$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: nWNqSvC0jN23xLvsC4MdyrCmwjZIrtRuW99lz+RiXe0= Subject key identifier: F4:A3:C1:5E:A6:2F:50:A7:88:39:9F:C1:4A:59:D4:2F:85:61:BE:D1 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 34A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 3492 Signing time: Thu 24 Apr 2025 14:46:23 +0000 Manifest this update: Thu 24 Apr 2025 14:46:22 +0000 Manifest next update: Thu 01 May 2025 14:46:22 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: 1sGX4k9z1rxVGR/FMa+GcpuoctOTndvYO2IcbFg7giQ=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: LT0aNSmVv5vvmR7dpu4yqP0BpA8hfoKsmy5XfMM5RqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13481 (0x34a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Apr 24 14:46:22 2025 GMT Not After : May 1 14:46:22 2025 GMT Subject: CN=680a4ebe-4de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:7f:6a:ce:a0:b3:d0:d9:97:cc:ae:78:ac: 66:ef:1e:c8:a9:d7:52:d7:ad:ca:e2:9c:43:06:66: f7:b5:ed:e6:82:24:29:14:4f:0e:f3:f0:68:59:33: ff:bf:19:de:06:c0:fb:d6:44:92:5e:25:36:36:17: 8c:9d:41:b9:f6:1f:1f:0d:28:c1:d3:a1:ad:5a:9a: 93:6f:9d:2f:e3:de:c0:20:7f:8d:76:d5:23:19:f3: 18:8c:0a:9c:f9:9d:85:cf:b2:c2:34:4d:99:b7:9a: 6f:58:36:bc:a4:63:4b:f7:4b:26:6d:25:8c:f6:3e: e1:67:ae:93:f4:aa:b7:ff:ba:18:4b:c1:59:ad:1b: ca:18:a3:ec:f1:6f:cd:27:a3:86:82:84:99:1d:8e: 33:7e:d0:a5:81:04:d4:35:27:72:e1:b1:50:f8:b1: 60:df:8b:93:e2:19:a0:83:2a:25:cc:7e:de:af:df: fd:cd:75:a6:cf:95:af:f6:a6:96:a5:c9:42:42:55: f3:5a:40:ef:f2:da:ba:16:8c:fe:c6:f6:6a:ba:84: fd:bb:ad:b1:dd:b7:20:51:8c:e7:33:4d:cf:f1:0d: 2d:27:61:cd:80:67:12:eb:e8:4a:65:49:a2:92:51: 79:83:30:dc:b5:1d:a4:58:50:74:51:ab:17:7e:42: d6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A3:C1:5E:A6:2F:50:A7:88:39:9F:C1:4A:59:D4:2F:85:61:BE:D1 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:7c:2b:21:f2:21:cc:1c:0a:9d:27:6f:c9:8e:9c:49:38:be: a2:db:98:ee:73:cd:45:9e:5e:86:01:7d:90:b3:a0:b0:77:20: 09:64:03:9e:59:7a:f5:77:3d:c2:a0:e1:96:c5:83:c2:dc:db: 5c:be:a0:11:be:e0:d9:be:b6:89:da:e7:8f:96:38:5d:0d:a0: 58:21:37:fd:dc:90:7c:54:6d:49:7e:5a:86:28:40:e4:e7:95: d6:d0:ca:13:17:a5:42:c6:d4:dd:d5:f0:eb:9d:46:36:7c:30: 27:d6:4c:d8:42:56:88:68:46:08:e6:48:7a:14:4e:b4:92:18: da:81:12:f3:f6:bd:97:0a:13:d0:b9:23:42:8d:20:19:11:3c: 9b:ac:70:a0:56:7c:0a:ca:dd:56:35:a6:10:88:e2:d3:5b:2e: 30:3e:15:93:63:27:f0:1d:20:3a:d1:fa:86:a3:83:3c:f7:28: 6d:81:ac:96:53:18:cb:d8:85:21:25:d9:9f:7b:11:8d:68:9b: d7:8a:d6:7b:f5:19:65:e3:f4:d7:fc:8d:38:ca:35:12:66:bd: 52:75:3f:eb:bb:9e:8f:e5:78:62:bc:0b:85:f1:f3:17:fc:13: ca:6d:a3:f8:fb:17:d1:dd:a2:4d:36:b9:7a:4b:c8:9d:81:d9: 47:e1:6d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUwNDI0MTQ0NjIyWhcNMjUwNTAxMTQ0NjIyWjAYMRYwFAYD VQQDEw02ODBhNGViZS00ZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUZ/as6gs9DZl8yueKxm7x7IqddS163K4pxDBmb3te3mgiQpFE8O8/BoWTP/ vxneBsD71kSSXiU2NheMnUG59h8fDSjB06GtWpqTb50v497AIH+NdtUjGfMYjAqc +Z2Fz7LCNE2Zt5pvWDa8pGNL90smbSWM9j7hZ66T9Kq3/7oYS8FZrRvKGKPs8W/N J6OGgoSZHY4zftClgQTUNSdy4bFQ+LFg34uT4hmggyolzH7er9/9zXWmz5Wv9qaW pclCQlXzWkDv8tq6Foz+xvZquoT9u62x3bcgUYznM03P8Q0tJ2HNgGcS6+hKZUmi klF5gzDctR2kWFB0UasXfkLWtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSjwV6m L1CniDmfwUpZ1C+FYb7RMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5fCsh8iHMHAqdJ2/JjpxJOL6i25juc81Fnl6GAX2Qs6CwdyAJZAOe WXr1dz3CoOGWxYPC3NtcvqARvuDZvraJ2uePljhdDaBYITf93JB8VG1JflqGKEDk 55XW0MoTF6VCxtTd1fDrnUY2fDAn1kzYQlaIaEYI5kh6FE60khjagRLz9r2XChPQ uSNCjSAZETybrHCgVnwKyt1WNaYQiOLTWy4wPhWTYyfwHSA60fqGo4M89yhtgayW UxjL2IUhJdmfexGNaJvXitZ79Rll4/TX/I04yjUSZr1SdT/ru56P5XhivAuF8fMX /BPKbaP4+xfR3aJNNrl6S8idgdlH4W0F -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:50 2025 by rpki-client