$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: ZG5rum7kOScg3ek422YsKZFiKT/e/aC3VYisqKNdrHw= Subject key identifier: 38:CF:98:73:32:20:1E:FC:54:ED:15:6C:68:B3:38:4A:A4:C4:ED:CA Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 071F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0705 Signing time: Thu 24 Apr 2025 21:46:18 +0000 Manifest this update: Thu 24 Apr 2025 21:46:18 +0000 Manifest next update: Thu 01 May 2025 21:46:18 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: 8qCqjG9WUzTSEwr0/DvlQ2TQ8/noZqrp4ba6ZEZMJqQ=) 2: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: nqhvH+f7wHKT8bjIs6vVLkOc7U1WY+z2Ysz9HVOAovM=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: RMYTLsjzchYs7RKbF9BO3OVp44cFPqnQKzT6ydktQoo=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: Bcj/iiKxpeGROHNnH2fXMR3kft/+QpPcp29Mc0T3G5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1823 (0x71f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Apr 24 21:46:18 2025 GMT Not After : May 1 21:46:18 2025 GMT Subject: CN=680ab12a-34c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:27:2d:0a:1b:12:f3:e1:3d:d1:90:07:96:6f: 6f:10:3a:1b:a1:70:81:df:28:87:31:ca:50:75:4e: f8:42:a7:a1:4d:12:12:cd:90:48:e7:33:cb:e3:cf: 00:ef:b4:06:41:c4:58:b3:9b:98:05:31:f8:4d:ce: bb:7c:23:d4:08:3d:50:56:eb:d8:55:ac:46:42:74: a3:4a:91:73:5b:a3:f2:7e:54:57:8f:75:50:cc:d9: bb:2f:d4:b4:60:e2:e0:47:ce:9f:ca:0a:2d:62:04: c7:a0:2a:a9:3e:ad:61:41:30:50:1c:14:e1:69:8f: 0c:58:a1:15:8a:e9:f1:19:4b:1b:d4:b7:94:45:f1: db:0f:ed:b6:32:15:c3:ea:9e:94:79:94:dd:1e:8f: 7a:5c:7c:72:2c:0c:88:7c:99:10:ca:5e:1a:b8:f9: 60:21:39:12:c7:07:0c:6b:60:00:87:56:6a:4c:4b: b1:7d:37:0f:38:9e:23:9d:8d:fe:3f:c0:fa:8a:d1: 74:75:53:2c:fb:eb:0d:a9:47:ca:1a:98:e2:1e:9f: c6:1c:2a:de:79:29:86:21:7b:fe:d9:b9:0c:c0:48: c3:bc:7d:be:09:60:7f:a1:0c:5c:03:82:05:d9:45: 8b:97:52:75:4c:54:8d:34:3f:a1:ad:c8:b5:61:d2: ba:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CF:98:73:32:20:1E:FC:54:ED:15:6C:68:B3:38:4A:A4:C4:ED:CA X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ae:6f:4a:75:c9:9f:87:1f:5c:36:d0:f3:11:89:3e:e1:0c: bd:44:76:02:f3:ce:55:d7:ea:53:ff:84:5e:0c:40:02:05:b6: 26:a0:01:0b:01:bf:f7:70:df:3f:3f:9e:59:db:ca:89:65:91: bf:0f:44:10:0e:93:6f:17:b2:49:7d:52:7a:22:c1:51:53:e2: 4d:70:90:8d:0a:6b:39:8c:f2:1a:65:4d:30:4f:fd:0c:a8:01: e8:3b:23:47:4a:dc:a6:a1:3d:0e:b3:06:58:db:fa:9f:86:9f: 61:91:f6:8c:cd:04:2b:c8:38:a0:aa:6e:75:c1:46:66:86:d6: d0:c4:f5:39:bc:21:9b:3a:f3:af:5a:5d:e8:e6:21:d1:f8:68: 5e:7d:37:62:4f:65:5d:97:40:13:ce:8f:55:a6:48:0e:a7:f7: c9:c6:4a:c9:ae:7e:48:ad:15:10:43:da:4b:eb:85:e7:92:7f: ba:8f:3b:15:2b:6b:23:ab:ba:17:d4:3b:a9:ed:64:37:67:9d: 4d:22:05:9c:47:4b:bf:97:52:e7:10:cc:49:40:dd:52:f5:c3: e1:47:4c:a9:35:8f:cb:27:ee:5e:af:0a:df:3f:ce:ad:a5:b2: c6:c6:71:dd:ff:c5:ae:7f:ab:ed:dc:ba:c3:d0:68:37:ea:90: 02:65:00:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwNDI0MjE0NjE4WhcNMjUwNTAxMjE0NjE4WjAYMRYwFAYD VQQDEw02ODBhYjEyYS0zNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CctChsS8+E90ZAHlm9vEDoboXCB3yiHMcpQdU74QqehTRISzZBI5zPL488A 77QGQcRYs5uYBTH4Tc67fCPUCD1QVuvYVaxGQnSjSpFzW6PyflRXj3VQzNm7L9S0 YOLgR86fygotYgTHoCqpPq1hQTBQHBThaY8MWKEViunxGUsb1LeURfHbD+22MhXD 6p6UeZTdHo96XHxyLAyIfJkQyl4auPlgITkSxwcMa2AAh1ZqTEuxfTcPOJ4jnY3+ P8D6itF0dVMs++sNqUfKGpjiHp/GHCreeSmGIXv+2bkMwEjDvH2+CWB/oQxcA4IF 2UWLl1J1TFSNND+hrci1YdK6RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjPmHMy IB78VO0VbGizOEqkxO3KMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1rm9Kdcmfhx9cNtDzEYk+4Qy9RHYC885V1+pT/4ReDEACBbYmoAEL Ab/3cN8/P55Z28qJZZG/D0QQDpNvF7JJfVJ6IsFRU+JNcJCNCms5jPIaZU0wT/0M qAHoOyNHStymoT0OswZY2/qfhp9hkfaMzQQryDigqm51wUZmhtbQxPU5vCGbOvOv Wl3o5iHR+GhefTdiT2Vdl0ATzo9VpkgOp/fJxkrJrn5IrRUQQ9pL64Xnkn+6jzsV K2sjq7oX1Dup7WQ3Z51NIgWcR0u/l1LnEMxJQN1S9cPhR0ypNY/LJ+5erwrfP86t pbLGxnHd/8Wuf6vt3LrD0Gg36pACZQDg -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:52 2025 by rpki-client