$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: nB86/ySLb5lAJGoQXeDxJgrlTUprv2laLmhhPGJ8nOs= Subject key identifier: 57:70:2F:84:F2:C6:2A:67:EB:67:5E:D2:CD:CB:E7:22:24:81:7E:64 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 86 Signing time: Fri 25 Apr 2025 05:34:53 +0000 Manifest this update: Fri 25 Apr 2025 05:34:52 +0000 Manifest next update: Fri 02 May 2025 05:34:52 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: vbx+nzzFR8/86ytuuKPRpilgQ3hjbDUY/JIjikkWN0c=) 2: AA5F20585B9A11EFBB8CB141C4F9AE02.roa (hash: xwJyyBO1pg9qb2VE0/6cn7we8wuOMnw/nqF3R5gu+VU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Apr 25 05:34:52 2025 GMT Not After : May 2 05:34:52 2025 GMT Subject: CN=680b1efc-6240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:30:94:40:d8:b5:51:03:70:63:5d:9b:c8:bb: b7:f9:ab:f4:fc:2f:99:7c:21:a1:f7:0b:68:16:72: 6b:e8:18:dc:33:a3:85:f1:c2:96:3b:74:d0:8e:8c: d6:fc:bb:ba:c2:3a:89:1d:d6:b6:57:bd:a2:29:d6: a6:e3:d7:ba:7c:7f:84:b1:77:97:c0:9d:17:12:47: 4f:9f:a6:b2:50:85:f6:3b:fe:62:bd:7d:37:3a:c2: a7:62:d5:f5:d4:cc:6c:75:80:b1:98:b5:f0:89:bd: 06:63:22:5e:25:bb:bd:c2:f6:26:19:51:c3:3e:3c: 2b:70:da:ea:2c:8c:87:c1:67:e5:87:4c:26:f8:69: 59:d9:07:0a:4d:b0:6d:37:c3:69:96:66:86:86:a1: fa:92:af:b0:cd:20:76:0c:93:a8:d9:01:51:f7:20: 34:f2:60:22:49:41:87:b2:b3:1e:b7:75:a1:6a:0b: 85:b4:b4:e7:10:e8:f0:4d:c7:52:47:cd:d9:04:0a: 03:b2:8c:6a:66:03:90:10:8d:37:e3:e5:97:24:55: 30:ad:a9:ce:e3:2e:0b:ca:03:d9:8f:76:ee:67:65: c2:f6:56:92:f6:f1:82:08:05:83:83:73:3e:d2:47: dd:fb:72:79:af:80:5c:28:2c:b9:f2:09:cc:d6:dd: ec:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:70:2F:84:F2:C6:2A:67:EB:67:5E:D2:CD:CB:E7:22:24:81:7E:64 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b1:d1:d6:18:17:21:4e:e0:ce:e0:64:3a:a1:84:57:05:c1: 10:88:26:40:5f:6b:e5:e0:77:3a:bd:2f:27:0a:b4:52:a6:06: 3b:45:20:18:ba:46:8e:67:98:d0:d5:4f:7b:83:27:0c:71:4f: a4:39:01:91:0a:24:96:30:d5:74:74:0f:23:ad:27:25:da:27: b1:4a:40:ab:d2:fa:48:10:93:9a:6e:71:2e:1d:c1:16:b6:6d: 99:12:78:83:bb:26:55:8f:44:c5:94:df:ef:a3:d9:07:fc:b4: 8f:58:ba:b3:0b:75:f9:93:37:44:e1:e8:31:5e:43:4b:54:e0: 2b:42:9d:e6:59:3b:32:0b:60:7e:0d:3e:d0:5b:dd:4c:f3:65: 24:7f:85:ef:a8:69:a2:2b:dc:38:c7:f3:88:30:e6:22:ca:9a: 56:87:3f:e5:78:c1:c4:59:bb:c9:d2:ba:0b:da:2a:56:d8:f8: 14:36:20:99:07:8c:13:30:8d:2c:f5:b4:36:6c:45:f3:67:a4: 89:d9:c8:32:dd:9d:92:01:ba:82:6f:35:92:0f:4f:de:77:83: 4a:94:f9:25:e8:38:a5:3f:af:9c:53:f9:6e:2e:b4:6c:c2:c2: cb:b2:1f:ff:da:80:67:07:b8:00:20:b9:47:27:11:a0:a1:f7: 61:be:f8:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwNDI1MDUzNDUyWhcNMjUwNTAyMDUzNDUyWjAYMRYwFAYD VQQDEw02ODBiMWVmYy02MjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljCUQNi1UQNwY12byLu3+av0/C+ZfCGh9wtoFnJr6BjcM6OF8cKWO3TQjozW /Lu6wjqJHda2V72iKdam49e6fH+EsXeXwJ0XEkdPn6ayUIX2O/5ivX03OsKnYtX1 1MxsdYCxmLXwib0GYyJeJbu9wvYmGVHDPjwrcNrqLIyHwWflh0wm+GlZ2QcKTbBt N8NplmaGhqH6kq+wzSB2DJOo2QFR9yA08mAiSUGHsrMet3WhaguFtLTnEOjwTcdS R83ZBAoDsoxqZgOQEI034+WXJFUwranO4y4LygPZj3buZ2XC9laS9vGCCAWDg3M+ 0kfd+3J5r4BcKCy58gnM1t3sGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdwL4Ty xipn62de0s3L5yIkgX5kMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClsdHWGBchTuDO4GQ6oYRXBcEQiCZAX2vl4Hc6vS8nCrRSpgY7RSAY ukaOZ5jQ1U97gycMcU+kOQGRCiSWMNV0dA8jrScl2iexSkCr0vpIEJOabnEuHcEW tm2ZEniDuyZVj0TFlN/vo9kH/LSPWLqzC3X5kzdE4egxXkNLVOArQp3mWTsyC2B+ DT7QW91M82Ukf4XvqGmiK9w4x/OIMOYiyppWhz/leMHEWbvJ0roL2ipW2PgUNiCZ B4wTMI0s9bQ2bEXzZ6SJ2cgy3Z2SAbqCbzWSD0/ed4NKlPkl6DilP6+cU/luLrRs wsLLsh//2oBnB7gAILlHJxGgofdhvvjS -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:23 2025 by rpki-client