$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: nB38xspPT8sO0lNBzuDXS0oAcuJg6EjeNjuOm0MK6L4= Subject key identifier: 58:26:BC:BB:A0:87:7A:0F:72:B6:13:E6:98:4A:AC:43:BA:E7:D2:A9 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 2E Signing time: Fri 25 Apr 2025 06:47:56 +0000 Manifest this update: Fri 25 Apr 2025 06:47:55 +0000 Manifest next update: Fri 02 May 2025 06:47:55 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: PipIxr+Cl+CzcBnhauMjKJLlNL+pPTnm/qR5ejUMqIM=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: xsROjP2odAWh0kHafpV6U2yAzjD0YVmpO7HNKMKB17M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Apr 25 06:47:55 2025 GMT Not After : May 2 06:47:55 2025 GMT Subject: CN=680b301b-3829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a4:8a:2a:54:d8:9b:b5:35:36:d1:a6:ee:99: 65:5b:b0:f1:e5:9e:d3:5c:5e:53:45:0f:0b:e1:c5: 9e:10:ff:63:0d:51:58:d2:75:6a:4c:f3:b0:0c:b6: 38:f7:5d:71:b5:0b:01:99:83:bb:53:a6:a9:3c:d5: 8b:be:af:a9:8c:22:81:9a:56:9d:72:1b:4c:d1:38: 19:88:31:c9:3b:bd:b1:f6:6e:3a:57:49:30:ad:73: 0a:35:ee:e6:a0:76:a4:b4:e6:ac:3b:2d:ac:f9:20: 30:30:94:92:ec:0d:35:ac:96:34:4e:cf:f7:a3:18: 00:f4:e5:bb:c1:05:e7:72:ec:d9:67:ab:e5:5f:a5: 2a:da:b8:20:89:30:41:6b:b3:f9:bd:98:90:7f:53: d9:f2:53:c5:dc:28:e1:3a:6c:39:f9:29:b2:b6:65: d5:cb:76:99:f0:38:52:b1:64:e3:86:3a:5d:85:0c: 77:fa:ac:1d:5f:88:3b:85:12:52:fb:7c:3c:dd:51: 86:c7:f1:ad:08:04:f5:77:dc:9a:1b:ef:ce:bf:95: 68:8f:fc:19:18:b8:a2:00:35:0e:ee:9f:d2:d2:c4: aa:2f:b0:4b:3b:43:69:54:1e:6d:73:f2:d1:93:f6: 09:e9:ef:c5:7e:68:47:98:b0:eb:72:07:bb:7e:65: fa:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:26:BC:BB:A0:87:7A:0F:72:B6:13:E6:98:4A:AC:43:BA:E7:D2:A9 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:5a:01:74:a5:cf:95:0b:83:33:c6:01:00:20:70:a2:6f:db: 23:db:d0:13:3d:f1:71:aa:8a:d9:3f:c0:07:d9:bc:42:b1:d9: 2b:f9:9e:60:3b:ae:92:a0:b3:f9:50:68:9f:cc:fc:99:a8:43: a4:e2:f9:34:6d:cb:2b:59:28:28:50:d9:8a:ad:48:2d:e4:76: f9:96:80:a1:be:fd:c7:cc:8a:96:09:86:f9:72:7b:5d:a5:39: f6:25:db:17:e8:69:7d:d1:24:ba:2f:52:72:69:8e:6f:77:97: dc:11:e5:21:9d:6e:bb:8e:f1:37:a2:4a:f0:4a:82:3d:d0:25: c0:d9:67:37:ae:5f:c8:3d:f6:f7:3f:0e:1b:69:79:14:10:ac: a3:0b:70:60:f8:47:15:db:b5:c8:2b:6a:c0:bf:f6:74:02:f4: b5:de:54:34:ee:24:d4:2e:d6:47:a1:29:0d:07:b3:ca:c5:d3: ef:9f:55:db:d9:0e:47:46:8a:4d:bf:f6:74:28:58:2a:b1:ba: 64:d7:e0:6b:9b:13:68:7e:4c:52:6a:17:8f:12:4d:25:3c:e2: 5a:68:8f:06:d8:29:dc:53:56:30:9a:1e:51:cd:21:97:1a:c5: 46:73:4e:3c:21:73:47:0e:9d:39:ec:9c:b5:44:79:3d:b1:b9: c1:9b:ce:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA0MjUwNjQ3NTVaFw0yNTA1MDIwNjQ3NTVaMBgxFjAUBgNV BAMTDTY4MGIzMDFiLTM4MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgpIoqVNibtTU20abumWVbsPHlntNcXlNFDwvhxZ4Q/2MNUVjSdWpM87AMtjj3 XXG1CwGZg7tTpqk81Yu+r6mMIoGaVp1yG0zROBmIMck7vbH2bjpXSTCtcwo17uag dqS05qw7Laz5IDAwlJLsDTWsljROz/ejGAD05bvBBedy7Nlnq+VfpSrauCCJMEFr s/m9mJB/U9nyU8XcKOE6bDn5KbK2ZdXLdpnwOFKxZOOGOl2FDHf6rB1fiDuFElL7 fDzdUYbH8a0IBPV33Job786/lWiP/BkYuKIANQ7un9LSxKovsEs7Q2lUHm1z8tGT 9gnp78V+aEeYsOtyB7t+ZfpjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWCa8u6CH eg9ythPmmEqsQ7rn0qkwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw RjkwLzA0Nzc5QjlDRUQ4MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFk ald2SlJtdHpRQXVFeS04NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEJaAXSlz5ULgzPGAQAgcKJv2yPb0BM98XGqitk/wAfZvEKx2Sv5nmA7 rpKgs/lQaJ/M/JmoQ6Ti+TRtyytZKChQ2YqtSC3kdvmWgKG+/cfMipYJhvlye12l OfYl2xfoaX3RJLovUnJpjm93l9wR5SGdbruO8TeiSvBKgj3QJcDZZzeuX8g99vc/ DhtpeRQQrKMLcGD4RxXbtcgrasC/9nQC9LXeVDTuJNQu1kehKQ0Hs8rF0++fVdvZ DkdGik2/9nQoWCqxumTX4GubE2h+TFJqF48STSU84lpojwbYKdxTVjCaHlHNIZca xUZzTjwhc0cOnTnsnLVEeT2xucGbzmI= -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:54 2025 by rpki-client