$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft File: Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft (raw, json) Hash identifier: PSPawGTABzk44KFHzFjao3zZoHPJl3p13KWbyUwoKnk= Subject key identifier: 31:43:5F:72:36:E8:D2:C8:33:DC:DC:3A:70:BC:6C:9F:29:13:13:03 Authority key identifier: 5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 Certificate issuer: /CN=A91F8119/serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Certificate serial: 2596 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft Manifest number: 257D Signing time: Thu 24 Apr 2025 15:45:15 +0000 Manifest this update: Thu 24 Apr 2025 15:45:14 +0000 Manifest next update: Thu 01 May 2025 15:45:14 +0000 Files and hashes: 1: Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl (hash: y1MM46e14dLr+j3D2ciQ/a18HXYdxhQollXDRH+P/kM=) 2: 171130AE15F011EC805A0A2FC4F9AE02.roa (hash: pVWyhrhr52dDPOhFrnd0oPU2DOTP+1UBjUuKhhhwO0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9622 (0x2596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Validity Not Before: Apr 24 15:45:14 2025 GMT Not After : May 1 15:45:14 2025 GMT Subject: CN=680a5c8a-04a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1e:5b:54:ab:78:26:28:5c:c4:4d:b9:ba:e0: 4b:7b:cd:cf:35:ef:91:61:07:d1:b6:2e:a7:b0:fa: 00:b0:85:7f:78:53:da:3a:c2:3c:a5:ca:55:ba:af: 64:bb:36:79:9c:7b:5e:14:14:a1:a8:c0:c2:b9:de: 08:bf:ab:ba:a7:63:3d:3a:0c:d1:c7:50:2c:81:60: 2f:26:07:c6:58:60:91:74:30:0b:df:0d:4f:24:63: a0:99:55:b2:2f:38:c9:eb:c0:95:c7:8d:b7:0e:58: 14:12:76:a7:8a:74:f2:77:94:34:6d:80:d9:7c:1e: b7:97:24:36:ff:a2:ca:e1:1a:db:b3:75:f8:57:08: a3:05:14:c1:22:3c:fe:fa:92:f7:30:cd:62:c9:69: eb:fd:1e:20:d9:ea:55:f5:44:b2:f7:c8:37:e0:25: 18:b1:41:4d:db:39:be:88:3e:31:66:c0:54:e0:f1: 24:33:50:6a:8b:24:bd:ed:5d:a6:ff:26:e6:c9:c6: 2c:80:7b:e5:e4:1f:29:fa:88:8b:1d:a2:d9:27:d2: 0d:59:00:82:2d:d4:9e:c7:d4:78:fe:7a:20:f1:4f: a9:e0:d9:d4:72:ed:af:ab:0c:b9:01:34:32:10:bc: 54:38:9e:95:c2:d6:a4:27:26:f0:a6:aa:15:3a:e2: ad:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:43:5F:72:36:E8:D2:C8:33:DC:DC:3A:70:BC:6C:9F:29:13:13:03 X509v3 Authority Key Identifier: keyid:5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:2f:22:d4:a0:ac:0f:ca:4c:91:39:4f:38:04:53:a0:2b:9a: fa:2e:bd:68:cb:9f:97:0d:8e:de:83:3e:0b:79:f4:20:05:54: a4:f5:df:bc:db:0a:b0:0b:fe:e2:70:68:8c:57:2a:33:59:f1: 55:89:ca:a4:f0:ec:bb:8a:09:53:b0:67:4e:bc:41:55:09:84: b3:51:37:8b:d1:b9:4a:52:6c:69:c6:c4:7a:ff:62:82:c7:3c: 79:f4:88:d9:b6:31:12:c8:fd:46:73:7f:d9:4e:89:d4:81:ab: aa:d0:bf:f0:47:76:62:48:1c:f4:12:8a:09:17:33:2b:b1:3a: e3:15:5e:02:9f:30:46:aa:cb:cc:07:a4:06:b2:55:49:52:0b: 98:cf:69:c0:ce:44:c4:4f:1c:d9:c3:85:6a:3a:3e:11:d8:9b: e7:2f:a0:f1:8c:db:1f:b0:15:d6:a9:8f:c8:e4:c4:96:0b:99: 26:d9:9c:91:da:d2:54:35:96:4a:00:51:34:fc:ae:9b:cc:81: 7e:9d:c9:cc:ff:3d:52:08:b1:d5:98:a9:ba:34:63:a6:59:b2: ef:2b:db:ea:23:36:42:89:8e:8f:a0:a0:08:ae:b4:6a:e6:22: b4:4d:ef:df:f3:c9:83:7f:c4:e1:7e:b2:3b:5c:61:79:3b:5c: e8:f0:a2:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDVGMzhGNDE5NTE2MTYyQkQ4ODZFNDBCREE5MjdGNTVE QzZGRjNFNjIwHhcNMjUwNDI0MTU0NTE0WhcNMjUwNTAxMTU0NTE0WjAYMRYwFAYD VQQDEw02ODBhNWM4YS0wNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0h5bVKt4JihcxE25uuBLe83PNe+RYQfRti6nsPoAsIV/eFPaOsI8pcpVuq9k uzZ5nHteFBShqMDCud4Iv6u6p2M9OgzRx1AsgWAvJgfGWGCRdDAL3w1PJGOgmVWy LzjJ68CVx423DlgUEnaninTyd5Q0bYDZfB63lyQ2/6LK4Rrbs3X4VwijBRTBIjz+ +pL3MM1iyWnr/R4g2epV9USy98g34CUYsUFN2zm+iD4xZsBU4PEkM1BqiyS97V2m /ybmycYsgHvl5B8p+oiLHaLZJ9INWQCCLdSex9R4/nog8U+p4NnUcu2vqwy5ATQy ELxUOJ6VwtakJybwpqoVOuKtoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFDX3I2 6NLIM9zcOnC8bJ8pExMDMB8GA1UdIwQYMBaAFF849BlRYWK9iG5Avakn9V3G/z5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS9BN0VDNTk2QzEz MzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFlyMklia0M5cVNmMVhjYl9Q bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6ajBHVkZoWXIySWJrQzlxU2YxWGNiX1BtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS9BN0VDNTk2QzEzMzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFly Mklia0M5cVNmMVhjYl9QbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1LyLUoKwPykyROU84BFOgK5r6Lr1oy5+XDY7egz4LefQgBVSk9d+8 2wqwC/7icGiMVyozWfFVicqk8Oy7iglTsGdOvEFVCYSzUTeL0blKUmxpxsR6/2KC xzx59IjZtjESyP1Gc3/ZTonUgauq0L/wR3ZiSBz0EooJFzMrsTrjFV4CnzBGqsvM B6QGslVJUguYz2nAzkTETxzZw4VqOj4R2JvnL6DxjNsfsBXWqY/I5MSWC5km2ZyR 2tJUNZZKAFE0/K6bzIF+ncnM/z1SCLHVmKm6NGOmWbLvK9vqIzZCiY6PoKAIrrRq 5iK0Te/f88mDf8ThfrI7XGF5O1zo8KLJ -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:31 2025 by rpki-client