$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: PMLjcRxWDgd0LxkvLchXDhkoAeTcI+ITRQZRmyblv3Q= Subject key identifier: DA:A1:60:19:05:25:6E:75:9A:B9:64:EA:AD:BB:B1:AC:AA:FE:C8:B4 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 04F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 04F9 Signing time: Thu 24 Apr 2025 23:28:41 +0000 Manifest this update: Thu 24 Apr 2025 23:28:40 +0000 Manifest next update: Thu 01 May 2025 23:28:40 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: VAbEAH5258hpMbEW6ylq93MmpWnAwBypzVITYckhD2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Apr 24 23:28:40 2025 GMT Not After : May 1 23:28:40 2025 GMT Subject: CN=680ac929-332a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a7:e0:d7:ad:a8:a8:bd:04:0d:30:08:e1:84: 34:ab:74:09:ce:af:b1:ae:34:50:ee:ae:d5:5d:76: 58:11:cd:69:a0:59:da:59:24:87:74:bc:f9:88:17: 58:c7:3f:cf:df:46:1c:5a:ac:59:b3:c3:37:f7:7f: 25:14:df:95:03:0e:35:c2:85:19:62:b0:63:34:f3: 03:24:ef:1b:71:5b:99:2e:ae:05:68:54:bb:74:4c: 70:85:c2:85:a2:2a:fd:b3:17:0a:e2:70:81:e7:5a: c2:35:25:b7:fb:94:da:51:48:16:d6:84:07:03:9f: 83:90:9a:8d:b2:b3:c2:56:4b:19:ba:08:25:d8:29: 89:88:ab:18:6c:62:82:59:30:90:ed:f9:ea:ab:01: 82:28:bd:80:04:26:3b:85:aa:8c:bb:99:8e:aa:f3: f8:88:f9:b7:d6:61:ca:ac:c8:c2:43:fd:6f:26:af: 6a:ed:e1:97:e0:44:02:65:3e:2f:39:77:73:f6:92: 8c:cb:d8:1f:b5:1f:3f:b0:54:22:47:91:b5:fc:3a: b5:0b:fa:d8:4c:a2:0b:b5:8e:77:29:23:19:8c:8e: b2:0b:8c:05:0d:49:a3:eb:36:fd:de:b9:27:54:b4: 9c:14:4c:57:57:f8:6b:05:19:0f:ec:7e:be:32:fe: 6c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A1:60:19:05:25:6E:75:9A:B9:64:EA:AD:BB:B1:AC:AA:FE:C8:B4 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ba:90:36:f9:28:91:04:9b:9a:21:c1:c3:22:3a:24:7b:77: 88:7b:48:4c:c2:fc:98:94:cc:ab:de:88:4b:64:da:bf:63:a4: 53:e8:88:d8:d4:96:86:45:24:18:34:c2:bc:3d:d2:f3:66:e3: 3f:a8:31:22:4f:b8:e9:c1:cf:08:66:55:cc:13:84:8c:76:cb: 03:50:dd:37:2a:dd:12:90:8a:82:74:27:de:d8:d4:d7:cc:92: 2a:8c:d8:b0:17:6d:0d:0d:ae:4c:5a:86:8a:0b:2f:e0:00:f4: c7:58:be:83:4e:16:ba:fd:28:5a:93:50:32:e2:33:0c:ce:b4: 0b:72:14:97:38:f0:cf:2c:89:d3:0f:aa:77:5a:e5:f1:01:08: bf:91:4b:6a:2b:2e:05:b4:ee:56:62:f8:74:03:4d:0b:68:c5: 99:af:6f:67:dc:45:7a:ab:af:dd:b1:f7:43:85:6c:85:23:3d: 4b:48:4c:9c:5f:1c:b8:88:1a:f0:7e:3d:d2:34:66:84:59:63: 4b:34:56:89:e6:65:c2:50:e4:3d:13:0a:1c:3b:86:81:4b:39: 89:e7:da:fc:c1:e0:39:3f:a6:2c:89:41:1c:43:68:77:c4:36: 5c:58:b0:fc:e4:10:98:86:f5:a9:d1:8d:fd:88:bb:38:99:81: de:2b:99:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUwNDI0MjMyODQwWhcNMjUwNTAxMjMyODQwWjAYMRYwFAYD VQQDEw02ODBhYzkyOS0zMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26fg162oqL0EDTAI4YQ0q3QJzq+xrjRQ7q7VXXZYEc1poFnaWSSHdLz5iBdY xz/P30YcWqxZs8M3938lFN+VAw41woUZYrBjNPMDJO8bcVuZLq4FaFS7dExwhcKF oir9sxcK4nCB51rCNSW3+5TaUUgW1oQHA5+DkJqNsrPCVksZuggl2CmJiKsYbGKC WTCQ7fnqqwGCKL2ABCY7haqMu5mOqvP4iPm31mHKrMjCQ/1vJq9q7eGX4EQCZT4v OXdz9pKMy9gftR8/sFQiR5G1/Dq1C/rYTKILtY53KSMZjI6yC4wFDUmj6zb93rkn VLScFExXV/hrBRkP7H6+Mv5sJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqhYBkF JW51mrlk6q27sayq/si0MB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCupA2+SiRBJuaIcHDIjoke3eIe0hMwvyYlMyr3ohLZNq/Y6RT6IjY 1JaGRSQYNMK8PdLzZuM/qDEiT7jpwc8IZlXME4SMdssDUN03Kt0SkIqCdCfe2NTX zJIqjNiwF20NDa5MWoaKCy/gAPTHWL6DTha6/Shak1Ay4jMMzrQLchSXOPDPLInT D6p3WuXxAQi/kUtqKy4FtO5WYvh0A00LaMWZr29n3EV6q6/dsfdDhWyFIz1LSEyc Xxy4iBrwfj3SNGaEWWNLNFaJ5mXCUOQ9EwocO4aBSzmJ59r8weA5P6YsiUEcQ2h3 xDZcWLD85BCYhvWp0Y39iLs4mYHeK5nM -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:38 2025 by rpki-client