$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: kLTIdfU6G7zqZl8HmzRb+bO5uJpC8Gm88iA+95Dsoy8= Subject key identifier: DA:A4:79:C7:69:FD:3C:C1:1A:72:85:A4:CE:C4:2E:63:F2:C0:AF:C2 Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 13CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 13C3 Signing time: Thu 24 Apr 2025 16:57:37 +0000 Manifest this update: Thu 24 Apr 2025 16:57:36 +0000 Manifest next update: Thu 01 May 2025 16:57:36 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: hrY5tmEIKjXdtZhqw5Vbpo4Qgh1i584asZFiTP1b6sE=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: dlJ7zH1d3oXPs3S0YirZQi1hSZzUrfDhpzP6MZkDSDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5070 (0x13ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Apr 24 16:57:36 2025 GMT Not After : May 1 16:57:36 2025 GMT Subject: CN=680a6d80-506f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:69:0c:37:35:ea:4c:cc:ce:3b:c7:ac:0e: 09:bc:64:8e:91:17:ce:6c:9d:d7:3d:e2:7a:f5:78: 1d:42:40:dc:92:5c:9e:44:43:79:73:1c:4a:3c:5a: be:8a:2d:f4:fc:8e:5e:a1:d5:9e:73:91:16:b0:62: 8f:46:b6:03:58:a4:73:28:12:ea:d0:5f:49:5e:d1: b1:e6:8d:69:df:2a:a9:6d:4b:b9:5c:cd:aa:ab:9e: 4b:3f:0b:19:39:d9:e8:fe:9e:e0:4a:0f:72:88:8a: 6a:e9:ab:ff:e4:7e:19:6d:5c:a3:b8:85:87:70:9f: 0b:e1:5f:9b:ab:4f:6b:cc:16:89:a1:1a:5b:bf:c6: 3b:e9:65:bd:af:98:47:18:05:af:f3:35:9b:4e:b4: fd:8f:ee:9b:13:f7:d5:cf:d8:4a:fd:94:20:1a:22: ba:3e:6c:bd:38:72:22:1b:f3:48:8d:e2:a2:f8:26: 3a:db:b8:70:a5:6b:88:1a:06:65:92:0f:9c:eb:94: 1b:5c:b2:06:39:04:75:5f:1d:16:4f:17:5e:d2:71: d8:b3:b0:db:b9:3e:7a:75:e9:83:29:d3:ca:d1:2f: 6d:22:27:c2:03:89:25:5e:43:bc:18:8f:92:71:d1: d5:c4:b7:3e:1c:cf:ae:be:69:4e:d0:1d:a6:7d:32: 66:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A4:79:C7:69:FD:3C:C1:1A:72:85:A4:CE:C4:2E:63:F2:C0:AF:C2 X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:2c:00:98:75:e0:ef:e4:ba:7f:a7:88:69:5d:cf:5c:ef:be: c5:3b:f1:04:2a:25:7f:6b:0e:d3:76:1d:cf:97:0b:a8:02:b7: 30:4e:de:83:43:88:ad:40:da:52:a9:82:24:96:53:82:ba:9d: 78:fa:c2:fb:62:b0:50:4e:8d:70:e5:25:35:0c:79:7d:52:09: fa:ca:f9:45:5c:5e:b3:dc:f3:96:cc:47:91:a5:c4:c8:67:6b: 4c:1c:e9:68:a5:b3:70:d4:4e:fe:8e:38:69:10:35:bd:cb:df: 67:59:e6:c5:38:55:19:ea:62:8a:a5:e0:29:cc:5c:2f:e8:dc: b7:cd:46:65:42:a6:5c:b7:a4:06:ae:75:54:80:cd:fe:e7:32: e9:db:6c:0f:87:95:ea:f8:45:a8:2d:40:ea:6f:d6:12:77:c7: e9:02:7b:ba:a9:5f:d3:90:40:8f:b5:87:89:ea:d2:04:49:6c: 1c:5b:a0:63:5c:4d:4c:d1:28:ed:93:40:5d:85:34:c9:7f:cf: e5:64:8d:b5:28:43:a6:3e:2c:3f:bc:88:2c:f0:55:dd:b6:f0: 62:c4:2b:45:05:c0:a8:4e:75:3f:40:88:f0:a3:d8:00:be:c1: 36:ff:65:7c:69:53:4f:73:36:04:6a:5d:0f:f1:53:8f:6d:5d: 6c:05:d9:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUwNDI0MTY1NzM2WhcNMjUwNTAxMTY1NzM2WjAYMRYwFAYD VQQDEw02ODBhNmQ4MC01MDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NVpDDc16kzMzjvHrA4JvGSOkRfObJ3XPeJ69XgdQkDcklyeREN5cxxKPFq+ ii30/I5eodWec5EWsGKPRrYDWKRzKBLq0F9JXtGx5o1p3yqpbUu5XM2qq55LPwsZ Odno/p7gSg9yiIpq6av/5H4ZbVyjuIWHcJ8L4V+bq09rzBaJoRpbv8Y76WW9r5hH GAWv8zWbTrT9j+6bE/fVz9hK/ZQgGiK6Pmy9OHIiG/NIjeKi+CY627hwpWuIGgZl kg+c65QbXLIGOQR1Xx0WTxde0nHYs7DbuT56demDKdPK0S9tIifCA4klXkO8GI+S cdHVxLc+HM+uvmlO0B2mfTJm3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqkecdp /TzBGnKFpM7ELmPywK/CMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiLACYdeDv5Lp/p4hpXc9c777FO/EEKiV/aw7Tdh3PlwuoArcwTt6D Q4itQNpSqYIkllOCup14+sL7YrBQTo1w5SU1DHl9Ugn6yvlFXF6z3POWzEeRpcTI Z2tMHOlopbNw1E7+jjhpEDW9y99nWebFOFUZ6mKKpeApzFwv6Ny3zUZlQqZct6QG rnVUgM3+5zLp22wPh5Xq+EWoLUDqb9YSd8fpAnu6qV/TkECPtYeJ6tIESWwcW6Bj XE1M0Sjtk0BdhTTJf8/lZI21KEOmPiw/vIgs8FXdtvBixCtFBcCoTnU/QIjwo9gA vsE2/2V8aVNPczYEal0P8VOPbV1sBdmU -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:07 2025 by rpki-client