$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: QITHntcKDNI5Fp9fZdEm/hoNQ8hCvgXEYWbaYIpv/gM= Subject key identifier: 6B:F9:F8:1D:D0:E9:84:29:3B:6F:91:51:2F:7D:90:D9:E0:89:B2:C7 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0AD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0AB2 Signing time: Thu 24 Apr 2025 19:24:39 +0000 Manifest this update: Thu 24 Apr 2025 19:24:39 +0000 Manifest next update: Thu 01 May 2025 19:24:39 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: 6uNxnBK3hqyJd7W3qzqefoboYYM9W2q8WBrwanQSccU=) 2: 79BBD5780A3511EB93ACB11CC4F9AE02.roa (hash: 9K5w786ggMJLPwHZJO8el5wKBIDrtW6lAumvGsO14Ks=) 3: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Apr 24 19:24:39 2025 GMT Not After : May 1 19:24:39 2025 GMT Subject: CN=680a8ff7-2e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:75:73:a6:b1:97:0a:cd:03:96:8e:14:31: 00:a7:08:8a:66:0d:85:61:cb:ce:54:b1:b6:0f:ff: d8:82:f2:91:40:37:d3:b9:fb:c1:a9:45:91:c6:62: 87:f8:9e:21:05:5e:83:85:a9:51:bc:d0:e5:14:98: 61:07:ba:14:35:9d:6d:75:56:fd:18:17:8e:43:8f: dc:0a:d7:25:c3:a0:2e:45:95:64:c8:37:1d:0b:b4: ae:f7:cc:34:9e:6e:4a:68:e8:c1:b9:13:ff:16:12: fc:9a:a9:c2:fc:4d:9f:94:9a:ac:72:c7:9a:14:94: 89:6c:92:dc:f1:d6:d3:44:03:29:ef:68:c9:42:44: 70:0f:b8:46:af:97:75:d9:34:f9:a7:6e:eb:df:9b: 37:ea:49:1c:ec:8f:47:43:bc:67:1c:cc:2b:17:88: 01:e1:eb:96:ed:23:f2:ed:ff:4f:ce:98:3f:47:d3: f5:13:50:57:95:53:4f:e0:9a:54:d8:9b:7a:86:ff: 8c:a4:14:76:a0:43:50:a1:1c:56:9e:23:9d:c0:e5: c0:e5:ed:e0:4b:5e:44:b4:02:b9:20:8b:55:b4:0a: 91:8a:1b:8c:56:be:1f:3f:ce:d7:89:0b:3d:6b:3c: 96:6d:00:cb:a3:d0:cc:62:80:27:2b:d4:01:c9:8b: d8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F9:F8:1D:D0:E9:84:29:3B:6F:91:51:2F:7D:90:D9:E0:89:B2:C7 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:03:11:c3:2c:f0:ea:e9:5a:5c:55:af:61:85:30:18:0e:81: 26:72:a9:fd:74:04:8f:31:99:2b:4d:b9:2a:8d:92:7f:cd:26: 03:f8:28:87:5e:24:10:1e:61:39:b5:c4:f9:86:ba:0a:eb:fa: de:fb:67:ce:33:d6:d4:20:e4:05:53:18:f7:8f:3a:f8:09:ee: fc:6a:1b:83:a2:92:72:22:a1:c3:75:61:e5:9a:07:f2:e9:26: bf:bf:1b:c5:cd:a9:37:78:26:1f:b0:ed:60:78:98:e0:87:d8: b3:ed:ba:e2:ce:c3:11:a6:9c:df:0d:86:ba:63:dd:b7:8a:57: 85:47:1a:dc:20:ff:ac:72:d3:4a:23:7e:93:65:c9:94:30:6f: 7b:47:69:92:aa:6f:b8:e1:9d:29:e8:3d:98:e8:44:60:8b:74: 91:5c:4b:eb:ff:b3:e1:a8:9a:99:ce:1c:fc:5d:33:97:1a:6a: f9:ef:4f:67:59:a7:ad:75:b4:5f:7e:c1:39:37:14:ea:78:5f: 3a:7f:a3:ec:87:4d:af:9f:0a:d5:29:87:a9:a2:78:8d:89:c6: 46:99:d0:35:c6:27:46:f6:4a:10:74:d7:9c:b6:8a:b8:ea:02: cb:f8:cb:4e:42:4e:9b:28:e8:29:8a:b5:b7:2a:21:2f:04:57: 1e:f0:f8:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwNDI0MTkyNDM5WhcNMjUwNTAxMTkyNDM5WjAYMRYwFAYD VQQDEw02ODBhOGZmNy0yZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptR1c6axlwrNA5aOFDEApwiKZg2FYcvOVLG2D//YgvKRQDfTufvBqUWRxmKH +J4hBV6DhalRvNDlFJhhB7oUNZ1tdVb9GBeOQ4/cCtclw6AuRZVkyDcdC7Su98w0 nm5KaOjBuRP/FhL8mqnC/E2flJqscseaFJSJbJLc8dbTRAMp72jJQkRwD7hGr5d1 2TT5p27r35s36kkc7I9HQ7xnHMwrF4gB4euW7SPy7f9Pzpg/R9P1E1BXlVNP4JpU 2Jt6hv+MpBR2oENQoRxWniOdwOXA5e3gS15EtAK5IItVtAqRihuMVr4fP87XiQs9 azyWbQDLo9DMYoAnK9QByYvYbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv5+B3Q 6YQpO2+RUS99kNngibLHMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkAxHDLPDq6VpcVa9hhTAYDoEmcqn9dASPMZkrTbkqjZJ/zSYD+CiH XiQQHmE5tcT5hroK6/re+2fOM9bUIOQFUxj3jzr4Ce78ahuDopJyIqHDdWHlmgfy 6Sa/vxvFzak3eCYfsO1geJjgh9iz7brizsMRppzfDYa6Y923ileFRxrcIP+sctNK I36TZcmUMG97R2mSqm+44Z0p6D2Y6ERgi3SRXEvr/7PhqJqZzhz8XTOXGmr5709n WaetdbRffsE5NxTqeF86f6Psh02vnwrVKYeponiNicZGmdA1xidG9koQdNectoq4 6gLL+MtOQk6bKOgpirW3KiEvBFce8PjP -----END CERTIFICATE-----Generated at Sat Apr 26 04:57:28 2025 by rpki-client