$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: 97AbqLiQfxW8A3Z9uFn0tYapCzLonix1r/0QvaU7HGo= Subject key identifier: 34:5B:7E:15:0E:64:99:5F:40:E5:A1:A7:74:0A:71:6D:6D:00:AB:72 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: 98 Signing time: Fri 25 Apr 2025 05:21:26 +0000 Manifest this update: Fri 25 Apr 2025 05:21:25 +0000 Manifest next update: Fri 02 May 2025 05:21:25 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: MlbTditK+8JvHjO2EQcLgqYljBNfeWvgRwZFrFcym1s=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: tpxknLltESXlXvrC8XRzEEbUw6cbAqdQTGW1X5phwoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Apr 25 05:21:25 2025 GMT Not After : May 2 05:21:25 2025 GMT Subject: CN=680b1bd6-b2e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e0:7f:b2:a3:93:4d:42:14:7f:92:17:f4:ce: 01:11:cd:5a:f7:78:09:ee:ea:32:db:8f:7f:de:73: 79:05:f8:5e:ca:a3:00:f5:26:18:a4:af:63:da:e7: 43:28:df:d9:5b:f9:69:c7:a0:b3:35:45:6b:61:b7: 34:ae:3d:3e:ae:2e:a0:e3:b1:bc:60:86:54:c8:47: a6:c9:e4:64:0f:6d:0e:e2:56:05:18:0a:f9:b2:98: bd:2a:e2:ce:fe:7f:c5:a0:6f:f0:21:8a:34:da:a9: d2:33:c1:18:6b:8e:18:67:b6:99:93:2d:78:5e:86: 9a:8f:92:04:a8:dd:30:5c:bc:51:d8:3e:d1:7c:7a: ac:a8:58:6e:7b:f4:24:f3:7d:81:f7:3d:29:91:00: 05:02:50:87:4b:d5:d4:86:ee:88:6a:7f:4b:49:da: ba:44:35:86:9b:b8:c9:0a:5a:9e:9e:87:5e:18:8c: 5d:ab:ae:d2:1f:21:aa:a0:a0:4e:f7:25:23:5a:1c: 0b:1a:1c:f8:1c:b1:8e:cf:03:7a:03:3a:8b:91:37: ea:36:c9:2c:b6:cb:ee:44:b8:90:16:dd:fe:15:3d: d9:43:06:f5:2e:8c:9c:c2:6d:64:32:7e:29:62:16: b3:42:61:75:fd:49:49:76:23:c6:b1:38:2a:36:b1: 40:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5B:7E:15:0E:64:99:5F:40:E5:A1:A7:74:0A:71:6D:6D:00:AB:72 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:e3:51:29:3d:d2:14:75:e6:42:ed:82:50:11:3a:95:2a:3d: 48:81:f2:30:cb:d8:2c:52:fd:dc:d3:f1:a6:17:48:0d:8a:fe: 72:75:9c:e7:31:a0:2d:40:28:95:1f:59:4c:03:63:98:a5:b0: bc:b8:40:7e:44:ad:da:1d:5b:e7:99:f1:11:9f:de:b1:b6:de: 1b:2f:a9:97:60:07:19:68:29:c9:52:1d:df:a5:4e:cd:31:e8: 63:7b:8f:94:8b:19:d7:c1:4c:0d:aa:48:3a:39:3d:bc:7f:75: fe:f6:0b:98:38:96:8e:45:8c:27:82:f6:5d:4c:75:53:b3:1c: 34:0f:e5:e6:ba:40:af:d2:f6:e1:19:70:e3:8c:76:ca:75:96: 0b:cc:8e:71:cd:9c:02:7c:ad:1f:26:80:7e:08:ef:64:0b:71: 0f:5a:0f:52:76:df:0f:1a:24:e6:23:61:0e:1f:47:d7:61:62: 08:a5:21:14:6d:23:ae:35:bc:92:1a:63:d2:00:8e:13:a5:d1: 30:82:80:a0:b4:81:a2:3e:41:f2:4c:2f:ca:3c:08:b1:74:7b: 58:97:06:3b:80:0f:00:66:58:b1:f2:b6:73:74:23:01:f5:e1: 0a:bb:44:1b:c7:34:37:60:7a:24:d6:66:3d:bd:37:47:04:f8: f5:10:a8:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUwNDI1MDUyMTI1WhcNMjUwNTAyMDUyMTI1WjAYMRYwFAYD VQQDEw02ODBiMWJkNi1iMmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+B/sqOTTUIUf5IX9M4BEc1a93gJ7uoy249/3nN5BfheyqMA9SYYpK9j2udD KN/ZW/lpx6CzNUVrYbc0rj0+ri6g47G8YIZUyEemyeRkD20O4lYFGAr5spi9KuLO /n/FoG/wIYo02qnSM8EYa44YZ7aZky14Xoaaj5IEqN0wXLxR2D7RfHqsqFhue/Qk 832B9z0pkQAFAlCHS9XUhu6Ian9LSdq6RDWGm7jJClqenodeGIxdq67SHyGqoKBO 9yUjWhwLGhz4HLGOzwN6AzqLkTfqNskstsvuRLiQFt3+FT3ZQwb1Loycwm1kMn4p YhazQmF1/UlJdiPGsTgqNrFAQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRbfhUO ZJlfQOWhp3QKcW1tAKtyMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu41EpPdIUdeZC7YJQETqVKj1IgfIwy9gsUv3c0/GmF0gNiv5ydZzn MaAtQCiVH1lMA2OYpbC8uEB+RK3aHVvnmfERn96xtt4bL6mXYAcZaCnJUh3fpU7N Mehje4+UixnXwUwNqkg6OT28f3X+9guYOJaORYwngvZdTHVTsxw0D+XmukCv0vbh GXDjjHbKdZYLzI5xzZwCfK0fJoB+CO9kC3EPWg9Sdt8PGiTmI2EOH0fXYWIIpSEU bSOuNbySGmPSAI4TpdEwgoCgtIGiPkHyTC/KPAixdHtYlwY7gA8AZlix8rZzdCMB 9eEKu0QbxzQ3YHok1mY9vTdHBPj1EKj3 -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:14 2025 by rpki-client