$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: Iu/msnoVm82QBS2kIeKTd8q3jOZ3CqhCU0C3MCisZuM= Subject key identifier: B9:18:74:51:DA:F6:8B:5F:F0:5A:FF:14:D7:9D:B4:8E:2B:C3:5A:16 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 09CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 09C1 Signing time: Wed 30 Apr 2025 19:48:11 +0000 Manifest this update: Wed 30 Apr 2025 19:48:11 +0000 Manifest next update: Wed 07 May 2025 19:48:11 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: GdvCYjw6c86/JiGfofQj6MjfL4OpGLUtvjVeoVh0yjo=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 19:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Apr 30 19:48:11 2025 GMT Not After : May 7 19:48:11 2025 GMT Subject: CN=68127e7b-fef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:ce:e0:ea:30:ad:56:ea:29:97:fd:c1:87: 6a:fb:13:b9:48:50:4d:02:ee:1a:4b:e6:18:03:ec: b9:75:0d:f3:86:6e:e9:ce:27:e9:9d:8c:46:2e:17: 2f:53:c5:e0:b4:bd:c3:a2:36:e3:2e:00:18:6c:2a: 25:41:1d:17:78:13:1a:9f:1e:bc:c0:1b:50:03:b8: 5f:4b:35:d7:33:75:69:53:2f:4b:f8:fa:d7:48:da: 09:9d:97:4a:99:40:c3:0c:22:31:d1:c4:36:56:8e: 7d:7d:7f:74:de:d1:72:0e:e6:46:2d:b2:1e:e5:f9: 12:16:ae:6b:45:3e:c4:d4:8d:74:38:75:db:18:da: 8a:d5:fa:f9:77:c9:34:42:39:61:31:cd:8c:50:b6: f8:3d:39:89:98:b3:cd:1c:da:bf:e2:1d:38:a5:d3: ae:04:9d:76:81:d2:01:78:e1:6e:28:b3:d4:cd:65: 84:8f:40:f2:1f:79:d6:71:03:47:1d:4e:06:57:3e: 52:66:8d:15:dc:a8:52:cd:ff:18:87:73:cc:80:a5: 32:05:3e:3b:9b:26:04:f4:e4:d3:83:98:13:84:8c: ab:59:23:30:eb:3b:40:71:7d:ee:db:10:23:ed:18: 3e:e6:66:13:db:15:0a:1d:45:71:fd:a8:57:2a:7c: 22:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:18:74:51:DA:F6:8B:5F:F0:5A:FF:14:D7:9D:B4:8E:2B:C3:5A:16 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:4d:97:5e:2a:ee:0d:9e:3f:19:a7:9c:b8:4d:ce:37:96:b6: e4:d7:f2:79:e9:74:e3:ec:de:bc:74:14:5c:d3:0b:c8:25:ad: 19:c5:e9:d2:54:c8:ea:69:54:36:a3:58:0a:9f:35:15:7e:08: b3:f4:eb:d4:a1:42:84:34:16:d0:d7:9b:f2:0a:3c:f4:fa:90: 88:08:25:65:86:a8:4d:24:e7:70:3d:cc:cc:54:e9:a9:62:38: e0:3a:f3:00:a5:c6:52:3c:2e:6f:e2:e9:0d:b0:b5:cf:84:ad: 4e:8a:ba:da:2b:d9:ea:ae:3b:c6:43:9f:f9:45:07:c1:be:df: bf:82:d9:ab:21:69:c2:06:a3:d2:fd:48:1b:ff:6e:70:53:22: 11:d2:1a:c8:af:91:ae:b7:0a:18:13:63:12:d4:5f:1f:d0:53: ef:1c:eb:d0:0b:fe:d4:08:bf:84:63:e2:71:e8:3b:40:61:d9: b8:26:8d:96:36:5a:4c:b1:c3:fd:db:15:bc:61:8c:f7:98:f4: 8a:e1:ed:e0:24:86:4c:1c:34:c1:48:04:63:0f:4f:56:e0:a2: 81:f6:fc:98:b0:49:ab:4f:8d:30:5e:9d:6c:ed:21:dc:88:9a: 67:5b:d6:a3:09:28:92:c7:54:4b:8d:8e:bf:13:76:59:ca:d2: 84:b0:f5:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUwNDMwMTk0ODExWhcNMjUwNTA3MTk0ODExWjAYMRYwFAYD VQQDEw02ODEyN2U3Yi1mZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvH/O4OowrVbqKZf9wYdq+xO5SFBNAu4aS+YYA+y5dQ3zhm7pzifpnYxGLhcv U8XgtL3DojbjLgAYbColQR0XeBManx68wBtQA7hfSzXXM3VpUy9L+PrXSNoJnZdK mUDDDCIx0cQ2Vo59fX903tFyDuZGLbIe5fkSFq5rRT7E1I10OHXbGNqK1fr5d8k0 QjlhMc2MULb4PTmJmLPNHNq/4h04pdOuBJ12gdIBeOFuKLPUzWWEj0DyH3nWcQNH HU4GVz5SZo0V3KhSzf8Yh3PMgKUyBT47myYE9OTTg5gThIyrWSMw6ztAcX3u2xAj 7Rg+5mYT2xUKHUVx/ahXKnwiNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkYdFHa 9otf8Fr/FNedtI4rw1oWMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHTZdeKu4Nnj8Zp5y4Tc43lrbk1/J56XTj7N68dBRc0wvIJa0ZxenS VMjqaVQ2o1gKnzUVfgiz9OvUoUKENBbQ15vyCjz0+pCICCVlhqhNJOdwPczMVOmp YjjgOvMApcZSPC5v4ukNsLXPhK1OirraK9nqrjvGQ5/5RQfBvt+/gtmrIWnCBqPS /Ugb/25wUyIR0hrIr5GutwoYE2MS1F8f0FPvHOvQC/7UCL+EY+Jx6DtAYdm4Jo2W NlpMscP92xW8YYz3mPSK4e3gJIZMHDTBSARjD09W4KKB9vyYsEmrT40wXp1s7SHc iJpnW9ajCSiSx1RLjY6/E3ZZytKEsPWb -----END CERTIFICATE-----Generated at Fri May 2 17:19:19 2025 by rpki-client