$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: 4MCNPvgEyJONoy02V6ijfKm2QknGfjZ75EcM+Iif1Ds= Subject key identifier: 16:FC:DA:61:D3:7C:3C:73:22:DF:50:81:56:F5:0D:EF:21:8D:BE:D0 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: D7 Signing time: Fri 25 Apr 2025 04:37:10 +0000 Manifest this update: Fri 25 Apr 2025 04:37:09 +0000 Manifest next update: Fri 02 May 2025 04:37:09 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: qgW+TYsD2nr0dXVeEp3lzvUkZwL8Z14a8Nu2p6+Vvbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Apr 25 04:37:09 2025 GMT Not After : May 2 04:37:09 2025 GMT Subject: CN=680b1176-b48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ab:4d:eb:1b:a8:ce:9a:a4:cf:f9:a7:e3:50: 0d:ea:62:8d:c5:b1:43:6b:9c:b3:ed:9e:fb:fc:34: 38:e7:ec:f9:a3:43:c8:94:ed:d6:25:e1:f7:4e:2b: 1a:e5:cb:5d:15:f2:13:d4:56:ee:5b:8f:a6:72:7e: e7:7d:23:b5:68:e5:10:f8:ba:d0:1e:4d:89:2b:20: 81:5c:c5:14:34:95:95:5b:d6:f6:67:a9:9b:27:67: 58:4b:2b:c7:db:53:44:34:3e:57:18:04:e5:7c:ee: cd:0d:0a:29:61:08:55:f3:6a:ed:e0:33:57:69:e9: 94:11:6c:35:70:1d:e7:12:73:3b:35:56:01:36:d7: a7:4b:91:78:fe:fb:e2:7c:76:22:de:15:00:f9:6d: 42:67:71:65:e0:32:79:c9:6d:b7:64:3e:19:05:46: 70:0e:13:3c:ac:df:d1:c2:a5:af:88:c5:c0:b6:9a: 49:45:30:89:9d:c7:26:58:1e:2d:71:7e:3c:c7:cd: 61:a5:70:43:c3:2b:78:9e:c3:36:44:ec:29:3c:08: 59:48:14:50:3a:bb:95:ce:34:19:67:9e:10:b7:8b: e2:7b:61:ad:f9:99:34:76:35:22:fc:47:7b:93:a2: 04:88:d2:b0:68:01:6c:d8:26:5a:61:a4:aa:9b:1b: 95:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FC:DA:61:D3:7C:3C:73:22:DF:50:81:56:F5:0D:EF:21:8D:BE:D0 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:38:b3:01:c7:63:0b:99:65:cb:c7:3a:cb:18:aa:c1:88:40: 4a:0d:92:94:59:ac:54:7b:4a:1c:59:29:a3:17:b7:87:e5:dc: 01:e6:72:e9:51:1b:65:24:12:94:09:2c:4c:1b:fd:27:a5:c4: e2:68:51:86:3f:4c:65:27:b5:22:a0:9e:99:47:e7:5d:67:91: 0c:89:f7:4f:ab:66:9f:4d:38:c2:be:95:81:4a:8c:e9:64:be: ba:dd:c0:99:f2:de:ea:e9:b5:68:54:a4:58:de:22:4f:0f:35: 13:77:13:91:3a:16:5f:47:d1:7b:0a:d1:7a:a9:b2:73:41:23: c9:4d:7d:b3:dc:98:94:a4:48:99:a5:b1:b8:38:18:1d:97:7b: 89:ae:81:17:b6:aa:c6:41:0d:d0:a6:be:4e:61:3a:8a:e7:0b: 15:06:cb:97:de:b4:82:93:96:de:b7:36:19:4b:dd:f0:1a:fb: 1e:bb:78:67:93:df:ff:fd:44:b1:ef:d4:69:88:04:a7:4c:26: d4:14:8a:f4:a1:c4:69:f7:d9:be:6a:fb:3c:66:5c:fe:d1:e4: b5:cf:ef:c2:a8:81:ce:8b:5c:ec:af:3a:1c:5e:ff:3a:f6:45: 77:b7:d3:ed:32:aa:f2:71:b3:fc:c2:e0:06:81:a5:67:cd:97: 8f:05:ce:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUwNDI1MDQzNzA5WhcNMjUwNTAyMDQzNzA5WjAYMRYwFAYD VQQDEw02ODBiMTE3Ni1iNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqtN6xuozpqkz/mn41AN6mKNxbFDa5yz7Z77/DQ45+z5o0PIlO3WJeH3Tisa 5ctdFfIT1FbuW4+mcn7nfSO1aOUQ+LrQHk2JKyCBXMUUNJWVW9b2Z6mbJ2dYSyvH 21NEND5XGATlfO7NDQopYQhV82rt4DNXaemUEWw1cB3nEnM7NVYBNtenS5F4/vvi fHYi3hUA+W1CZ3Fl4DJ5yW23ZD4ZBUZwDhM8rN/RwqWviMXAtppJRTCJnccmWB4t cX48x81hpXBDwyt4nsM2ROwpPAhZSBRQOruVzjQZZ54Qt4vie2Gt+Zk0djUi/Ed7 k6IEiNKwaAFs2CZaYaSqmxuVHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBb82mHT fDxzIt9QgVb1De8hjb7QMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVOLMBx2MLmWXLxzrLGKrBiEBKDZKUWaxUe0ocWSmjF7eH5dwB5nLp URtlJBKUCSxMG/0npcTiaFGGP0xlJ7UioJ6ZR+ddZ5EMifdPq2afTTjCvpWBSozp ZL663cCZ8t7q6bVoVKRY3iJPDzUTdxOROhZfR9F7CtF6qbJzQSPJTX2z3JiUpEiZ pbG4OBgdl3uJroEXtqrGQQ3Qpr5OYTqK5wsVBsuX3rSCk5betzYZS93wGvseu3hn k9///USx79RpiASnTCbUFIr0ocRp99m+avs8Zlz+0eS1z+/CqIHOi1zsrzocXv86 9kV3t9PtMqrycbP8wuAGgaVnzZePBc6h -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:34 2025 by rpki-client