$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: Os1RUN9sr4/n6AhfJEcewSF/3LH654e08sfJEPbPWj0= Subject key identifier: 1F:60:03:01:B9:D9:99:0E:12:6B:33:62:E4:12:50:9B:CC:6C:2D:56 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 24F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 24F6 Signing time: Thu 24 Apr 2025 14:32:07 +0000 Manifest this update: Thu 24 Apr 2025 14:32:07 +0000 Manifest next update: Thu 01 May 2025 14:32:07 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: TL8EKnOOnKWp5F3IJAe26F5tpiaDVvw0PgS5t6SV9sI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9462 (0x24f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Apr 24 14:32:07 2025 GMT Not After : May 1 14:32:07 2025 GMT Subject: CN=680a4b67-d8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:07:6d:40:74:68:af:50:f7:22:84:79:13:ed: 54:d6:75:1d:9d:dc:2a:13:c1:6a:f0:24:49:14:a4: d6:b2:fe:1c:d3:84:80:04:6a:d9:7e:c7:b2:2f:54: 87:73:e0:2a:96:35:49:ee:39:6e:50:f1:ed:2a:e4: 4d:bf:91:ce:a9:f8:df:96:74:ab:78:2a:8e:2b:2a: be:17:24:29:ca:ec:24:68:aa:f7:ab:d6:8a:b3:71: 20:1a:0f:ed:70:33:d1:f0:38:14:a8:0c:03:d3:b5: fa:36:56:6a:3d:bf:55:7a:24:21:87:07:0e:18:4d: 7e:82:7d:f2:22:0d:02:b9:b7:ab:a2:d6:f3:2a:04: 4b:49:d5:4e:05:59:95:94:e5:65:67:0c:21:37:d9: 60:00:bb:48:ae:93:78:7d:e3:1c:63:17:f0:00:08: dd:f3:12:fc:4a:0b:27:11:6d:bc:0b:9b:3c:bb:12: 25:d8:56:35:4f:7f:f8:27:dc:92:af:cb:e0:77:34: 07:11:f2:ae:91:bf:86:15:56:27:b6:6a:da:2a:cc: ce:ea:d2:cd:97:bb:34:53:5e:f8:0e:b1:3c:04:95: 80:8e:97:84:19:e8:b3:13:01:b0:2f:bc:07:5a:2c: cd:59:b6:ac:cd:11:b4:27:a6:fe:bb:17:99:d6:7f: c5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:60:03:01:B9:D9:99:0E:12:6B:33:62:E4:12:50:9B:CC:6C:2D:56 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:63:a4:21:10:43:95:b8:17:ef:f0:ec:25:1b:b6:10:94:72: 78:48:f8:72:d8:a4:71:a3:ba:44:e1:91:11:96:7d:69:01:7e: 86:7f:82:a1:88:ce:d4:71:eb:6a:41:a4:83:c0:f1:18:bf:79: a2:80:75:ca:64:84:aa:1e:b8:0d:5c:83:87:c5:76:65:14:03: 8e:c5:13:4c:59:97:2a:a6:42:84:f2:8b:cb:5d:56:f9:52:a3: 0f:ff:84:68:14:66:6e:41:c3:11:d7:1c:6f:ea:18:0f:49:ee: b5:b7:cb:03:b5:d5:e0:66:ac:6e:7a:88:33:ac:ec:10:18:bc: 06:04:9d:0e:fa:f3:28:8d:aa:9d:4d:9a:f0:7d:87:4b:b0:71: b5:60:3b:92:c6:9e:3d:3c:13:ac:12:dc:cc:5c:23:47:e4:0c: b8:48:ce:0a:6a:df:97:8e:40:90:78:73:38:3e:8f:04:26:fe: 41:9a:94:d1:e2:12:f3:df:48:46:e2:26:c1:81:fd:88:88:17: 1e:86:ac:55:45:b6:66:ab:08:45:9a:5c:c3:b5:11:c1:5b:b1: 37:9a:ba:80:4f:92:df:9d:e1:ba:9c:80:ff:0a:ce:b8:99:ea: af:95:74:a7:33:ac:c7:5a:21:d7:b5:87:dc:37:05:fd:b7:16: cc:47:36:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNDI0MTQzMjA3WhcNMjUwNTAxMTQzMjA3WjAYMRYwFAYD VQQDEw02ODBhNGI2Ny1kOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QdtQHRor1D3IoR5E+1U1nUdndwqE8Fq8CRJFKTWsv4c04SABGrZfseyL1SH c+AqljVJ7jluUPHtKuRNv5HOqfjflnSreCqOKyq+FyQpyuwkaKr3q9aKs3EgGg/t cDPR8DgUqAwD07X6NlZqPb9VeiQhhwcOGE1+gn3yIg0CuberotbzKgRLSdVOBVmV lOVlZwwhN9lgALtIrpN4feMcYxfwAAjd8xL8SgsnEW28C5s8uxIl2FY1T3/4J9yS r8vgdzQHEfKukb+GFVYntmraKszO6tLNl7s0U174DrE8BJWAjpeEGeizEwGwL7wH WizNWbaszRG0J6b+uxeZ1n/FJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9gAwG5 2ZkOEmszYuQSUJvMbC1WMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMY6QhEEOVuBfv8OwlG7YQlHJ4SPhy2KRxo7pE4ZERln1pAX6Gf4Kh iM7UcetqQaSDwPEYv3migHXKZISqHrgNXIOHxXZlFAOOxRNMWZcqpkKE8ovLXVb5 UqMP/4RoFGZuQcMR1xxv6hgPSe61t8sDtdXgZqxueogzrOwQGLwGBJ0O+vMojaqd TZrwfYdLsHG1YDuSxp49PBOsEtzMXCNH5Ay4SM4Kat+XjkCQeHM4Po8EJv5BmpTR 4hLz30hG4ibBgf2IiBcehqxVRbZmqwhFmlzDtRHBW7E3mrqAT5LfneG6nID/Cs64 meqvlXSnM6zHWiHXtYfcNwX9txbMRzYg -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:34 2025 by rpki-client