$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: +3eeocsQXVrQwqNY4t0pqQzzB9CBjeAcNEDMxWOP9F4= Subject key identifier: 4A:B9:AA:EB:52:F3:E9:24:AE:2B:3B:2E:71:90:48:B4:73:DE:63:A4 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 05CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 05C6 Signing time: Thu 24 Apr 2025 22:52:19 +0000 Manifest this update: Thu 24 Apr 2025 22:52:18 +0000 Manifest next update: Thu 01 May 2025 22:52:18 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: e2W5+RzH6MLdE4XFTEnWdINcQjTjNGQfZJSO+fQYGx0=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: bgQvr2Jdprt2Ja1Usi3GgYGC5SiLxAPy60mdKqHu2RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Apr 24 22:52:18 2025 GMT Not After : May 1 22:52:18 2025 GMT Subject: CN=680ac0a2-caf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:59:fe:ea:d1:f0:d9:15:a9:35:ba:7a:72: 6a:6e:95:0c:e7:d0:13:5c:7a:35:c3:f3:62:9f:b8: 6a:ed:53:d7:63:0f:7f:2b:b0:41:a4:41:b0:6d:1c: 38:a8:f7:3e:09:e7:94:10:39:1c:90:99:eb:ce:6c: 72:e2:75:da:e2:5b:34:49:b1:24:0f:da:d2:ab:06: 8a:96:1c:8d:4e:02:73:02:d7:38:c1:1b:69:31:6a: 42:2e:f1:ef:93:b5:6d:b8:6a:fa:f0:5a:43:b6:ee: 6b:78:6b:61:02:9b:3b:86:a6:ba:98:30:9b:d9:24: a4:ef:da:62:bd:07:36:c3:03:42:35:07:71:f7:4d: 6f:4e:d2:68:60:2f:78:07:9b:0c:61:da:ea:ee:83: 11:b8:ac:ef:28:93:d5:08:a2:c6:e8:91:89:4a:0c: c1:61:b0:c8:ec:10:6f:50:48:b3:da:36:32:7c:bc: c8:f7:7e:a5:e9:8d:1a:cc:d1:0e:72:1c:97:b6:b8: c7:c2:44:cc:65:92:08:4e:f3:de:d6:d5:65:fa:80: 9d:aa:27:d1:29:8c:36:8d:2b:e9:47:7d:d8:87:91: a0:b8:35:1c:26:a2:f1:43:00:44:c9:ce:13:73:f0: 16:ee:65:7f:18:71:89:79:62:2e:6e:0e:c8:d3:a5: 9d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B9:AA:EB:52:F3:E9:24:AE:2B:3B:2E:71:90:48:B4:73:DE:63:A4 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:9f:9b:d8:47:4f:84:da:49:3c:c8:be:3f:86:e7:04:9a:c5: ee:08:37:10:f5:60:8f:e5:9b:a1:02:b0:e2:0e:10:43:f3:1b: 26:0f:e3:b8:c7:de:d0:f5:ab:f7:7b:e8:a3:e6:13:58:ec:52: 61:35:24:64:11:5b:fe:dc:d3:7a:d3:ab:9d:86:4f:67:48:c2: 40:52:23:be:da:3a:8b:c8:b8:28:dd:36:db:5e:6f:76:2a:d5: d5:2d:44:37:ee:8b:c5:39:54:2b:42:39:ce:e8:d3:41:08:40: ec:2f:53:2b:18:2b:23:b6:1c:fc:49:e6:dc:8f:03:11:70:b8: e6:25:78:3a:3e:67:fa:2e:b6:8e:38:e8:a4:04:89:c8:8f:d8: 02:81:c7:b6:cb:74:0f:9c:34:98:52:75:1e:4e:3d:01:e2:e5: bf:83:ec:8c:b3:c1:5e:6e:e9:a1:ee:21:b6:d1:70:9f:c7:43: 2a:e9:5e:e7:a9:cd:1c:e1:b2:b3:1a:5e:91:88:ac:8e:64:d3: 59:9c:f4:1a:fe:02:a0:8c:c4:93:dc:78:a3:62:6f:f2:37:91: 8a:38:a1:f8:21:9b:b1:d3:f0:81:9c:04:92:4c:3a:a3:ba:29: 28:35:bc:8c:e2:ae:2f:19:50:d0:f4:64:29:19:0d:81:f4:79: b5:3a:de:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUwNDI0MjI1MjE4WhcNMjUwNTAxMjI1MjE4WjAYMRYwFAYD VQQDEw02ODBhYzBhMi1jYWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi1Z/urR8NkVqTW6enJqbpUM59ATXHo1w/Nin7hq7VPXYw9/K7BBpEGwbRw4 qPc+CeeUEDkckJnrzmxy4nXa4ls0SbEkD9rSqwaKlhyNTgJzAtc4wRtpMWpCLvHv k7VtuGr68FpDtu5reGthAps7hqa6mDCb2SSk79pivQc2wwNCNQdx901vTtJoYC94 B5sMYdrq7oMRuKzvKJPVCKLG6JGJSgzBYbDI7BBvUEiz2jYyfLzI936l6Y0azNEO chyXtrjHwkTMZZIITvPe1tVl+oCdqifRKYw2jSvpR33Yh5GguDUcJqLxQwBEyc4T c/AW7mV/GHGJeWIubg7I06WdVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEq5qutS 8+kkris7LnGQSLRz3mOkMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUn5vYR0+E2kk8yL4/hucEmsXuCDcQ9WCP5ZuhArDiDhBD8xsmD+O4 x97Q9av3e+ij5hNY7FJhNSRkEVv+3NN606udhk9nSMJAUiO+2jqLyLgo3TbbXm92 KtXVLUQ37ovFOVQrQjnO6NNBCEDsL1MrGCsjthz8SebcjwMRcLjmJXg6Pmf6LraO OOikBInIj9gCgce2y3QPnDSYUnUeTj0B4uW/g+yMs8Febumh7iG20XCfx0Mq6V7n qc0c4bKzGl6RiKyOZNNZnPQa/gKgjMST3HijYm/yN5GKOKH4IZux0/CBnASSTDqj uikoNbyM4q4vGVDQ9GQpGQ2B9Hm1Ot64 -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:44 2025 by rpki-client