$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft File: xzON8bdowFB0za7Q_bGkwUrfuLU.mft (raw, json) Hash identifier: N0IoaGfpYA5CVT3ATHNXpcYLjl3YYaLAwal0o79l7n8= Subject key identifier: 44:F5:32:FC:88:B7:FF:43:BD:6F:4D:B9:83:3A:C3:11:57:B1:A7:F8 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft Manifest number: 0108 Signing time: Fri 25 Apr 2025 04:28:57 +0000 Manifest this update: Fri 25 Apr 2025 04:28:57 +0000 Manifest next update: Fri 02 May 2025 04:28:57 +0000 Files and hashes: 1: xzON8bdowFB0za7Q_bGkwUrfuLU.crl (hash: Ayx5UP69TR8Opr02l1ydQz/YAvVk/MympEeoMlYfSrk=) 2: A2516E42DE4511EF8C37E320C4F9AE02.roa (hash: XfIHm/MhIPSh6jZecIK72twugLDWV563OBM4HVySVuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Apr 25 04:28:57 2025 GMT Not After : May 2 04:28:57 2025 GMT Subject: CN=680b0f89-3735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:6c:3e:74:ae:30:96:ae:9f:99:04:09:82: 9f:8b:e4:08:51:1c:ac:7c:f4:8f:cb:18:7f:38:12: 47:a8:0d:28:a3:a5:b2:04:40:c0:ba:c7:88:16:f8: 41:6a:7b:0c:9c:d5:96:b4:9c:44:be:b4:ac:00:ad: 41:93:99:01:9d:e8:88:0e:6b:c9:a5:e2:9a:6e:8f: dd:f9:1f:91:ac:a3:e4:47:3a:58:85:23:8b:76:a7: 24:99:34:2a:69:80:98:c9:94:c9:7a:16:8c:17:8e: 17:a7:37:9f:ff:0d:cd:66:15:81:e4:0c:1b:3f:aa: 00:5d:f9:09:8b:1c:e3:9c:f9:db:d0:ce:1c:b3:9a: b7:1e:ad:e2:d3:9d:20:b9:cf:fe:d3:aa:47:18:c9: e3:f5:d8:1d:42:95:7e:63:4e:76:2c:bf:7f:8e:03: 1b:17:6c:9d:2f:89:6c:31:28:6a:ce:0f:79:2a:6b: 2f:4c:e5:b9:b6:1d:bc:a9:2f:72:9a:6a:36:c8:b8: cb:d2:0c:82:8b:ce:42:47:be:89:02:db:b1:b6:e5: 0d:d1:51:41:59:e3:8e:90:dc:41:1e:dd:17:7a:6a: 3b:a9:49:c5:1a:74:33:c3:c5:cc:f3:d4:f2:64:3a: 12:ca:31:a7:76:81:8a:a7:96:61:14:77:e2:94:95: 4a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F5:32:FC:88:B7:FF:43:BD:6F:4D:B9:83:3A:C3:11:57:B1:A7:F8 X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:08:17:20:ce:b4:be:65:e6:6b:a1:1f:e6:c3:a9:32:e1:66: 5d:be:0d:f9:95:4e:22:8d:3d:86:37:a1:50:c7:e3:9c:06:2d: 1a:8a:1b:ed:33:c2:0a:e0:c8:62:82:22:a9:26:85:1a:68:3a: 97:ef:76:c4:b4:ca:c5:db:b8:94:24:9f:cb:be:d6:31:51:d7: ac:80:84:bb:29:c4:14:d5:8e:48:fc:91:cf:96:9c:a2:f5:23: 40:2e:cf:e8:51:c0:22:52:f5:a9:84:75:ed:46:51:9a:bf:f8: f4:aa:d4:2f:8f:ac:66:0e:6a:f5:e1:9c:42:6e:b0:de:9f:b6: e8:f0:25:bf:35:a1:70:28:28:3d:b3:6e:85:ec:29:ff:5f:3e: bc:61:37:ca:3e:8b:29:eb:d7:af:0d:3c:dd:5f:15:4c:24:ff: b8:fa:dd:7c:6c:0f:0e:2f:c1:48:e7:49:89:18:fa:6f:ba:01: 36:4a:57:8f:96:9d:68:f4:32:62:35:8f:e4:c6:b1:ff:40:ec: 63:68:5a:c8:c4:01:7c:7d:57:a3:c3:17:ba:a0:27:01:e9:64: 60:1f:92:23:d4:99:58:31:d9:8d:58:e9:ad:93:ed:ef:89:2c: f9:21:1a:c7:c1:30:f3:d5:84:60:40:f5:97:b8:04:b1:0a:dd: b4:d5:84:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUwNDI1MDQyODU3WhcNMjUwNTAyMDQyODU3WjAYMRYwFAYD VQQDEw02ODBiMGY4OS0zNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/ZsPnSuMJaun5kECYKfi+QIURysfPSPyxh/OBJHqA0oo6WyBEDAuseIFvhB ansMnNWWtJxEvrSsAK1Bk5kBneiIDmvJpeKabo/d+R+RrKPkRzpYhSOLdqckmTQq aYCYyZTJehaMF44Xpzef/w3NZhWB5AwbP6oAXfkJixzjnPnb0M4cs5q3Hq3i050g uc/+06pHGMnj9dgdQpV+Y052LL9/jgMbF2ydL4lsMShqzg95KmsvTOW5th28qS9y mmo2yLjL0gyCi85CR76JAtuxtuUN0VFBWeOOkNxBHt0Xemo7qUnFGnQzw8XM89Ty ZDoSyjGndoGKp5ZhFHfilJVK7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET1MvyI t/9DvW9NuYM6wxFXsaf4MB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri80QUFCN0JDQUM0N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dG QjB6YTdRX2JHa3dVcmZ1TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnCBcgzrS+ZeZroR/mw6ky4WZdvg35lU4ijT2GN6FQx+OcBi0aihvt M8IK4MhigiKpJoUaaDqX73bEtMrF27iUJJ/LvtYxUdesgIS7KcQU1Y5I/JHPlpyi 9SNALs/oUcAiUvWphHXtRlGav/j0qtQvj6xmDmr14ZxCbrDen7bo8CW/NaFwKCg9 s26F7Cn/Xz68YTfKPosp69evDTzdXxVMJP+4+t18bA8OL8FI50mJGPpvugE2SleP lp1o9DJiNY/kxrH/QOxjaFrIxAF8fVejwxe6oCcB6WRgH5Ij1JlYMdmNWOmtk+3v iSz5IRrHwTDz1YRgQPWXuASxCt201YSx -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:23 2025 by rpki-client