$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: tHs/Cv8XHHThgf91Ueds6jKgTspQWhxAUEyFY6UeFQg= Subject key identifier: DD:87:5D:C4:55:F8:0B:48:4B:E1:0D:15:FF:E1:FF:DC:01:FA:C2:85 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E29 Signing time: Thu 24 Apr 2025 17:45:55 +0000 Manifest this update: Thu 24 Apr 2025 17:45:55 +0000 Manifest next update: Thu 01 May 2025 17:45:54 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: 8mezSCdmXEurt67q7uQeTvnYIv+VcSJvFMgi5eNzhLw=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Apr 24 17:45:55 2025 GMT Not After : May 1 17:45:54 2025 GMT Subject: CN=680a78d3-ad90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d9:f8:3e:d6:c8:cf:4f:ca:61:f4:bb:ff:1c: 48:53:a4:24:92:14:d5:58:8d:c2:23:b7:fb:0b:9f: f0:7b:81:cd:28:75:6a:bb:b2:fa:b1:9f:47:76:b2: 16:10:7e:c4:f1:17:7a:69:59:d4:c4:1a:32:0c:8a: a7:0f:ff:57:65:38:1b:9b:94:50:d7:0c:90:97:62: bd:ef:51:ae:1c:af:20:d3:4a:d2:0e:b3:fa:8a:38: 66:20:40:17:0b:25:f4:4a:27:5f:5a:43:e4:ef:fd: ca:36:9a:46:32:bd:09:f8:bc:59:49:0a:20:23:af: 86:ba:18:9e:e7:f1:9d:2c:5e:0b:70:8b:91:1b:13: db:4e:60:3a:cf:38:4d:21:fb:fa:f6:56:00:d5:bf: b3:ee:88:55:7b:cf:09:d7:b4:17:e6:66:f3:53:1d: 1c:b8:13:5b:e6:b8:dc:2c:4d:55:c7:90:4d:30:5b: 7f:46:32:14:57:57:d2:67:c6:ff:30:1e:c7:54:16: 36:27:3f:af:7f:31:c1:cb:15:99:b9:f0:a1:40:d2: c1:00:87:7b:c3:16:5d:74:35:e9:4f:a9:cd:8e:f0: 8c:da:fd:18:d3:56:be:d5:f1:b5:00:e2:68:9f:ec: e7:3d:19:fd:66:c1:25:a7:d6:fd:e4:bd:ea:e9:b2: e3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:87:5D:C4:55:F8:0B:48:4B:E1:0D:15:FF:E1:FF:DC:01:FA:C2:85 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:62:b6:73:0e:90:19:12:45:2b:7a:bd:3f:96:e9:73:9b:64: bd:7e:3b:36:16:c0:dd:c5:c1:62:79:12:78:2b:b7:76:fc:cc: b5:c9:e4:f5:fa:57:02:f0:ae:30:71:a6:77:52:ff:3b:1f:fe: 0c:64:fd:b9:df:82:1b:a4:e4:6e:9e:d3:68:f7:34:5e:44:49: f6:60:1e:36:a2:92:3f:f3:b8:f0:45:e5:ab:7a:fb:c5:a9:8c: 08:52:02:af:58:42:e9:c3:52:f4:17:c8:95:fe:97:e6:6d:6c: f9:e2:6e:9a:e7:8c:38:f3:43:be:a9:e6:32:b0:e7:30:5c:e3: b4:07:2f:80:f2:7a:fe:8a:3b:a6:c6:97:a4:e4:2e:9d:41:d8: 5b:df:fa:25:02:c9:76:71:71:58:63:75:dc:9e:c6:e4:0d:85: b7:1d:ee:f3:a8:21:2c:b4:43:8d:a7:10:2c:80:b4:82:81:b0: f1:0c:0a:d1:74:52:b1:58:65:b9:a2:20:b8:b3:01:9d:50:02: a2:12:a9:0d:35:d1:8e:60:ed:b3:e1:c4:3f:6d:4f:2d:00:5d: 82:a1:5c:56:30:68:e4:93:a2:07:c1:3b:d7:81:d0:5e:b1:f9: bb:8e:2a:a2:96:2f:7f:0f:55:1d:57:c4:8c:b3:c2:97:34:e2: 8e:e8:50:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUwNDI0MTc0NTU1WhcNMjUwNTAxMTc0NTU0WjAYMRYwFAYD VQQDEw02ODBhNzhkMy1hZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotn4PtbIz0/KYfS7/xxIU6QkkhTVWI3CI7f7C5/we4HNKHVqu7L6sZ9HdrIW EH7E8Rd6aVnUxBoyDIqnD/9XZTgbm5RQ1wyQl2K971GuHK8g00rSDrP6ijhmIEAX CyX0SidfWkPk7/3KNppGMr0J+LxZSQogI6+Guhie5/GdLF4LcIuRGxPbTmA6zzhN Ifv69lYA1b+z7ohVe88J17QX5mbzUx0cuBNb5rjcLE1Vx5BNMFt/RjIUV1fSZ8b/ MB7HVBY2Jz+vfzHByxWZufChQNLBAId7wxZddDXpT6nNjvCM2v0Y01a+1fG1AOJo n+znPRn9ZsElp9b95L3q6bLj5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2HXcRV +AtIS+ENFf/h/9wB+sKFMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXYrZzDpAZEkUrer0/lulzm2S9fjs2FsDdxcFieRJ4K7d2/My1yeT1 +lcC8K4wcaZ3Uv87H/4MZP2534IbpORuntNo9zReREn2YB42opI/87jwReWrevvF qYwIUgKvWELpw1L0F8iV/pfmbWz54m6a54w480O+qeYysOcwXOO0By+A8nr+ijum xpek5C6dQdhb3/olAsl2cXFYY3XcnsbkDYW3He7zqCEstEONpxAsgLSCgbDxDArR dFKxWGW5oiC4swGdUAKiEqkNNdGOYO2z4cQ/bU8tAF2CoVxWMGjkk6IHwTvXgdBe sfm7jiqili9/D1UdV8SMs8KXNOKO6FBL -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:05 2025 by rpki-client