$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: poSHaGkupjyCynBkPjxJgbL+hW4EfsURoGMrzCzSbP4= Subject key identifier: 34:F2:31:16:D6:28:01:5F:B0:7A:D1:8A:DB:19:1E:8E:C0:8D:F5:63 Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: EC Signing time: Sat 03 May 2025 04:41:28 +0000 Manifest this update: Sat 03 May 2025 04:41:28 +0000 Manifest next update: Sat 10 May 2025 04:41:27 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: JLQOhPF2DWpOBv+iusTRoEuzT7R32xLdy7dJ0uaEYo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 04:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD, serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: May 3 04:41:28 2025 GMT Not After : May 10 04:41:27 2025 GMT Subject: CN=68159e78-61ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:da:98:ae:4b:b3:ef:3f:9a:77:04:9c:90:5d: 06:04:9f:ec:5e:dc:27:ce:6d:f7:58:ec:1f:c2:20: 28:db:97:87:8d:b3:1a:ef:0b:16:b7:cb:63:ef:b3: f3:11:b6:bc:82:fd:7a:a9:a9:d4:3c:1b:8e:9a:bb: c7:c3:d0:83:f0:4c:c1:06:c4:b5:8e:b6:6e:54:a1: f6:87:cd:8b:09:90:22:6b:b9:74:65:5d:ad:27:07: b8:b4:55:98:ff:87:ea:81:6f:24:3e:67:50:e9:a5: 18:c6:c4:79:dd:d4:b9:24:06:8d:1d:76:e2:bf:30: 10:9f:1c:a6:72:c1:c9:a0:7a:f7:33:ba:ea:90:ab: f3:7b:d7:a6:59:fe:01:14:09:82:d8:fc:f0:c8:a9: c7:f4:93:5e:ee:d0:d6:92:37:8f:8b:d6:ae:5c:3e: fb:08:56:a6:83:60:a8:ee:27:6d:42:87:69:6a:0b: 06:1b:9e:89:a7:3b:40:32:cb:2e:ad:23:5d:81:d2: 9e:f1:79:62:85:91:ce:f4:74:e4:57:14:65:82:b2: 58:47:dc:75:94:19:37:24:48:69:35:46:8d:77:f5: a1:3d:7f:14:d0:6f:02:4b:5f:d0:72:f9:41:9b:d5: 6e:c4:76:02:38:0b:8e:7c:b3:58:d8:90:e5:17:51: 8e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F2:31:16:D6:28:01:5F:B0:7A:D1:8A:DB:19:1E:8E:C0:8D:F5:63 X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:58:04:23:1f:5d:23:21:d1:0e:e9:92:60:d5:f3:2d:bf:bd: 54:af:37:58:ec:c9:b0:28:e1:a1:7b:e6:65:ee:d9:48:24:56: bc:45:9b:42:8b:64:60:27:c6:1a:04:de:81:01:e6:eb:5e:20: fb:88:68:23:f3:70:3d:54:db:f0:6a:0e:ce:6f:c4:cd:79:7e: be:1e:a3:80:20:84:90:2a:c9:73:a7:7d:41:70:ef:7d:8a:27: 57:3e:51:1b:e8:d7:91:20:ca:d8:4b:c6:79:c9:f5:74:b8:da: 98:3a:10:9d:95:c6:3f:a2:5c:33:08:85:e4:f4:1d:13:da:6a: bd:19:3f:64:9b:1c:c3:e0:a7:94:eb:84:09:b1:13:66:0b:69: 60:b4:62:53:4a:38:05:e4:24:aa:50:a8:af:2e:69:19:fe:b6: 54:2e:c8:00:01:d1:91:7f:37:1c:18:9e:f3:f1:fc:0e:c9:92: 47:37:ad:a4:fc:81:d3:31:38:d1:49:ff:4d:bc:2f:74:8e:54: d8:f7:13:78:aa:44:5f:10:c1:99:66:fb:2a:0d:de:60:90:f3: a2:dc:30:3c:44:d2:c8:ab:eb:03:3e:fb:ff:1d:83:c9:cd:e5: 71:b2:28:03:8e:29:de:55:cb:65:60:6b:c9:30:2d:77:e6:2f: 29:d4:4b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc2QUQxMTAvBgNVBAUTKEM0QjYyNTAzRTZENjcwMkFDMjlEMDBCRjM1MEM4QjJD MTJFNzlGMDUwHhcNMjUwNTAzMDQ0MTI4WhcNMjUwNTEwMDQ0MTI3WjAYMRYwFAYD VQQDEw02ODE1OWU3OC02MWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNqYrkuz7z+adwSckF0GBJ/sXtwnzm33WOwfwiAo25eHjbMa7wsWt8tj77Pz Eba8gv16qanUPBuOmrvHw9CD8EzBBsS1jrZuVKH2h82LCZAia7l0ZV2tJwe4tFWY /4fqgW8kPmdQ6aUYxsR53dS5JAaNHXbivzAQnxymcsHJoHr3M7rqkKvze9emWf4B FAmC2PzwyKnH9JNe7tDWkjePi9auXD77CFamg2Co7idtQodpagsGG56JpztAMssu rSNdgdKe8XlihZHO9HTkVxRlgrJYR9x1lBk3JEhpNUaNd/WhPX8U0G8CS1/QcvlB m9VuxHYCOAuOfLNY2JDlF1GOhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTyMRbW KAFfsHrRitsZHo7AjfVjMB8GA1UdIwQYMBaAFMS2JQPm1nAqwp0AvzUMiywS558F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzZBRC8wN0Y1MkU0NkJF ODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2NDckNuUUNfTlF5TExCTG5u d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzZBRC8wN0Y1MkU0NkJFODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2ND ckNuUUNfTlF5TExCTG5ud1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQWAQjH10jIdEO6ZJg1fMtv71UrzdY7MmwKOGhe+Zl7tlIJFa8RZtC i2RgJ8YaBN6BAebrXiD7iGgj83A9VNvwag7Ob8TNeX6+HqOAIISQKslzp31BcO99 iidXPlEb6NeRIMrYS8Z5yfV0uNqYOhCdlcY/olwzCIXk9B0T2mq9GT9kmxzD4KeU 64QJsRNmC2lgtGJTSjgF5CSqUKivLmkZ/rZULsgAAdGRfzccGJ7z8fwOyZJHN62k /IHTMTjRSf9NvC90jlTY9xN4qkRfEMGZZvsqDd5gkPOi3DA8RNLIq+sDPvv/HYPJ zeVxsigDjineVctlYGvJMC135i8p1Eu/ -----END CERTIFICATE-----Generated at Mon May 5 03:21:52 2025 by rpki-client