$ rpki-client -vvf rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft File: xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft (raw, json) Hash identifier: pNEqE/zLEQQpNcXYg095zcjBp5bT8S4AhG2TjfXI/Jc= Subject key identifier: 00:94:BE:82:F9:E8:F5:11:DE:5B:4C:0E:E5:50:74:7E:E4:A1:F5:D0 Authority key identifier: C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF Certificate issuer: /CN=A91E37D1/serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft Manifest number: 0178 Signing time: Fri 25 Apr 2025 02:53:19 +0000 Manifest this update: Fri 25 Apr 2025 02:53:18 +0000 Manifest next update: Fri 02 May 2025 02:53:18 +0000 Files and hashes: 1: xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl (hash: K5iEeoLIRaJ6JcnRNkXZgdKybtcZUyb8tunXv2yXJRI=) 2: 59A00A402C7111EFA821586AC4F9AE02.roa (hash: 0JcJhlyjlF7wNse9vwSRpqDIz9jgkXs09QG/XtA+FYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E37D1, serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Validity Not Before: Apr 25 02:53:18 2025 GMT Not After : May 2 02:53:18 2025 GMT Subject: CN=680af91e-ac67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4f:bb:6a:e0:48:ec:85:7e:07:54:d5:c0:67: a4:ac:b5:86:42:68:0b:52:bc:66:1a:60:a7:0b:31: 16:88:d6:0d:d1:4b:a4:94:80:2d:83:f1:4e:e2:6e: 0a:da:37:75:b2:3b:4b:39:b5:87:f7:ae:e7:90:c4: 96:a5:76:af:b8:99:66:5b:a4:08:c3:56:65:b1:b0: e6:f4:d5:5a:2a:3c:cf:44:eb:c7:f5:1d:ef:b3:06: 3d:03:cb:14:61:62:99:49:bf:a2:a4:0a:74:7b:0e: 47:9d:3c:7c:ea:09:fc:eb:ff:d3:f7:34:fa:c0:59: 26:2b:29:07:96:d1:0f:6e:7b:e6:46:8b:05:d1:34: c3:43:ff:1c:1a:4c:e0:00:1d:4e:01:62:55:30:80: 44:57:1a:28:5c:7f:47:75:27:52:71:0d:e6:2a:f9: 42:3a:39:05:ff:36:25:f5:c4:25:6e:2f:d8:62:52: f1:a1:36:58:37:e8:ab:8e:fe:c1:ab:ca:9f:97:9c: 2c:0f:3f:00:1b:9a:60:31:5e:d5:d6:5e:20:42:fd: 66:ac:8f:79:18:10:48:82:7c:fa:38:de:8c:1a:86: ac:70:90:61:b4:4b:f4:2c:11:de:e6:80:bb:a6:c3: c7:fc:95:c2:96:f1:9b:c1:5d:39:89:11:e1:9f:46: ef:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:94:BE:82:F9:E8:F5:11:DE:5B:4C:0E:E5:50:74:7E:E4:A1:F5:D0 X509v3 Authority Key Identifier: keyid:C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:41:44:b6:07:7b:c0:60:ab:c3:ed:f5:40:37:e6:12:04:20: 86:13:3a:c2:9e:e0:bd:2f:a8:fb:ba:30:5b:85:f8:6b:55:6d: d9:f9:02:5f:3a:38:28:a1:6a:ce:9a:04:3d:48:be:d3:e6:9e: 04:0e:4a:8a:f8:73:e2:06:c8:3a:bc:37:79:f8:29:19:1c:c7: c6:4c:68:8b:66:c1:39:f3:ba:40:ce:e7:78:59:09:db:a0:4e: 67:9f:d2:00:0e:ac:83:e5:79:4f:7c:d1:35:a8:67:bf:01:12: fb:cb:84:bf:61:d5:40:78:24:6b:3b:2a:8e:f1:ae:62:4c:af: 12:32:71:73:7a:31:00:a3:2f:10:3d:b5:d9:85:8b:39:9d:ef: 66:62:ff:30:fe:4c:9e:d7:5c:b7:4b:79:e9:8b:9e:4f:ae:24: 15:69:2a:0c:8b:e6:17:0a:56:b0:39:0e:1e:d7:d3:20:de:6c: 44:47:73:35:ec:66:63:b8:34:16:3c:36:e7:36:74:f1:93:ae: a5:90:cb:0c:ae:08:4d:f7:62:a9:0f:6b:05:c0:85:6b:90:f9: 55:ba:08:07:2a:e6:d9:3d:ab:69:a0:2b:07:e3:5a:a8:cd:02: be:fb:60:da:cb:96:13:6d:8c:31:71:01:4c:db:91:22:47:d7: f8:e5:da:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3RDExMTAvBgNVBAUTKEM1QkQ4QTUwQ0FENUEwNUVGRTU3N0M0OUM0NzE0RTVE OUFCQjdGRUYwHhcNMjUwNDI1MDI1MzE4WhcNMjUwNTAyMDI1MzE4WjAYMRYwFAYD VQQDEw02ODBhZjkxZS1hYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0+7auBI7IV+B1TVwGekrLWGQmgLUrxmGmCnCzEWiNYN0UuklIAtg/FO4m4K 2jd1sjtLObWH967nkMSWpXavuJlmW6QIw1ZlsbDm9NVaKjzPROvH9R3vswY9A8sU YWKZSb+ipAp0ew5HnTx86gn86//T9zT6wFkmKykHltEPbnvmRosF0TTDQ/8cGkzg AB1OAWJVMIBEVxooXH9HdSdScQ3mKvlCOjkF/zYl9cQlbi/YYlLxoTZYN+irjv7B q8qfl5wsDz8AG5pgMV7V1l4gQv1mrI95GBBIgnz6ON6MGoascJBhtEv0LBHe5oC7 psPH/JXClvGbwV05iRHhn0bvnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACUvoL5 6PUR3ltMDuVQdH7kofXQMB8GA1UdIwQYMBaAFMW9ilDK1aBe/ld8ScRxTl2au3/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzdEMS8wNUE5OEYwRUUz QjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9GNy1WM3hKeEhGT1hacTdm LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiMktVTXJWb0Y3LVYzeEp4SEZPWFpxN2YtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzdEMS8wNUE5OEYwRUUzQjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9G Ny1WM3hKeEhGT1hacTdmLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9QUS2B3vAYKvD7fVAN+YSBCCGEzrCnuC9L6j7ujBbhfhrVW3Z+QJf OjgooWrOmgQ9SL7T5p4EDkqK+HPiBsg6vDd5+CkZHMfGTGiLZsE587pAzud4WQnb oE5nn9IADqyD5XlPfNE1qGe/ARL7y4S/YdVAeCRrOyqO8a5iTK8SMnFzejEAoy8Q PbXZhYs5ne9mYv8w/kye11y3S3npi55PriQVaSoMi+YXClawOQ4e19Mg3mxER3M1 7GZjuDQWPDbnNnTxk66lkMsMrghN92KpD2sFwIVrkPlVuggHKubZPatpoCsH41qo zQK++2Day5YTbYwxcQFM25EiR9f45dq1 -----END CERTIFICATE-----Generated at Sat Apr 26 15:17:52 2025 by rpki-client