$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft File: xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft (raw, json) Hash identifier: WF0NvmzBzZOGXpTgzLo1w+EpjmL4jWWEfbXgrJD/Z8Q= Subject key identifier: 2D:B1:F0:CF:06:3C:31:72:A6:2E:21:D9:27:EB:63:78:A0:C0:CE:FE Authority key identifier: C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 Certificate issuer: /CN=A91D7E61/serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Certificate serial: 0475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft Manifest number: 0471 Signing time: Thu 24 Apr 2025 23:52:15 +0000 Manifest this update: Thu 24 Apr 2025 23:52:15 +0000 Manifest next update: Thu 01 May 2025 23:52:15 +0000 Files and hashes: 1: xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl (hash: 4sSJ41e6raloSke7SdFPWPigHUNAQB2/QQhdpdZsqN4=) 2: 073DC606407F11EC87F77579C4F9AE02.roa (hash: KhOuOM0Hy/s5cLutXXqmoIGycTqYNiIVdRfd5kJumPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7E61, serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Validity Not Before: Apr 24 23:52:15 2025 GMT Not After : May 1 23:52:15 2025 GMT Subject: CN=680aceaf-f792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:95:be:de:4d:89:43:bb:56:99:e1:b8:c1:be: 72:c3:25:5f:fb:70:35:0a:ea:e6:26:58:7b:ce:71: 95:59:f4:5c:d0:3e:72:62:d7:2b:69:b7:b1:a1:76: 8c:0a:a4:c1:ae:50:20:e2:d8:4c:0b:0e:ae:e2:d0: 01:3d:48:70:98:ae:05:6c:3f:80:15:c7:80:01:05: 40:d4:bb:ba:7a:82:3b:81:28:ac:fb:d7:f8:cc:38: 7a:08:12:8c:69:66:cf:6a:bf:c4:34:12:ec:b4:74: 8c:92:f4:2b:f0:38:e8:ba:b6:6e:8c:a3:e0:bf:9c: 3e:5e:99:90:9b:88:91:3d:74:09:b7:1c:f1:20:ca: a9:71:02:84:35:f1:6f:34:e8:0f:84:4d:28:85:c3: 2b:b3:ff:fa:95:ce:bb:95:97:65:88:47:90:5c:3b: 7c:0f:b8:11:2a:50:c6:b0:de:3f:89:40:57:b9:c1: a8:9c:18:c0:47:74:e5:47:9f:c1:c1:5a:70:46:c6: 23:45:b7:fc:93:0a:22:8a:d3:e3:71:b2:5d:46:55: 37:0b:c8:be:02:c0:ea:18:5e:7e:3e:02:8b:32:e6: 11:79:06:03:9f:7b:ec:11:95:5c:99:6d:6a:90:b8: 00:30:fa:d9:ff:cf:ac:86:96:00:72:0d:8d:09:4f: 52:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B1:F0:CF:06:3C:31:72:A6:2E:21:D9:27:EB:63:78:A0:C0:CE:FE X509v3 Authority Key Identifier: keyid:C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:26:b9:67:61:ff:e6:4e:7a:18:96:31:ac:c0:d5:77:02:f7: a9:81:dc:1b:22:b4:56:4b:23:f9:89:e6:6c:34:a7:10:f3:fb: 67:2f:03:99:28:3e:ab:e4:60:ff:bd:b3:06:2e:b0:7e:22:01: eb:b7:4c:d6:61:c2:4e:f1:fa:82:96:78:ed:7b:84:35:f7:4d: 3e:e0:9d:84:67:a6:d7:49:4e:f8:86:53:97:09:fa:fd:11:f5: 5f:27:f0:86:49:a0:e0:ef:9d:be:50:da:eb:f1:66:26:05:fd: 72:6a:4d:39:9e:3d:78:f5:90:8d:e9:35:29:18:e2:09:20:3d: 60:ef:85:74:b6:ee:15:99:18:df:cb:e8:62:04:b0:62:b9:f2: 1e:9a:27:59:90:2f:31:d1:cc:fd:06:00:69:b0:a9:00:73:8a: 58:c5:8e:9d:03:6d:28:b5:b6:8d:b1:c6:df:d0:22:3e:0a:98: 85:70:9f:cb:48:8e:ef:8c:c1:f0:66:b2:6a:09:29:58:74:02: 1b:9a:c9:9e:50:76:d4:43:70:b1:2e:72:4c:98:80:3a:e9:8f: fe:2a:9a:82:d5:9a:27:6f:89:39:97:18:75:50:3c:07:cf:4d: 2c:b0:44:27:93:91:ed:a5:29:1d:17:26:7c:53:c8:54:81:9d: 7b:26:d1:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdFNjExMTAvBgNVBAUTKEM2NDE4OUY1OENGNzJDMUY3M0JFQjI0MDdBNTIyN0I2 QTJDRTk2NjEwHhcNMjUwNDI0MjM1MjE1WhcNMjUwNTAxMjM1MjE1WjAYMRYwFAYD VQQDEw02ODBhY2VhZi1mNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5W+3k2JQ7tWmeG4wb5ywyVf+3A1CurmJlh7znGVWfRc0D5yYtcrabexoXaM CqTBrlAg4thMCw6u4tABPUhwmK4FbD+AFceAAQVA1Lu6eoI7gSis+9f4zDh6CBKM aWbPar/ENBLstHSMkvQr8DjourZujKPgv5w+XpmQm4iRPXQJtxzxIMqpcQKENfFv NOgPhE0ohcMrs//6lc67lZdliEeQXDt8D7gRKlDGsN4/iUBXucGonBjAR3TlR5/B wVpwRsYjRbf8kwoiitPjcbJdRlU3C8i+AsDqGF5+PgKLMuYReQYDn3vsEZVcmW1q kLgAMPrZ/8+shpYAcg2NCU9SGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2x8M8G PDFypi4h2SfrY3igwM7+MB8GA1UdIwQYMBaAFMZBifWM9ywfc76yQHpSJ7aizpZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0U2MS9GNTk0REM4MDQw N0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xCOXp2ckpBZWxJbnRxTE9s bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrR0o5WXozTEI5enZySkFlbEludHFMT2xtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0U2MS9GNTk0REM4MDQwN0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xC OXp2ckpBZWxJbnRxTE9sbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwJrlnYf/mTnoYljGswNV3AvepgdwbIrRWSyP5ieZsNKcQ8/tnLwOZ KD6r5GD/vbMGLrB+IgHrt0zWYcJO8fqClnjte4Q1900+4J2EZ6bXSU74hlOXCfr9 EfVfJ/CGSaDg752+UNrr8WYmBf1yak05nj149ZCN6TUpGOIJID1g74V0tu4VmRjf y+hiBLBiufIemidZkC8x0cz9BgBpsKkAc4pYxY6dA20otbaNscbf0CI+CpiFcJ/L SI7vjMHwZrJqCSlYdAIbmsmeUHbUQ3CxLnJMmIA66Y/+KpqC1Zonb4k5lxh1UDwH z00ssEQnk5HtpSkdFyZ8U8hUgZ17JtFL -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:10 2025 by rpki-client