$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: u12BwwU58SPYs5/i2QHOLXd+btu3xJa0VzxHOKj35HQ= Subject key identifier: C7:A8:86:46:78:09:3A:36:DE:18:A2:3D:76:87:CF:D5:E8:A9:0B:08 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 011F Signing time: Fri 25 Apr 2025 03:49:24 +0000 Manifest this update: Fri 25 Apr 2025 03:49:24 +0000 Manifest next update: Fri 02 May 2025 03:49:24 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: A1a7uMLoiaO7rqZDdIWGanleVAQPjNP02h5KkGY93ek=) 2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: 1i4x5btwBoyVs/bOkBs3utfiU+YxigrlqpfcPAr0jaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Apr 25 03:49:24 2025 GMT Not After : May 2 03:49:24 2025 GMT Subject: CN=680b0644-f7fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:96:f9:37:87:4d:1d:9e:ed:67:21:da:b4: 29:bb:04:62:d3:ae:ac:31:83:ab:9c:53:58:8d:23: 99:27:93:9a:bb:69:eb:2b:e5:66:fc:44:1d:60:81: 44:d5:10:30:18:65:c7:2e:51:9a:f9:b8:6b:32:bc: d0:ca:29:c5:52:87:84:92:4c:42:27:63:ac:84:9f: d0:60:83:77:0c:34:75:12:e6:eb:9a:47:40:8e:fa: e4:30:9d:a7:f7:a9:9b:29:e9:15:df:3d:95:6b:31: e3:21:c9:fb:a8:de:82:d5:74:46:86:87:c2:93:aa: cc:ae:8d:19:6b:92:12:61:62:03:28:a9:20:22:6f: fe:b6:60:7d:3a:a4:c7:fa:72:4e:d2:84:b8:23:a5: a1:95:ec:c3:a9:7d:d5:8b:11:fb:ac:ed:90:1c:0f: c7:45:02:94:63:a7:be:7b:54:68:87:ce:98:75:fd: 26:47:35:a4:97:29:46:f9:0c:bf:77:16:6e:13:b5: 92:e4:fd:36:2b:d6:d3:86:49:d1:25:f5:a1:be:89: cb:5b:4d:a2:0a:28:d6:bc:06:aa:f2:e0:be:c0:a9: 4d:69:21:d9:d2:01:fb:79:d2:8f:5d:ba:66:8f:96: f1:aa:1a:e1:7b:d1:0b:73:a2:ef:82:a6:1b:4c:9e: 28:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A8:86:46:78:09:3A:36:DE:18:A2:3D:76:87:CF:D5:E8:A9:0B:08 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:a9:65:a8:39:04:6a:83:dc:e2:7a:f1:be:4b:9c:54:ef:51: 89:d4:7c:32:e5:03:43:c0:17:bc:93:0e:c1:9a:7e:48:35:96: 98:62:88:49:39:97:da:56:e9:20:8c:e3:e2:26:95:bd:c1:58: 77:70:6e:f9:df:f7:1b:3f:f7:5c:f9:f5:cb:31:ec:db:38:10: ee:ed:03:48:33:43:d8:b8:92:c1:7a:03:0b:8b:b5:0a:2d:1f: c1:5c:8a:b1:91:85:6b:22:bb:e7:5c:0d:53:a0:f3:ec:6e:35: a8:bb:72:c1:cb:69:fd:10:90:89:fe:a7:28:99:87:1a:8d:35: 6f:45:07:c0:12:0e:f8:4c:c4:d3:cc:86:e9:d6:f2:36:dc:ac: 91:e8:ab:b8:49:0e:b9:a2:79:a1:e5:39:fd:5a:b3:8f:fd:1e: eb:24:b7:61:d4:00:47:3b:95:25:4f:53:2c:0b:32:ec:7b:1d: 88:d0:a6:50:97:8d:e8:1f:41:47:e6:51:35:62:6b:bf:33:cf: 3d:13:9a:79:cd:e5:3a:1f:77:88:1a:34:ed:fd:0c:27:a5:74: eb:c4:52:0d:ff:6a:3f:15:ba:fd:95:93:b7:f4:a0:5f:3a:f7: d1:5c:6b:63:88:f2:5e:44:e6:ab:62:36:4e:26:1a:17:f3:71: ee:04:98:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwNDI1MDM0OTI0WhcNMjUwNTAyMDM0OTI0WjAYMRYwFAYD VQQDEw02ODBiMDY0NC1mN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSOW+TeHTR2e7Wch2rQpuwRi066sMYOrnFNYjSOZJ5Oau2nrK+Vm/EQdYIFE 1RAwGGXHLlGa+bhrMrzQyinFUoeEkkxCJ2OshJ/QYIN3DDR1EubrmkdAjvrkMJ2n 96mbKekV3z2VazHjIcn7qN6C1XRGhofCk6rMro0Za5ISYWIDKKkgIm/+tmB9OqTH +nJO0oS4I6WhlezDqX3VixH7rO2QHA/HRQKUY6e+e1Roh86Ydf0mRzWklylG+Qy/ dxZuE7WS5P02K9bThknRJfWhvonLW02iCijWvAaq8uC+wKlNaSHZ0gH7edKPXbpm j5bxqhrhe9ELc6LvgqYbTJ4oEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeohkZ4 CTo23hiiPXaHz9XoqQsIMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkqWWoOQRqg9zievG+S5xU71GJ1Hwy5QNDwBe8kw7Bmn5INZaYYohJ OZfaVukgjOPiJpW9wVh3cG753/cbP/dc+fXLMezbOBDu7QNIM0PYuJLBegMLi7UK LR/BXIqxkYVrIrvnXA1ToPPsbjWou3LBy2n9EJCJ/qcomYcajTVvRQfAEg74TMTT zIbp1vI23KyR6Ku4SQ65onmh5Tn9WrOP/R7rJLdh1ABHO5UlT1MsCzLsex2I0KZQ l43oH0FH5lE1Ymu/M889E5p5zeU6H3eIGjTt/QwnpXTrxFIN/2o/Fbr9lZO39KBf OvfRXGtjiPJeROarYjZOJhoX83HuBJi2 -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:26 2025 by rpki-client