$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: lo9d7AODBHWrbFjFr2/haRA3YRiCTj0VZL6jp5RRSzM= Subject key identifier: CC:38:C6:3B:A3:0D:31:32:68:BE:7B:2F:3D:25:5D:F8:E0:AE:6B:7B Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 099F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 097D Signing time: Thu 24 Apr 2025 20:02:52 +0000 Manifest this update: Thu 24 Apr 2025 20:02:51 +0000 Manifest next update: Thu 01 May 2025 20:02:51 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: H6jipwXJWzVdrJd10YXQ4F4oOtKn2/7oUUXbdASpBvE=) 2: 6569BF24997F11ECA6C7F481C4F9AE02.roa (hash: ihZ46zaKKgYFbsQZJpUcfwGNcLq0WYivOzEHAfXlcfs=) 3: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: 2HuzCk6S18IuIuNY88Jnmogc9ez8HXD2AaJ8nr4dsM0=) 4: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2463 (0x99f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Apr 24 20:02:51 2025 GMT Not After : May 1 20:02:51 2025 GMT Subject: CN=680a98eb-1e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c9:2a:10:ba:10:b5:c1:ab:61:92:03:61:b6: 23:a8:58:b6:cf:80:c7:ef:6e:61:87:93:50:2d:df: 32:de:c1:d4:7b:30:28:67:fa:a4:1f:77:7a:51:e0: ad:67:f9:37:ca:93:08:36:46:d8:e8:31:12:b6:7e: 0f:af:42:f1:ec:00:be:47:4d:92:cd:66:67:4b:73: 1c:5c:ab:a7:ef:0e:8a:aa:2b:8b:ce:2b:ef:1d:ef: 69:7f:e2:5e:f5:f7:bd:4d:3c:7f:74:12:1b:2f:59: 17:dd:9f:f1:1a:2d:21:26:29:45:81:db:c7:d1:a1: 96:8c:b5:50:01:7f:d6:2b:e0:98:f6:c0:a9:fd:78: d2:1f:ee:a4:ac:47:4e:5e:d0:b6:21:17:1c:7e:0e: 05:85:90:45:5d:77:f3:27:39:fa:05:bf:9e:69:59: 9b:d0:e5:ce:a1:73:e9:c6:a1:d8:87:e7:32:0e:35: 47:73:fb:a2:ae:62:41:b0:8b:03:4f:4f:a5:c8:cf: 7b:d6:98:71:19:15:cc:94:6c:fd:15:e5:c8:2b:d0: c5:35:79:f7:0f:68:f9:80:9c:40:2b:78:10:da:df: ad:79:79:df:7c:af:ae:3e:5a:5f:f2:c7:d6:ce:ac: c3:60:d1:69:ec:e5:80:39:4b:aa:fa:45:ce:e2:f0: 8c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:38:C6:3B:A3:0D:31:32:68:BE:7B:2F:3D:25:5D:F8:E0:AE:6B:7B X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:5e:4f:cc:78:1d:65:ee:f3:d0:8f:58:98:d6:3e:02:74:d2: e7:14:fb:93:c2:39:40:d7:01:4a:0a:60:1e:a7:dd:84:4d:87: 33:43:c2:40:2f:9a:92:ff:77:37:df:2f:68:0d:ae:a2:16:b1: a0:d9:87:e3:1f:ea:25:ae:6d:7a:52:fa:0c:55:33:cf:92:1e: 6f:09:47:a2:2b:0c:9a:4d:21:36:41:a4:bc:f6:f2:b3:4d:b2: 8a:b5:78:78:8b:95:4e:0a:4d:fa:fe:e2:c5:36:fb:4c:a9:29: 06:4e:62:75:df:c7:f4:cc:34:7a:fe:0c:31:7e:3b:10:36:de: a9:4d:74:8b:24:ad:b3:45:8f:21:8b:d7:d6:e7:18:44:d8:a9: ea:49:af:72:81:57:88:43:bf:29:42:2f:a9:1f:f2:c4:db:a7: 87:d2:d7:a3:67:0a:96:0e:c8:51:e1:42:41:42:80:6f:c0:eb: bd:8a:54:66:67:b4:94:b7:f7:0e:be:6c:f7:c5:b6:0d:26:1c: 0f:5b:ca:e1:41:3d:f7:99:12:1b:d2:0b:6b:2f:82:cd:e2:f6: 52:6a:2d:dc:87:53:62:29:c5:d3:4e:52:2e:7c:82:03:db:6b: bb:9c:5a:1e:df:68:04:0c:e5:60:04:51:a2:91:22:ae:4a:66: cf:c0:6f:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUwNDI0MjAwMjUxWhcNMjUwNTAxMjAwMjUxWjAYMRYwFAYD VQQDEw02ODBhOThlYi0xZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAockqELoQtcGrYZIDYbYjqFi2z4DH725hh5NQLd8y3sHUezAoZ/qkH3d6UeCt Z/k3ypMINkbY6DEStn4Pr0Lx7AC+R02SzWZnS3McXKun7w6KqiuLzivvHe9pf+Je 9fe9TTx/dBIbL1kX3Z/xGi0hJilFgdvH0aGWjLVQAX/WK+CY9sCp/XjSH+6krEdO XtC2IRccfg4FhZBFXXfzJzn6Bb+eaVmb0OXOoXPpxqHYh+cyDjVHc/uirmJBsIsD T0+lyM971phxGRXMlGz9FeXIK9DFNXn3D2j5gJxAK3gQ2t+teXnffK+uPlpf8sfW zqzDYNFp7OWAOUuq+kXO4vCMcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw4xjuj DTEyaL57Lz0lXfjgrmt7MB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQXk/MeB1l7vPQj1iY1j4CdNLnFPuTwjlA1wFKCmAep92ETYczQ8JA L5qS/3c33y9oDa6iFrGg2YfjH+olrm16UvoMVTPPkh5vCUeiKwyaTSE2QaS89vKz TbKKtXh4i5VOCk36/uLFNvtMqSkGTmJ138f0zDR6/gwxfjsQNt6pTXSLJK2zRY8h i9fW5xhE2KnqSa9ygVeIQ78pQi+pH/LE26eH0tejZwqWDshR4UJBQoBvwOu9ilRm Z7SUt/cOvmz3xbYNJhwPW8rhQT33mRIb0gtrL4LN4vZSai3ch1NiKcXTTlIufIID 22u7nFoe32gEDOVgBFGikSKuSmbPwG9E -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:40 2025 by rpki-client