYEyGZc+rbUGnLZ8fgM= Subject key identifier: 44:32:4D:04:BE:5B:5E:46:2E:0B:1C:7D:0F:14:0F:0A:6C:13:E2:33 Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Certificate serial: 073E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft Manifest number: 0738 Signing time: Thu 24 Apr 2025 21:32:12 +0000 Manifest this update: Thu 24 Apr 2025 21:32:12 +0000 Manifest next update: Thu 01 May 2025 21:32:12 +0000 Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: TuiEziKo8oxgrzQLv8dOW23AhUUYZuWS7TuRmhEOzVA=) 2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: wsrS8Hj9tlKWrRYJKi3rNPfDpEOnN9QMK0e9qX0Cib4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FEB, serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Validity Not Before: Apr 24 21:32:12 2025 GMT Not After : May 1 21:32:12 2025 GMT Subject: CN=680aaddc-f082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ec:71:da:7d:e2:d6:0b:e5:ab:3e:3c:6f:ca: 5c:14:3b:e0:07:f3:db:00:4e:93:41:a2:70:53:8a: 0a:db:42:ca:59:7a:df:92:32:88:d7:dd:72:bf:53: 33:de:56:42:63:85:13:e9:08:fa:c7:1f:bc:49:18: 28:8b:e5:e5:4b:1c:ab:17:6a:e1:a1:a6:dd:31:ce: 6d:2f:24:3f:dd:e4:fb:0a:bb:eb:ec:c9:8e:aa:60: 89:82:24:43:fa:0e:0e:3e:7a:9c:e1:ce:1c:d7:e4: ea:1a:42:0c:49:fd:58:2b:2a:02:54:75:2c:94:09: bc:98:3f:b6:32:b3:dd:d7:49:5c:df:d3:c9:ab:8a: 37:69:0c:02:62:d6:cc:09:77:f8:5d:d5:a4:18:30: b0:e5:14:4c:59:1f:02:00:50:5a:01:27:d4:e1:1c: cf:94:78:01:e4:33:c3:db:de:a1:8e:63:db:cb:e4: 71:5c:71:31:cb:d0:66:75:a7:f1:21:4b:db:2d:e1: 8f:12:f0:d3:83:04:d7:9c:24:0e:87:4e:a3:e9:f5: 2d:1b:44:d2:20:ba:2e:cb:f2:8d:70:e2:b8:1b:44: 4a:d9:be:9a:53:83:32:4a:f2:95:c3:bb:4a:b6:de: 18:30:4f:b3:a2:f3:31:42:b1:8f:fe:cd:76:ed:fc: b6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:32:4D:04:BE:5B:5E:46:2E:0B:1C:7D:0F:14:0F:0A:6C:13:E2:33 X509v3 Authority Key Identifier: keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:fc:ec:70:e4:76:81:b1:16:3c:d2:51:9d:84:a3:fa:94:0d: 17:b3:82:c2:0c:32:73:82:d3:c5:cf:6b:89:a0:8f:6a:ad:9d: be:87:61:bc:88:dc:ff:b0:f9:dd:e9:16:79:91:04:88:c2:36: 19:12:ce:8b:0b:7d:10:19:e5:3d:90:f2:09:1a:4c:89:a7:a7: 07:d6:c6:d3:5a:5e:e2:de:3b:29:67:d2:f5:1c:54:a7:f1:2b: ae:83:44:af:3e:ea:0e:cb:14:0c:c2:a4:2d:63:3f:91:60:26: 37:f3:90:f9:3e:ae:b3:a1:9e:ed:01:37:f3:23:c6:bd:e9:70: 90:14:e5:a4:6b:64:19:be:6c:3e:46:45:71:52:31:3a:71:37: c9:5d:f6:27:3d:43:76:a4:5d:34:40:4f:fa:b2:35:78:48:f1: d3:02:3d:43:97:00:ba:04:7b:17:aa:8a:79:5c:1b:35:d3:1b: f3:e7:14:78:08:e7:7a:b3:0b:4d:e9:67:53:06:24:9e:d7:05: 87:d7:0f:82:ea:c6:74:1e:3e:03:0e:8d:d2:e7:a8:5f:3d:09: 91:c1:47:9b:4b:59:4f:c8:de:9c:de:a9:89:c0:af:52:48:36: 19:d1:77:04:3c:28:a7:29:18:34:89:cd:5b:9d:08:0c:89:43: eb:81:9a:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2 OUUxRkFDRkQwHhcNMjUwNDI0MjEzMjEyWhcNMjUwNTAxMjEzMjEyWjAYMRYwFAYD VQQDEw02ODBhYWRkYy1mMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+xx2n3i1gvlqz48b8pcFDvgB/PbAE6TQaJwU4oK20LKWXrfkjKI191yv1Mz 3lZCY4UT6Qj6xx+8SRgoi+XlSxyrF2rhoabdMc5tLyQ/3eT7Crvr7MmOqmCJgiRD +g4OPnqc4c4c1+TqGkIMSf1YKyoCVHUslAm8mD+2MrPd10lc39PJq4o3aQwCYtbM CXf4XdWkGDCw5RRMWR8CAFBaASfU4RzPlHgB5DPD296hjmPby+RxXHExy9Bmdafx IUvbLeGPEvDTgwTXnCQOh06j6fUtG0TSILouy/KNcOK4G0RK2b6aU4MySvKVw7tK tt4YME+zovMxQrGP/s127fy26wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQyTQS+ W15GLgscfQ8UDwpsE+IzMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5 MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0/Oxw5HaBsRY80lGdhKP6lA0Xs4LCDDJzgtPFz2uJoI9qrZ2+h2G8 iNz/sPnd6RZ5kQSIwjYZEs6LC30QGeU9kPIJGkyJp6cH1sbTWl7i3jspZ9L1HFSn 8Suug0SvPuoOyxQMwqQtYz+RYCY385D5Pq6zoZ7tATfzI8a96XCQFOWka2QZvmw+ RkVxUjE6cTfJXfYnPUN2pF00QE/6sjV4SPHTAj1DlwC6BHsXqop5XBs10xvz5xR4 COd6swtN6WdTBiSe1wWH1w+C6sZ0Hj4DDo3S56hfPQmRwUebS1lPyN6c3qmJwK9S SDYZ0XcEPCinKRg0ic1bnQgMiUPrgZrY -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:37 2025 by rpki-client