$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: I+Svp1oqE/+xq9fu23MvDokTKdqNB1rv3P6zpcoVke0= Subject key identifier: 24:B5:7A:98:F8:36:B3:00:03:F6:FE:C0:90:51:BC:F1:48:C2:2B:7B Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 03F1 Signing time: Fri 25 Apr 2025 00:21:47 +0000 Manifest this update: Fri 25 Apr 2025 00:21:47 +0000 Manifest next update: Fri 02 May 2025 00:21:47 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: crP/KSaJlBxqzyS+b15ONVHwkmN47rz0Gxq3W/Awarw=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: JDhvBxRe3WYJ1iKQKnxqCUD2z2C21JJ9nqsXsWXBpYM=) 3: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: QNRRPIEXpBXbzOjvogyb/5EofzlDIH5pOqmalYkDTHw=) 4: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0=) 5: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: QSRbYccf6zSEHa0HsQVgKCVz5nS1O8L5U8Elot2Xz40=) 6: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478=) 7: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU=) 8: 5F14A15442D111EF8424E65BC4F9AE02.roa (hash: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs=) 9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7KI+xGonwsZRICria/4CZwlDNlRIuXU/wVts22Crf9U=) 10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: fPCfFsxMUqOAvLJmkWjc+RPsiCNLjQ233XGNCqOiY/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Apr 25 00:21:47 2025 GMT Not After : May 2 00:21:47 2025 GMT Subject: CN=680ad59b-161c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a3:0d:50:2b:19:63:4d:e6:6a:9c:9a:34:c5: 5f:bd:e7:27:69:00:c5:ae:3b:f6:50:a6:23:5a:71: a2:25:77:2f:12:85:de:4a:48:4b:42:67:fd:97:e2: 46:23:44:4d:31:0d:69:fa:41:c6:35:04:58:ce:4a: 52:fe:c1:d9:71:c2:8f:e0:94:ce:08:c0:17:d9:d7: 86:1b:2d:c9:c3:8c:a9:d0:82:aa:9c:ea:eb:11:d1: 66:15:18:c1:a3:44:3f:a3:f3:75:c1:e0:c7:12:cf: b0:75:01:22:d3:65:23:6f:cf:61:19:fc:b0:94:54: 11:ec:87:38:db:7e:ce:cf:46:b9:8e:53:30:48:4d: e5:a9:ea:7a:40:ba:76:74:12:3e:4d:0d:53:38:01: 25:f6:94:9f:ae:f9:b3:f6:a7:17:c0:b2:bb:0b:38: e6:ca:2a:ef:d6:08:8b:27:42:b3:bc:44:bc:40:9d: eb:ac:d7:e5:95:69:b3:0f:45:59:34:7d:81:3b:36: e1:b4:7e:35:a6:98:03:96:5e:78:ab:29:59:e4:80: 4a:1b:be:83:49:7d:49:24:26:73:8a:cf:49:de:ba: fb:11:69:cc:c5:58:f9:a6:3c:91:4a:67:5d:b6:7c: b0:da:cf:e3:52:c2:0a:82:a8:20:13:dd:b5:fa:5e: 2a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B5:7A:98:F8:36:B3:00:03:F6:FE:C0:90:51:BC:F1:48:C2:2B:7B X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:42:c0:99:2b:1e:e1:e1:6c:7c:39:e6:25:7a:1f:a1:f4:48: 77:17:0f:f0:66:fd:a3:3c:a1:06:e1:3b:de:f6:3e:4f:c7:f0: b6:fa:0f:96:a7:db:d1:8a:09:c7:34:33:bd:1d:d8:6b:d2:79: c1:ec:4e:18:9e:a4:5c:08:d2:8f:66:01:34:1b:ee:3e:8d:f1: ea:e9:9c:dc:1a:4f:48:d6:01:db:18:09:52:82:09:2f:c0:78: 97:4c:00:00:1a:76:87:72:f4:67:76:6a:95:85:02:b4:12:0d: c9:0a:41:fa:d7:fd:80:3d:73:54:c7:f2:74:1a:4f:b9:4c:1e: 51:58:e4:0f:8e:ab:26:e5:10:d7:74:38:0c:2d:c0:b6:68:02: d9:1b:45:f0:68:8e:8a:96:c3:13:6e:20:39:ba:82:96:2b:77: fd:8c:47:1d:6a:e5:ce:ad:3c:65:ed:d9:3a:22:5e:d4:35:93: 7d:74:3a:95:fd:f0:44:7a:1b:2c:7a:c5:11:5c:ea:ff:3c:a0: d1:c5:cd:8f:0e:98:b0:43:c3:18:98:a7:90:08:e9:85:ed:88: 3f:18:1d:f2:50:e5:eb:d9:6b:dc:3e:fd:02:9b:9f:6d:81:97: 70:bb:4b:46:ab:03:71:da:5b:45:c2:3d:06:7d:c8:c6:f1:34: 2b:ad:a0:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwNDI1MDAyMTQ3WhcNMjUwNTAyMDAyMTQ3WjAYMRYwFAYD VQQDEw02ODBhZDU5Yi0xNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqMNUCsZY03mapyaNMVfvecnaQDFrjv2UKYjWnGiJXcvEoXeSkhLQmf9l+JG I0RNMQ1p+kHGNQRYzkpS/sHZccKP4JTOCMAX2deGGy3Jw4yp0IKqnOrrEdFmFRjB o0Q/o/N1weDHEs+wdQEi02Ujb89hGfywlFQR7Ic4237Oz0a5jlMwSE3lqep6QLp2 dBI+TQ1TOAEl9pSfrvmz9qcXwLK7Czjmyirv1giLJ0KzvES8QJ3rrNfllWmzD0VZ NH2BOzbhtH41ppgDll54qylZ5IBKG76DSX1JJCZzis9J3rr7EWnMxVj5pjyRSmdd tnyw2s/jUsIKgqggE921+l4qwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS1epj4 NrMAA/b+wJBRvPFIwit7MB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPQsCZKx7h4Wx8OeYleh+h9Eh3Fw/wZv2jPKEG4Tve9j5Px/C2+g+W p9vRignHNDO9Hdhr0nnB7E4YnqRcCNKPZgE0G+4+jfHq6ZzcGk9I1gHbGAlSggkv wHiXTAAAGnaHcvRndmqVhQK0Eg3JCkH61/2APXNUx/J0Gk+5TB5RWOQPjqsm5RDX dDgMLcC2aALZG0XwaI6KlsMTbiA5uoKWK3f9jEcdauXOrTxl7dk6Il7UNZN9dDqV /fBEehssesURXOr/PKDRxc2PDpiwQ8MYmKeQCOmF7Yg/GB3yUOXr2WvcPv0Cm59t gZdwu0tGqwNx2ltFwj0GfcjG8TQrraA7 -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:51 2025 by rpki-client