$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: vgqMIGniuCupluvW+dTVO0Ds6ADRrCwHaQ8DfoW9GsY= Subject key identifier: 3D:38:2A:3E:7D:B1:B6:B2:EC:4E:6B:7A:56:2E:C8:BF:AB:0D:81:86 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 079C Signing time: Thu 24 Apr 2025 21:17:58 +0000 Manifest this update: Thu 24 Apr 2025 21:17:58 +0000 Manifest next update: Thu 01 May 2025 21:17:58 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: lOyQabLeqNqh4Sv62Jgx35pwdHFy2f9vzAwheowDt8M=) 2: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: Z0HHcyxz7rmGLBYwcIWDSL9D03AdZbtYiS469aOTikg=) 3: B512A570109211ECA693D74EC4F9AE02.roa (hash: AOyufc93Chw9bEWHvFa0LDI+LOdW3FqSZFo43ILQvd0=) 4: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: ZpHbYhB9ExSCJ+11c8ap/OdAIsKxszdOCjimKJQDTek=) 5: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: ftDRlCPQKF+Ib5B7VJZrq540hqlVUdTm8Q2C4Ih+cM8=) 6: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: HxA8u7nmZWUr6BPYIZAwMw8J3pQQtwxfZZvWeTi7tWI=) 7: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: YABaqUWE/JPdcjinbFv0PWoHHYymCq6aO+ylU5Xzjo0=) 8: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: XhE6x9E/aZ957HcPZHgLlj7Fv56GEXE7hy1IWMNgX6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Apr 24 21:17:58 2025 GMT Not After : May 1 21:17:58 2025 GMT Subject: CN=680aaa86-3b70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ef:92:0a:17:aa:05:7f:cd:26:bc:2c:cb:8f: 33:ae:02:a1:8f:fb:92:d0:91:a0:ed:fd:d8:20:7e: 3c:26:36:59:9c:04:43:97:bc:c3:4d:fb:d8:aa:45: 94:8a:20:c3:32:ba:b3:36:1d:cd:00:c0:cf:ed:2a: a4:ab:49:7c:61:ac:07:c4:c3:7a:88:46:c9:d8:da: 1c:b6:51:ea:5b:51:d9:55:bb:bf:4a:cf:16:f4:76: 9c:a7:b6:75:1a:7c:ff:1c:71:92:de:70:d2:ba:d4: 6b:13:e6:83:50:bc:f2:ed:66:7e:60:d7:ed:d5:8d: c1:e1:95:bb:3a:8f:d8:b2:45:43:5a:db:c3:cb:5d: b4:e7:9a:c0:02:cc:28:99:8a:e1:10:e1:54:82:d2: 0d:c8:4b:8c:49:cb:07:6a:9a:1c:64:00:df:b6:0a: c8:d1:3a:dc:3f:9d:8e:bb:00:98:44:60:dc:be:16: 9c:19:8b:fe:9a:c5:28:3f:cf:96:88:15:5f:b7:1a: 28:cb:6b:ef:80:b0:65:93:bd:06:d0:02:b7:f5:ae: 8f:55:11:d6:80:9a:35:7b:c6:d3:df:0e:d8:6e:70: 63:97:39:00:23:cb:8a:eb:9d:c5:ad:60:7e:42:6f: 85:65:33:bd:00:0d:db:14:3b:cf:9b:2f:80:d5:89: d9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:38:2A:3E:7D:B1:B6:B2:EC:4E:6B:7A:56:2E:C8:BF:AB:0D:81:86 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1d:a6:99:9a:37:77:7a:ff:c2:97:59:7e:ec:36:21:1c:60: 97:ad:db:0e:19:e8:0b:60:92:ce:9d:14:55:be:57:74:67:a7: 48:1d:48:41:fd:59:4d:94:ec:e5:21:5c:87:bb:c0:9f:16:a7: dd:98:ba:07:6a:e8:c6:d0:42:08:7b:61:8a:05:eb:4c:3b:96: 0d:a6:28:58:36:d7:71:7e:b0:85:54:3a:f3:07:e2:ae:39:ff: 62:25:f0:3e:ea:9c:28:b0:b5:47:84:c7:8c:37:56:d2:9d:d1: e4:7b:e4:6d:52:5e:5c:8b:18:bf:80:97:03:27:93:6e:85:c1: 62:6f:fb:fa:b4:6e:f5:9e:ab:ff:80:f5:ae:86:49:d2:c9:e7: 17:ae:e1:da:a4:72:fc:c5:e9:4f:f0:71:96:20:cd:84:70:40: 89:3b:cb:f2:56:4d:ad:68:c5:f2:27:1e:d3:78:9b:f9:08:37: 8f:91:a6:24:bd:fb:fa:25:29:0a:b7:80:ac:46:5a:9a:b8:49: 90:8e:49:d8:ad:f1:2d:6f:73:6d:32:87:92:6a:e5:c9:7a:94: 1b:82:a7:92:0d:68:ec:c4:b6:14:d1:0e:b0:04:d3:0a:23:3f: a1:20:0e:42:95:12:5a:1d:ff:49:9a:cf:94:fc:9c:8c:59:c8: d2:2a:76:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjUwNDI0MjExNzU4WhcNMjUwNTAxMjExNzU4WjAYMRYwFAYD VQQDEw02ODBhYWE4Ni0zYjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6O+SCheqBX/NJrwsy48zrgKhj/uS0JGg7f3YIH48JjZZnARDl7zDTfvYqkWU iiDDMrqzNh3NAMDP7Sqkq0l8YawHxMN6iEbJ2NoctlHqW1HZVbu/Ss8W9Hacp7Z1 Gnz/HHGS3nDSutRrE+aDULzy7WZ+YNft1Y3B4ZW7Oo/YskVDWtvDy12055rAAswo mYrhEOFUgtINyEuMScsHapocZADftgrI0TrcP52OuwCYRGDcvhacGYv+msUoP8+W iBVftxooy2vvgLBlk70G0AK39a6PVRHWgJo1e8bT3w7YbnBjlzkAI8uK653FrWB+ Qm+FZTO9AA3bFDvPmy+A1YnZ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD04Kj59 sbay7E5relYuyL+rDYGGMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/HaaZmjd3ev/Cl1l+7DYhHGCXrdsOGegLYJLOnRRVvld0Z6dIHUhB /VlNlOzlIVyHu8CfFqfdmLoHaujG0EIIe2GKBetMO5YNpihYNtdxfrCFVDrzB+Ku Of9iJfA+6pwosLVHhMeMN1bSndHke+RtUl5cixi/gJcDJ5NuhcFib/v6tG71nqv/ gPWuhknSyecXruHapHL8xelP8HGWIM2EcECJO8vyVk2taMXyJx7TeJv5CDePkaYk vfv6JSkKt4CsRlqauEmQjknYrfEtb3NtMoeSauXJepQbgqeSDWjsxLYU0Q6wBNMK Iz+hIA5ClRJaHf9Jms+U/JyMWcjSKnbM -----END CERTIFICATE-----Generated at Sat Apr 26 05:27:00 2025 by rpki-client