$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: yyhSTqbwkPX0jUNVIu8VsTOoCxDBSYUa7FsZmjStQE0= Subject key identifier: B1:3C:C0:78:14:F3:65:06:41:4F:D8:8B:03:0A:5C:B7:8E:11:67:F6 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01AC Signing time: Fri 25 Apr 2025 02:25:44 +0000 Manifest this update: Fri 25 Apr 2025 02:25:43 +0000 Manifest next update: Fri 02 May 2025 02:25:43 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: abDYercIfh32FemR97KOkhwsG1R/FsnvyGdaZ5fFfV8=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Apr 25 02:25:43 2025 GMT Not After : May 2 02:25:43 2025 GMT Subject: CN=680af2a7-6223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1d:80:7e:8e:2e:1b:43:c7:62:5c:71:29:40: cd:14:31:9e:2f:6a:ec:99:75:5d:30:dc:16:a8:2c: 73:a4:36:cf:31:39:ba:62:51:82:ce:2b:bc:db:11: 8a:3c:6b:58:54:6f:ab:08:86:b3:47:a8:27:50:12: 8d:1e:d1:22:56:39:61:d0:d2:87:74:3e:55:22:d0: 6c:52:07:66:50:be:d7:9e:6d:a1:75:1b:dc:0f:5f: 3a:56:80:ed:12:04:45:03:fd:10:2d:13:5e:c3:d5: 3f:23:5f:5e:6c:f0:b5:3d:8b:db:8f:59:33:e8:12: dc:f2:15:9a:61:81:8b:88:0d:03:f8:14:ac:bc:43: 4a:13:31:48:6e:c5:a5:1d:e1:a5:b3:17:eb:57:05: b4:cd:47:70:7e:be:91:79:3f:68:80:1a:62:c1:3b: 19:6e:a5:5a:9c:dd:c8:25:0e:0c:d3:55:f6:ba:b4: 61:fe:d6:5b:44:ac:fa:10:77:1a:19:ca:87:20:e7: 73:b3:cb:ac:a5:ab:90:a4:e1:f5:1e:19:48:6d:bd: 5b:bb:c3:b8:44:f1:02:10:bc:9c:52:6b:63:79:f2: af:13:fa:20:a3:41:c7:a6:1d:6e:ee:a1:d6:1f:bf: ee:98:33:4f:ec:16:a8:6f:f9:05:da:58:d5:e7:ee: 8e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:3C:C0:78:14:F3:65:06:41:4F:D8:8B:03:0A:5C:B7:8E:11:67:F6 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:2c:74:06:9c:ee:34:2c:84:72:c7:02:6e:fa:bd:ca:51:1e: 38:ec:97:5f:7c:9f:3f:2f:c8:ff:ba:de:eb:f0:48:79:5a:af: 0b:5c:d4:32:53:fc:9a:6f:8e:7e:78:41:77:8f:e8:c4:4a:13: 98:26:2b:27:ee:48:38:8a:c9:33:84:34:de:22:01:d8:16:b4: c2:01:02:a0:32:0c:50:27:d3:2a:cb:2a:02:d0:58:87:2a:2d: 69:0b:70:b9:13:91:33:74:66:65:58:08:f3:dc:c1:a6:b3:0d: ff:af:54:54:e6:d9:d2:55:13:eb:1d:cc:5c:f4:cb:c6:90:cc: 4f:6b:55:8b:df:73:2b:62:2e:0c:8c:34:d4:7c:ff:25:85:7f: 68:f4:e5:34:62:6f:72:2f:a0:88:0b:5f:54:1b:27:95:0c:ec: ef:6f:44:80:b5:e0:d7:c2:f6:1b:70:fe:b9:ed:71:31:0b:9c: 37:b6:51:2e:4a:f8:28:f7:6c:48:c0:ed:98:14:10:04:14:a9: 10:16:7e:93:95:f1:88:e1:5c:0e:c2:51:5b:a4:dd:70:2c:8c: a9:b5:e6:4a:48:6e:52:19:0e:6d:d9:27:59:a6:00:96:62:c9: 20:a5:68:7d:b9:15:a0:04:b7:29:19:2a:61:ea:6a:64:7f:25: 90:1f:f5:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwNDI1MDIyNTQzWhcNMjUwNTAyMDIyNTQzWjAYMRYwFAYD VQQDEw02ODBhZjJhNy02MjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB2Afo4uG0PHYlxxKUDNFDGeL2rsmXVdMNwWqCxzpDbPMTm6YlGCziu82xGK PGtYVG+rCIazR6gnUBKNHtEiVjlh0NKHdD5VItBsUgdmUL7Xnm2hdRvcD186VoDt EgRFA/0QLRNew9U/I19ebPC1PYvbj1kz6BLc8hWaYYGLiA0D+BSsvENKEzFIbsWl HeGlsxfrVwW0zUdwfr6ReT9ogBpiwTsZbqVanN3IJQ4M01X2urRh/tZbRKz6EHca GcqHIOdzs8uspauQpOH1HhlIbb1bu8O4RPECELycUmtjefKvE/ogo0HHph1u7qHW H7/umDNP7Baob/kF2ljV5+6OgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLE8wHgU 82UGQU/YiwMKXLeOEWf2MB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7LHQGnO40LIRyxwJu+r3KUR447JdffJ8/L8j/ut7r8Eh5Wq8LXNQy U/yab45+eEF3j+jEShOYJisn7kg4iskzhDTeIgHYFrTCAQKgMgxQJ9MqyyoC0FiH Ki1pC3C5E5EzdGZlWAjz3MGmsw3/r1RU5tnSVRPrHcxc9MvGkMxPa1WL33MrYi4M jDTUfP8lhX9o9OU0Ym9yL6CIC19UGyeVDOzvb0SAteDXwvYbcP657XExC5w3tlEu Svgo92xIwO2YFBAEFKkQFn6TlfGI4VwOwlFbpN1wLIypteZKSG5SGQ5t2SdZpgCW YskgpWh9uRWgBLcpGSph6mpkfyWQH/W4 -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:48 2025 by rpki-client