$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: bKeQSZ2sqMxDuIU55CYkYXmpI6epSxPS4rqJDTN7Bwk= Subject key identifier: 6D:99:C4:63:46:A4:1A:EA:AC:70:55:2C:64:39:6E:A1:36:47:64:60 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 02E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 02E3 Signing time: Fri 25 Apr 2025 01:04:50 +0000 Manifest this update: Fri 25 Apr 2025 01:04:49 +0000 Manifest next update: Fri 02 May 2025 01:04:49 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: 3AeH4ew9ctMij1EZSyFUZeWr0B6l53NQMGaqrN7ybfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 740 (0x2e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Apr 25 01:04:49 2025 GMT Not After : May 2 01:04:49 2025 GMT Subject: CN=680adfb2-4831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:6b:13:f3:77:09:a3:68:1b:ed:78:0a:d2: 70:18:39:4c:c7:52:3d:b5:77:eb:61:2e:05:bc:d2: c1:3e:b5:74:d5:d9:fa:e7:49:cf:85:2b:41:a3:95: ca:73:13:58:e3:48:27:4a:13:e3:18:da:e8:9e:6c: df:6e:44:c5:bc:27:59:df:57:70:6c:f9:1c:7f:0d: f2:3a:0e:09:1d:a1:2d:65:a7:dc:28:41:9f:e0:34: d2:7a:a1:88:3c:b7:75:43:3b:95:71:eb:97:49:5f: 5c:82:ff:2c:eb:87:c5:0e:44:64:aa:01:c2:ff:0c: f9:da:f1:ea:60:17:04:bf:0d:01:d1:3b:56:6c:09: 4c:6f:c9:0d:58:87:f6:3c:2c:d9:01:17:70:0b:15: 87:04:b9:eb:d6:a9:ea:ef:cf:40:7d:84:b1:0b:08: d9:b9:e9:e6:21:92:a5:ef:5d:2e:dd:3c:dd:57:aa: dd:b4:15:69:ce:03:68:e5:dc:50:a1:38:02:5a:87: b1:8d:b1:97:90:e7:9b:f2:1c:ee:d7:7b:25:0b:0c: 24:78:e7:ef:5e:b3:1d:8f:a0:9a:6d:18:e5:26:26: 3a:c6:52:a5:b2:ae:a0:ca:2c:09:4b:10:67:0d:a6: 8f:42:14:39:e8:d2:28:65:f7:60:82:a2:27:4f:66: a7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:99:C4:63:46:A4:1A:EA:AC:70:55:2C:64:39:6E:A1:36:47:64:60 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:eb:83:2d:54:b9:58:46:46:57:b2:fe:23:0a:53:67:bf:93: df:91:16:e9:1d:ff:ad:c4:01:46:f8:0b:3c:32:94:be:70:a8: cc:cf:37:25:44:6a:00:c6:a8:94:89:22:1b:3b:e2:4b:f9:14: 14:52:27:c5:4d:0f:a8:a2:55:ec:0e:da:f1:47:b1:7a:f6:e9: 8b:b7:a9:6f:2c:4f:61:ea:4e:1f:9d:bd:6c:60:5d:71:4d:d3: 1d:da:7f:da:77:25:f4:0b:f5:e9:cf:3b:24:91:3c:08:aa:be: 4a:e2:bb:ec:9e:30:c6:96:52:91:07:cd:9e:d8:c1:01:4e:9c: 01:93:b7:cd:97:a6:e9:78:27:13:56:4d:04:22:d3:c8:10:e7: 42:79:9b:db:f3:b4:c5:16:aa:39:c4:28:69:8c:f6:53:16:4c: 02:63:4d:61:7a:a4:bb:fc:0b:f3:f9:59:3f:7c:bc:91:a9:d8: 73:2e:38:59:24:28:2e:d1:d5:f4:8a:91:c7:4b:f1:4f:e4:e4: 9f:18:cd:a1:29:b1:a2:8c:f8:76:d5:f6:2b:60:4c:5f:bd:4c: b5:89:4d:78:e7:92:7c:49:92:33:67:07:b6:20:ae:f3:e6:09: 14:a0:d8:b4:0d:d7:fb:76:07:d5:c0:9b:a0:85:98:fa:4e:17: f2:e7:23:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUwNDI1MDEwNDQ5WhcNMjUwNTAyMDEwNDQ5WjAYMRYwFAYD VQQDEw02ODBhZGZiMi00ODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3trE/N3CaNoG+14CtJwGDlMx1I9tXfrYS4FvNLBPrV01dn650nPhStBo5XK cxNY40gnShPjGNronmzfbkTFvCdZ31dwbPkcfw3yOg4JHaEtZafcKEGf4DTSeqGI PLd1QzuVceuXSV9cgv8s64fFDkRkqgHC/wz52vHqYBcEvw0B0TtWbAlMb8kNWIf2 PCzZARdwCxWHBLnr1qnq789AfYSxCwjZuenmIZKl710u3TzdV6rdtBVpzgNo5dxQ oTgCWoexjbGXkOeb8hzu13slCwwkeOfvXrMdj6CabRjlJiY6xlKlsq6gyiwJSxBn DaaPQhQ56NIoZfdggqInT2anJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2ZxGNG pBrqrHBVLGQ5bqE2R2RgMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA064MtVLlYRkZXsv4jClNnv5PfkRbpHf+txAFG+As8MpS+cKjMzzcl RGoAxqiUiSIbO+JL+RQUUifFTQ+oolXsDtrxR7F69umLt6lvLE9h6k4fnb1sYF1x TdMd2n/adyX0C/XpzzskkTwIqr5K4rvsnjDGllKRB82e2MEBTpwBk7fNl6bpeCcT Vk0EItPIEOdCeZvb87TFFqo5xChpjPZTFkwCY01heqS7/Avz+Vk/fLyRqdhzLjhZ JCgu0dX0ipHHS/FP5OSfGM2hKbGijPh21fYrYExfvUy1iU1455J8SZIzZwe2IK7z 5gkUoNi0Ddf7dgfVwJughZj6Thfy5yO9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:28 2025 by rpki-client