$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: BXxqMhPyadpH5SM7QsREeN4ygW3ky0lhgRJBJYdXH9Q= Subject key identifier: E5:9A:47:62:E4:BF:E7:08:9E:3B:FC:0A:8F:A4:BA:64:A5:9E:D2:6D Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 06 Signing time: Fri 25 Apr 2025 07:10:36 +0000 Manifest this update: Fri 25 Apr 2025 07:10:35 +0000 Manifest next update: Fri 02 May 2025 07:10:35 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: ijfs2SsmN5bVz2NFf4HMm+60equjY0bB+mEXlPYJuCg=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Apr 25 07:10:35 2025 GMT Not After : May 2 07:10:35 2025 GMT Subject: CN=680b356b-758a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cb:4c:44:4c:53:93:2e:58:7e:ff:fe:df:f0: f1:31:18:2f:8d:fd:bb:18:09:9d:54:ba:d7:73:73: 56:19:35:13:74:e0:07:cd:09:4d:a0:c3:5e:48:10: e2:8f:86:d5:8c:6d:c0:b7:0d:97:b8:da:40:99:fe: 04:2b:46:61:96:14:d8:52:0c:30:5c:37:fa:52:ab: fb:39:81:c4:05:12:2e:94:45:be:b9:63:8e:29:3c: dc:88:af:07:91:da:cd:e3:89:5c:83:e8:85:44:39: 07:67:de:9a:f2:dd:ed:88:85:68:92:2b:52:23:0f: 76:7e:5b:1f:62:3b:0b:0f:2d:f7:c3:9b:32:42:95: 5c:13:0e:cb:c9:5d:87:03:bc:89:f2:3e:1d:88:e4: c4:5b:6f:1d:f0:a9:e9:f2:fe:4c:b9:89:1a:d8:a2: d5:ad:23:f2:5e:5b:0d:eb:a0:f5:25:0e:b5:22:40: dd:e9:52:fd:ca:36:17:5f:01:ee:32:8d:eb:b0:cd: 6a:cc:2e:ed:f2:b9:03:de:24:8d:62:cb:e8:b9:b6: de:dd:f9:b5:27:0e:8d:96:7c:9e:89:ce:dd:bd:cc: 57:9f:5b:b6:3c:19:69:73:80:eb:9e:a6:57:b1:86: f9:6b:5d:6b:f9:9d:f0:a6:be:d0:0d:74:65:23:2d: ee:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9A:47:62:E4:BF:E7:08:9E:3B:FC:0A:8F:A4:BA:64:A5:9E:D2:6D X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:f7:a6:4e:3c:2c:7e:4d:62:b0:f5:56:da:74:8d:b4:d3:84: f1:10:5a:5a:fb:84:59:6a:8a:4b:af:04:d0:61:12:df:eb:af: 60:06:2f:62:f0:bf:59:7e:8f:26:bb:ec:c5:de:02:99:18:ca: 95:2c:17:a4:81:43:58:5a:84:bf:c8:19:4e:d0:77:3f:75:d5: ea:12:98:f0:bd:31:c0:a8:2f:ed:50:9a:70:b5:6d:32:05:56: 85:c1:0e:33:11:ff:25:72:7b:4d:3f:69:99:ca:28:91:a0:7c: 11:38:64:7c:3e:48:60:44:59:51:8f:8f:fd:18:d4:1d:05:60: 63:03:71:24:aa:a9:43:6c:d3:f1:b0:f0:62:e5:ff:bc:aa:95: 76:74:7a:1f:78:ee:79:da:2c:4a:d7:82:0e:00:3e:36:45:9c: 49:d8:33:ea:0f:5a:7b:8e:78:1e:aa:06:b4:dd:25:bb:19:ca: f4:89:78:bc:b7:ca:47:7d:c2:c5:ef:eb:03:81:8d:14:61:1a: 73:b1:7f:8c:1f:50:ec:92:2a:8a:05:02:ef:70:bf:7f:37:d0: b5:1d:72:b0:ca:5c:73:2a:3f:52:cb:b1:b4:30:42:36:3a:b8: 01:78:7a:71:fb:a6:91:06:b0:65:5e:be:5f:9b:f4:74:7b:34: d7:da:fc:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA0MjUwNzEwMzVaFw0yNTA1MDIwNzEwMzVaMBgxFjAUBgNV BAMTDTY4MGIzNTZiLTc1OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6y0xETFOTLlh+//7f8PExGC+N/bsYCZ1Uutdzc1YZNRN04AfNCU2gw15IEOKP htWMbcC3DZe42kCZ/gQrRmGWFNhSDDBcN/pSq/s5gcQFEi6URb65Y44pPNyIrweR 2s3jiVyD6IVEOQdn3pry3e2IhWiSK1IjD3Z+Wx9iOwsPLffDmzJClVwTDsvJXYcD vInyPh2I5MRbbx3wqeny/ky5iRrYotWtI/JeWw3roPUlDrUiQN3pUv3KNhdfAe4y jeuwzWrMLu3yuQPeJI1iy+i5tt7d+bUnDo2WfJ6Jzt29zFefW7Y8GWlzgOueplex hvlrXWv5nfCmvtANdGUjLe4fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5ZpHYuS/ 5wieO/wKj6S6ZKWe0m0wHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM/3pk48LH5NYrD1Vtp0jbTThPEQWlr7hFlqikuvBNBhEt/rr2AGL2Lw v1l+jya77MXeApkYypUsF6SBQ1hahL/IGU7Qdz911eoSmPC9McCoL+1QmnC1bTIF VoXBDjMR/yVye00/aZnKKJGgfBE4ZHw+SGBEWVGPj/0Y1B0FYGMDcSSqqUNs0/Gw 8GLl/7yqlXZ0eh947nnaLErXgg4APjZFnEnYM+oPWnuOeB6qBrTdJbsZyvSJeLy3 ykd9wsXv6wOBjRRhGnOxf4wfUOySKooFAu9wv3830LUdcrDKXHMqP1LLsbQwQjY6 uAF4enH7ppEGsGVevl+b9HR7NNfa/AA= -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:05 2025 by rpki-client