$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: 5WeunUpI2g4XdynnOJ/e5D1lp9OZesYri7CP/aY0eYE= Subject key identifier: 44:1E:11:82:F4:14:15:5C:FF:C9:6D:E3:79:A0:32:7E:CE:01:C4:07 Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 08E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 08E1 Signing time: Thu 24 Apr 2025 20:16:44 +0000 Manifest this update: Thu 24 Apr 2025 20:16:44 +0000 Manifest next update: Thu 01 May 2025 20:16:44 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: +/hQ9XxuygDypM2qxovEUsT84XbWKxfbyTjREoQG6lo=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: 3Ir1IuKRfOTCPGTcqkNhUsK0tdvw53ia+7U41pr4LNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2279 (0x8e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Apr 24 20:16:44 2025 GMT Not After : May 1 20:16:44 2025 GMT Subject: CN=680a9c2c-98f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:88:69:f3:a8:6b:b4:ba:bd:5a:51:d6:15:04: e2:0a:48:e0:22:a4:a9:40:91:7c:dd:ae:aa:cb:63: a0:ed:e5:0a:11:81:94:44:50:35:ea:a3:5b:7c:27: 24:e1:f0:51:2b:49:3c:32:20:fb:43:9c:49:16:9d: 70:e1:39:71:f4:b9:e4:07:08:5f:13:fb:f2:65:1b: d9:80:3f:e4:4b:56:ae:6b:da:ed:90:cc:d3:85:26: 06:42:09:29:97:a5:32:89:03:d1:cf:92:d7:0c:3b: 06:30:63:c1:70:fd:b6:b5:c8:2a:42:6d:b1:31:33: 88:b8:2a:43:3d:f9:5a:87:e0:76:56:e7:a5:3a:25: 97:75:8d:ee:31:58:9f:a1:c3:95:c3:48:7e:61:03: b3:39:cc:3b:46:7b:59:35:3b:62:15:ae:52:db:58: 04:c8:26:bc:c1:b6:6c:8a:3c:ed:4e:56:1b:6f:3a: b9:bf:3b:1f:82:7a:3f:09:3d:9e:5a:23:31:80:45: e8:df:33:58:37:d4:b6:d0:a4:38:54:b7:34:8c:98: e0:46:ef:e2:b3:63:8f:0d:d4:c6:16:27:d6:07:4b: f8:f8:90:a1:70:64:e1:dd:68:99:6d:e7:b3:5b:97: ca:95:e5:a0:e1:70:2f:97:80:5d:59:62:ec:59:21: a2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1E:11:82:F4:14:15:5C:FF:C9:6D:E3:79:A0:32:7E:CE:01:C4:07 X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:71:f6:84:db:8f:91:57:e2:78:15:54:a1:7e:d6:8b:e1:21: 05:2a:f8:c5:d3:a8:0c:45:a0:a9:84:cc:a4:89:30:ad:b6:a3: 0f:7f:e7:7c:8c:ff:8e:8f:b9:ea:a6:4a:4f:7f:9d:62:2f:2b: 58:0f:8f:13:f7:21:23:88:dd:08:d3:6d:c6:18:63:34:af:9f: 37:de:57:7e:e7:84:77:14:11:c1:06:f8:76:03:f7:2f:4c:dd: 43:ae:0f:d9:1d:f5:97:3b:12:e7:04:9b:69:6b:4a:2d:ba:a0: 28:c5:cd:8e:86:58:2a:88:47:83:f3:67:2f:86:06:3e:98:06: 6f:d8:35:eb:10:08:47:b1:4a:fa:6a:4f:48:77:f1:65:e2:4a: 8d:5a:1b:d9:2e:d6:2b:21:2c:40:94:c9:a8:96:d3:d1:e2:cd: 12:d8:26:c3:14:87:29:f2:37:1b:9b:66:cb:0f:4b:29:15:be: de:60:e8:6d:ca:a6:44:1b:0b:f9:e1:7d:97:83:97:28:00:86: 20:2e:be:6d:71:e0:43:bd:81:1a:17:a4:77:53:0f:a0:6a:f3: 8b:c3:88:2f:49:bc:78:b9:ae:3e:f7:81:a0:62:1e:b2:26:13: a7:21:75:65:e8:11:53:89:fa:e9:ce:34:d0:87:e9:30:7d:f8: f2:3c:9e:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUwNDI0MjAxNjQ0WhcNMjUwNTAxMjAxNjQ0WjAYMRYwFAYD VQQDEw02ODBhOWMyYy05OGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ihp86hrtLq9WlHWFQTiCkjgIqSpQJF83a6qy2Og7eUKEYGURFA16qNbfCck 4fBRK0k8MiD7Q5xJFp1w4Tlx9LnkBwhfE/vyZRvZgD/kS1aua9rtkMzThSYGQgkp l6UyiQPRz5LXDDsGMGPBcP22tcgqQm2xMTOIuCpDPflah+B2VuelOiWXdY3uMVif ocOVw0h+YQOzOcw7RntZNTtiFa5S21gEyCa8wbZsijztTlYbbzq5vzsfgno/CT2e WiMxgEXo3zNYN9S20KQ4VLc0jJjgRu/is2OPDdTGFifWB0v4+JChcGTh3WiZbeez W5fKleWg4XAvl4BdWWLsWSGiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQeEYL0 FBVc/8lt43mgMn7OAcQHMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUcfaE24+RV+J4FVShftaL4SEFKvjF06gMRaCphMykiTCttqMPf+d8 jP+Oj7nqpkpPf51iLytYD48T9yEjiN0I023GGGM0r5833ld+54R3FBHBBvh2A/cv TN1Drg/ZHfWXOxLnBJtpa0otuqAoxc2OhlgqiEeD82cvhgY+mAZv2DXrEAhHsUr6 ak9Id/Fl4kqNWhvZLtYrISxAlMmoltPR4s0S2CbDFIcp8jcbm2bLD0spFb7eYOht yqZEGwv54X2Xg5coAIYgLr5tceBDvYEaF6R3Uw+gavOLw4gvSbx4ua4+94GgYh6y JhOnIXVl6BFTifrpzjTQh+kwffjyPJ7u -----END CERTIFICATE-----Generated at Sat Apr 26 12:26:41 2025 by rpki-client