$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: zD4+E5TmtzUNy0GxuFG5k4cjMP96qdr8zjOry9F1RKo= Subject key identifier: 24:A0:AC:B0:17:B0:0A:72:D9:B5:73:88:48:F7:0E:6F:33:AB:18:B1 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 0105 Signing time: Thu 01 May 2025 04:02:58 +0000 Manifest this update: Thu 01 May 2025 04:02:57 +0000 Manifest next update: Thu 08 May 2025 04:02:57 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: 36RUe8Y578KOUefLsy+O3vNBeP3ULyw6HHwtTy+JDcU=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 04:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: May 1 04:02:57 2025 GMT Not After : May 8 04:02:57 2025 GMT Subject: CN=6812f271-dc78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:83:b5:fa:42:7c:f7:8d:db:f9:ed:db:97:9c: 44:9c:07:df:df:9d:5e:69:97:b9:fa:0d:f3:c9:55: 54:e8:4b:92:b2:c2:a7:81:97:6b:ff:77:62:3a:24: 4d:bc:9c:11:01:b4:69:85:24:01:27:05:c1:e9:58: 4b:37:ba:c6:4c:53:77:53:0d:76:d7:b4:67:31:42: 88:0b:49:ab:f7:eb:d9:ed:d3:52:87:43:35:90:8c: 5d:49:6c:71:9e:04:7d:93:dd:aa:8d:14:ed:3f:c4: ad:2a:0b:00:94:aa:e6:52:27:94:a6:d7:a5:94:b8: 40:0d:dd:53:cd:78:f1:93:d0:15:f5:5d:81:08:5c: df:b0:f0:d9:3c:42:d9:81:83:2d:87:75:84:b3:0d: b3:19:1c:26:da:72:9a:97:1e:43:6f:c7:1a:ee:fe: d3:d2:42:69:17:4b:6a:47:48:12:54:8b:a0:30:41: 7b:74:c4:d9:f9:9a:fb:a1:f5:2d:d7:e6:3c:63:31: 47:e2:9e:96:09:34:8d:27:bd:64:b5:97:0a:c8:d0: e1:ef:ba:be:1e:d3:d2:b3:ef:d9:8f:aa:8f:b6:33: 46:f6:e5:6c:33:0b:c2:48:ab:96:39:b8:74:3d:1c: 55:30:5d:93:77:f5:af:48:3d:1f:52:a0:4e:d8:ea: 74:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A0:AC:B0:17:B0:0A:72:D9:B5:73:88:48:F7:0E:6F:33:AB:18:B1 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:06:08:c3:d2:f8:39:02:7d:69:de:b2:f0:cc:b6:0d:cf:0e: 46:9f:f6:bd:b1:79:24:7f:a4:12:1e:fc:82:f7:9b:ba:c1:70: d9:10:37:06:7b:17:bb:20:88:91:e3:c5:d8:cc:49:51:6e:82: 14:a1:9c:5f:39:7b:2c:8d:6e:a2:ca:8c:46:5f:0a:c6:54:fa: a7:dd:c5:dd:6b:91:65:e1:6e:2f:04:2d:f7:be:54:b9:84:0c: ef:47:50:50:7b:a4:e4:89:23:f6:70:24:1f:39:af:78:2b:33: 21:8b:4f:0d:06:a9:78:a8:6e:d4:56:fb:f8:e9:15:23:5f:72: b8:51:f4:4d:d3:62:51:2f:a1:b6:94:c8:56:1b:a2:ea:85:1b: 1c:7d:55:07:30:9e:2a:ee:d5:84:40:74:6e:c8:b6:cd:ec:cb: 69:58:9d:a1:c5:b8:da:79:5b:bd:b3:93:93:25:0c:d2:26:5b: 34:e0:e2:81:c5:24:8b:ce:0a:51:40:39:a9:99:21:75:04:a8: f1:7e:9b:cf:61:ac:b5:25:b2:b4:23:f8:f7:51:67:03:02:b0: 8e:4f:7b:6c:fb:6a:77:0a:03:6b:b6:2c:c6:fb:f8:08:75:b3: 86:f4:51:c0:bf:90:00:2f:ed:c2:6e:d5:20:ac:09:d4:fe:99: 28:2a:56:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUwNTAxMDQwMjU3WhcNMjUwNTA4MDQwMjU3WjAYMRYwFAYD VQQDEw02ODEyZjI3MS1kYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64O1+kJ8943b+e3bl5xEnAff351eaZe5+g3zyVVU6EuSssKngZdr/3diOiRN vJwRAbRphSQBJwXB6VhLN7rGTFN3Uw1217RnMUKIC0mr9+vZ7dNSh0M1kIxdSWxx ngR9k92qjRTtP8StKgsAlKrmUieUptellLhADd1TzXjxk9AV9V2BCFzfsPDZPELZ gYMth3WEsw2zGRwm2nKalx5Db8ca7v7T0kJpF0tqR0gSVIugMEF7dMTZ+Zr7ofUt 1+Y8YzFH4p6WCTSNJ71ktZcKyNDh77q+HtPSs+/Zj6qPtjNG9uVsMwvCSKuWObh0 PRxVMF2Td/WvSD0fUqBO2Op0twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSgrLAX sApy2bVziEj3Dm8zqxixMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIBgjD0vg5An1p3rLwzLYNzw5Gn/a9sXkkf6QSHvyC95u6wXDZEDcG exe7IIiR48XYzElRboIUoZxfOXssjW6iyoxGXwrGVPqn3cXda5Fl4W4vBC33vlS5 hAzvR1BQe6TkiSP2cCQfOa94KzMhi08NBql4qG7UVvv46RUjX3K4UfRN02JRL6G2 lMhWG6LqhRscfVUHMJ4q7tWEQHRuyLbN7MtpWJ2hxbjaeVu9s5OTJQzSJls04OKB xSSLzgpRQDmpmSF1BKjxfpvPYay1JbK0I/j3UWcDArCOT3ts+2p3CgNrtizG+/gI dbOG9FHAv5AAL+3CbtUgrAnU/pkoKlbb -----END CERTIFICATE-----Generated at Fri May 2 21:37:29 2025 by rpki-client