$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft File: 6XepImIg6MeKHRs74E1gzcyKIYg.mft (raw, json) Hash identifier: zRYnr0ISNyv750RDWilIgg2wGCfzw8P2d7PUGXAj+lM= Subject key identifier: 16:FF:E5:BD:38:A2:4C:4D:4A:3F:CE:A0:17:17:E1:51:A2:E5:35:7A Authority key identifier: E9:77:A9:22:62:20:E8:C7:8A:1D:1B:3B:E0:4D:60:CD:CC:8A:21:88 Certificate issuer: /CN=A91FC5BD/serialNumber=E977A9226220E8C78A1D1B3BE04D60CDCC8A2188 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft Manifest number: AD Signing time: Fri 25 Apr 2025 05:05:36 +0000 Manifest this update: Fri 25 Apr 2025 05:05:36 +0000 Manifest next update: Fri 02 May 2025 05:05:36 +0000 Files and hashes: 1: 6XepImIg6MeKHRs74E1gzcyKIYg.crl (hash: cTDDr30HQlc4oVA/o8wNxiahXSuOrSoMcizDr5zUVgg=) 2: 1101B5C01CEC11EFA7CDC085C4F9AE02.roa (hash: BZA1P97SNGTrhAAl2/Ui2Ojz/Jo4Dfx0oXuCfnfQd+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.crl rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC5BD, serialNumber=E977A9226220E8C78A1D1B3BE04D60CDCC8A2188 Validity Not Before: Apr 25 05:05:36 2025 GMT Not After : May 2 05:05:36 2025 GMT Subject: CN=680b1820-9c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a1:38:cd:e3:86:8c:0c:51:ba:ea:a0:35:06: 2a:62:ad:a6:4e:26:3e:f4:c9:61:16:7a:83:35:3f: f4:92:4b:88:82:55:88:11:f5:71:61:2d:f0:e9:d0: e7:2f:3f:54:33:48:c4:ea:dd:84:4c:93:3d:7b:be: 0d:7b:60:fc:5d:7a:3b:2c:ea:57:db:21:20:07:2d: ea:ff:24:a6:e1:93:2c:78:94:25:1e:82:dc:8a:73: 1f:bd:df:69:02:8b:cb:3f:5a:0d:d3:60:41:10:cc: a0:dd:35:6c:de:19:d3:b3:bc:f9:3e:ed:09:78:19: 46:94:b8:7b:b4:82:0a:eb:3b:2e:64:37:8c:da:e2: c9:8e:c6:46:cf:c8:29:26:b6:d4:cf:d8:b6:61:e5: 6b:7e:90:f1:66:34:b0:10:55:a7:55:58:b5:23:20: 25:11:bd:bc:2d:d0:89:93:ef:0f:3b:ee:dc:45:a5: c3:f6:16:9e:71:14:d9:6b:da:2b:5e:0c:2b:6c:e2: 56:f5:e9:48:45:35:34:75:47:fc:37:57:15:6f:06: 45:f9:7d:d9:61:fa:b8:62:bf:4b:ae:18:bd:82:05: 95:9b:be:d2:ed:f9:16:6c:15:f0:1d:25:ac:72:9e: ab:9e:21:c9:44:f6:6a:a2:37:2d:02:d8:50:35:e5: ac:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FF:E5:BD:38:A2:4C:4D:4A:3F:CE:A0:17:17:E1:51:A2:E5:35:7A X509v3 Authority Key Identifier: keyid:E9:77:A9:22:62:20:E8:C7:8A:1D:1B:3B:E0:4D:60:CD:CC:8A:21:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:35:28:a4:f2:62:17:b1:a4:3e:22:5c:9e:0e:a3:38:01:ed: b1:b4:fa:ad:b0:dd:9f:9a:20:e6:2f:93:0b:db:1a:1b:f0:b7: 53:72:68:92:44:63:7d:1b:71:4d:da:78:c7:ce:69:b7:3a:94: 3a:16:4a:06:6d:4f:7f:c8:55:9e:3c:33:2d:d4:f1:76:d5:bb: d8:90:4f:4a:b7:c2:92:ac:0c:d0:a6:91:eb:dd:cb:84:2b:ed: 67:5e:89:45:a0:ee:7f:cb:78:9b:f2:30:3a:26:e2:22:53:5a: b7:e0:53:98:76:d7:ae:bd:9e:47:4d:ff:de:5b:2c:ae:87:c6: 10:99:0e:ba:ab:12:40:ae:e4:c6:26:2f:53:6c:07:38:bc:58: db:9b:67:9e:73:b8:b6:e3:84:5d:00:45:42:fa:d7:40:c5:1e: 03:0a:b8:26:54:b9:85:a8:41:52:20:01:8f:29:c8:f7:67:c4: a8:57:ee:d6:8f:1a:bd:46:54:a3:53:dd:2c:bb:6b:50:a4:65: 4e:e2:ba:6b:25:10:1b:f7:d8:ab:a2:30:9f:cb:c4:07:3a:93: 9f:be:e0:90:9d:eb:6b:13:7d:1f:f3:1b:bc:7b:43:4d:67:10: 56:25:4e:fa:e2:f6:00:bf:26:96:6f:8b:04:4f:5c:ff:07:a8: eb:de:6e:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM1QkQxMTAvBgNVBAUTKEU5NzdBOTIyNjIyMEU4Qzc4QTFEMUIzQkUwNEQ2MENE Q0M4QTIxODgwHhcNMjUwNDI1MDUwNTM2WhcNMjUwNTAyMDUwNTM2WjAYMRYwFAYD VQQDEw02ODBiMTgyMC05YzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqE4zeOGjAxRuuqgNQYqYq2mTiY+9MlhFnqDNT/0kkuIglWIEfVxYS3w6dDn Lz9UM0jE6t2ETJM9e74Ne2D8XXo7LOpX2yEgBy3q/ySm4ZMseJQlHoLcinMfvd9p AovLP1oN02BBEMyg3TVs3hnTs7z5Pu0JeBlGlLh7tIIK6zsuZDeM2uLJjsZGz8gp JrbUz9i2YeVrfpDxZjSwEFWnVVi1IyAlEb28LdCJk+8PO+7cRaXD9haecRTZa9or XgwrbOJW9elIRTU0dUf8N1cVbwZF+X3ZYfq4Yr9Lrhi9ggWVm77S7fkWbBXwHSWs cp6rniHJRPZqojctAthQNeWsawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBb/5b04 okxNSj/OoBcX4VGi5TV6MB8GA1UdIwQYMBaAFOl3qSJiIOjHih0bO+BNYM3MiiGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzVCRC83NkMyQzcyRTFD RUIxMUVGODVERkQ3NzZDNEY5QUUwMi82WGVwSW1JZzZNZUtIUnM3NEUxZ3pjeUtJ WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZYZXBJbUlnNk1lS0hSczc0RTFnemN5S0lZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzVCRC83NkMyQzcyRTFDRUIxMUVGODVERkQ3NzZDNEY5QUUwMi82WGVwSW1JZzZN ZUtIUnM3NEUxZ3pjeUtJWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2NSik8mIXsaQ+IlyeDqM4Ae2xtPqtsN2fmiDmL5ML2xob8LdTcmiS RGN9G3FN2njHzmm3OpQ6FkoGbU9/yFWePDMt1PF21bvYkE9Kt8KSrAzQppHr3cuE K+1nXolFoO5/y3ib8jA6JuIiU1q34FOYdteuvZ5HTf/eWyyuh8YQmQ66qxJAruTG Ji9TbAc4vFjbm2eec7i244RdAEVC+tdAxR4DCrgmVLmFqEFSIAGPKcj3Z8SoV+7W jxq9RlSjU90su2tQpGVO4rprJRAb99irojCfy8QHOpOfvuCQnetrE30f8xu8e0NN ZxBWJU764vYAvyaWb4sET1z/B6jr3m7w -----END CERTIFICATE-----Generated at Sat Apr 26 12:39:31 2025 by rpki-client