$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: fOk333ho8euMcFR0GrWElb4SfZkQOzu7RnniPg96Uwk= Subject key identifier: 08:03:5D:54:3A:10:5D:9E:4E:D8:89:E3:71:FF:5D:8E:FB:B5:99:DB Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 08EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 08E5 Signing time: Thu 24 Apr 2025 20:16:51 +0000 Manifest this update: Thu 24 Apr 2025 20:16:51 +0000 Manifest next update: Thu 01 May 2025 20:16:51 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: a/bKiyvyA+RUTkl4trNbgv4BOn1JkRWLoJMrtzEOu7Y=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Apr 24 20:16:51 2025 GMT Not After : May 1 20:16:51 2025 GMT Subject: CN=680a9c33-9864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b1:84:f4:26:ac:4b:c8:2f:92:f7:9b:8e:21: da:65:02:e8:83:a6:f9:88:d4:6b:6e:9d:18:be:55: 47:4d:f6:a2:f1:74:f8:ce:60:91:c9:d2:15:43:dd: 77:71:c3:79:66:77:67:68:8b:84:19:4d:cb:27:89: 3c:2c:19:16:da:c5:68:63:03:d0:c1:ac:c4:04:6b: c2:ec:de:1f:8e:18:52:8f:9e:78:94:01:f3:32:ce: 84:1e:97:00:df:73:80:cb:43:54:74:99:a3:8d:70: e5:0c:03:14:f4:f1:dd:cf:9f:dc:3e:20:03:28:bb: cd:97:e7:b0:50:1a:5d:8e:c3:4f:bc:8d:0e:06:b1: 35:f4:f2:42:b7:6d:e6:08:11:66:f9:a1:e3:e8:ba: fb:5d:02:81:2a:5e:1f:f2:32:21:42:40:9c:b4:15: f7:d9:a2:b4:b8:b5:5a:61:d0:8f:ae:0c:65:df:5e: 04:41:67:ac:20:12:13:a2:fb:c2:2a:67:9c:58:9d: 3f:d3:25:34:77:d0:96:75:85:c5:79:72:6a:aa:9c: 11:28:23:68:80:87:74:8b:e0:5d:e0:0b:44:9e:88: 71:34:52:b1:19:ce:d3:91:52:8e:84:c9:fd:59:ef: 84:4a:4e:04:c1:0c:c2:e9:7c:e4:90:95:65:51:ff: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:03:5D:54:3A:10:5D:9E:4E:D8:89:E3:71:FF:5D:8E:FB:B5:99:DB X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:e6:91:25:7f:3f:10:61:b9:c9:dc:6b:e1:4d:cc:fb:73:71: 3d:39:21:5a:11:8d:f3:69:9f:8c:c5:02:3d:a8:89:f5:9b:5a: 13:7e:0d:c6:19:99:29:11:3f:74:6f:eb:69:93:ce:47:db:06: 9f:1e:58:cc:e7:9d:d4:d0:d1:0e:40:a0:23:18:eb:ad:f1:3a: 4d:af:ba:ae:d6:0f:2c:df:c2:a2:f3:a3:23:8e:84:ab:b8:73: c8:47:c2:54:47:bd:b9:55:ed:f2:89:ac:a9:bd:71:97:93:ea: 0e:aa:88:e4:7c:6b:a6:73:fb:89:5b:94:91:e6:b9:d9:f5:97: da:af:33:ba:23:7a:11:91:41:84:79:73:16:e2:00:8c:f9:b4: 22:84:ff:3a:6c:18:cf:ed:d5:98:e6:10:0e:78:31:73:46:17: 5b:2c:79:81:3b:9f:b6:dd:aa:d3:55:97:f4:5f:30:1c:77:d7: 75:dd:cf:5c:5f:00:d0:b9:5b:eb:36:04:93:95:c9:1d:fa:c3: 62:8e:58:c4:9b:8e:d6:be:c0:c1:31:2d:0a:0d:71:38:ba:8f: 82:fb:76:e3:1e:95:ed:68:b1:e8:8f:4d:5c:30:d9:3b:c0:1e: f9:a5:65:6d:63:5b:e6:31:da:03:f9:23:ad:e7:27:e2:e6:b4: 1d:36:02:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUwNDI0MjAxNjUxWhcNMjUwNTAxMjAxNjUxWjAYMRYwFAYD VQQDEw02ODBhOWMzMy05ODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubGE9CasS8gvkvebjiHaZQLog6b5iNRrbp0YvlVHTfai8XT4zmCRydIVQ913 ccN5ZndnaIuEGU3LJ4k8LBkW2sVoYwPQwazEBGvC7N4fjhhSj554lAHzMs6EHpcA 33OAy0NUdJmjjXDlDAMU9PHdz5/cPiADKLvNl+ewUBpdjsNPvI0OBrE19PJCt23m CBFm+aHj6Lr7XQKBKl4f8jIhQkCctBX32aK0uLVaYdCPrgxl314EQWesIBITovvC KmecWJ0/0yU0d9CWdYXFeXJqqpwRKCNogId0i+Bd4AtEnohxNFKxGc7TkVKOhMn9 We+ESk4EwQzC6XzkkJVlUf9kzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgDXVQ6 EF2eTtiJ43H/XY77tZnbMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB5pElfz8QYbnJ3GvhTcz7c3E9OSFaEY3zaZ+MxQI9qIn1m1oTfg3G GZkpET90b+tpk85H2wafHljM553U0NEOQKAjGOut8TpNr7qu1g8s38Ki86MjjoSr uHPIR8JUR725Ve3yiaypvXGXk+oOqojkfGumc/uJW5SR5rnZ9ZfarzO6I3oRkUGE eXMW4gCM+bQihP86bBjP7dWY5hAOeDFzRhdbLHmBO5+23arTVZf0XzAcd9d13c9c XwDQuVvrNgSTlckd+sNijljEm47WvsDBMS0KDXE4uo+C+3bjHpXtaLHoj01cMNk7 wB75pWVtY1vmMdoD+SOt5yfi5rQdNgKc -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:01 2025 by rpki-client