$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: iqW8cq9SB3Fd3s0g/DmVPfLFywzcKH8RonVIWvV9V5Q= Subject key identifier: 0E:8A:C2:90:A9:84:DF:65:3A:B6:DD:3A:FB:F2:56:66:B8:B7:30:50 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 36 Signing time: Sun 11 May 2025 06:26:52 +0000 Manifest this update: Sun 11 May 2025 06:26:51 +0000 Manifest next update: Sun 18 May 2025 06:26:51 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: rqr0ncfm3d474kh/eWakADjAX6HFX8ehTKv/cDxzQZk=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: xsROjP2odAWh0kHafpV6U2yAzjD0YVmpO7HNKMKB17M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: May 11 06:26:51 2025 GMT Not After : May 18 06:26:51 2025 GMT Subject: CN=6820432b-aeb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b9:4a:82:bc:6b:7b:23:e6:2c:07:12:d2:b9: f6:5a:39:8d:39:0f:73:17:01:69:17:32:9e:44:f4: b9:e0:11:9f:3e:d2:d9:5d:35:a2:4c:11:c8:9b:93: 2f:34:c8:b4:a9:15:5d:82:22:4b:cf:b8:0b:25:20: e8:6d:cf:db:b4:57:3e:83:32:b9:b4:67:6b:a9:f3: 7c:55:69:bf:75:e1:e2:ab:33:02:f5:4d:20:f7:e6: 15:da:42:3a:9d:c9:25:b9:92:92:cb:90:ee:fd:93: d9:f3:4f:28:9b:78:c7:84:ad:3c:70:36:4d:34:43: 94:32:7d:33:77:8c:0c:35:a7:89:d4:e6:e7:f4:5f: 4c:ce:d7:bc:94:d6:03:1d:59:a0:36:10:ba:1c:fc: d6:23:21:62:80:ad:01:63:03:1d:80:f1:77:e4:04: 8d:72:60:bc:5f:bf:0a:6d:d2:37:a1:6d:1a:11:fc: ff:f3:a4:4a:fe:a5:51:e8:21:c0:45:f9:9a:27:44: 8a:d4:cc:f7:71:35:d5:d5:0a:ee:54:f0:a0:31:3b: bc:44:40:b4:f7:ff:a9:62:08:29:f6:91:88:58:45: aa:e0:7a:e5:29:7f:7e:63:69:0c:dc:71:a6:2d:88: 3a:fa:53:c6:10:49:8d:87:da:f8:63:51:5b:22:2b: a5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:8A:C2:90:A9:84:DF:65:3A:B6:DD:3A:FB:F2:56:66:B8:B7:30:50 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:7e:23:eb:dd:b2:84:25:75:a3:eb:da:4d:23:7d:d5:3b:a8: 17:4c:12:6c:22:96:5a:0a:af:ab:18:c7:76:77:7b:66:47:18: f1:09:04:c2:f2:7e:9a:cd:6a:08:c5:9f:e9:6d:cf:cd:49:d2: 4f:c7:0e:c6:7e:ee:fb:ff:5f:09:98:ef:05:7a:03:16:05:5b: 0d:81:24:16:50:fe:70:8d:1d:f1:76:76:1b:a2:51:da:5b:af: 4e:fb:bf:92:82:0d:19:35:52:70:a4:d2:94:60:da:93:92:0f: f7:0f:06:da:b3:2c:db:ab:3c:b5:0c:5e:4a:9c:5b:44:c2:f3: 4a:72:43:24:60:de:b1:78:15:a8:c2:0d:1c:fe:44:2b:21:1d: 34:fe:08:27:99:85:d9:70:83:4f:50:f2:5c:51:ec:77:4f:c8: 5f:dc:df:9b:67:d7:2f:3c:1a:3f:8a:c2:c1:50:27:33:eb:21: 38:ca:66:8f:0d:12:28:61:98:29:51:b2:e6:53:24:eb:d1:df: c9:56:90:f0:95:52:2f:1c:01:54:54:5f:ac:6e:ee:ff:9b:d3: 78:74:4b:b1:32:7f:b0:97:88:9f:29:4e:86:24:89:67:45:f2: d2:57:5e:91:e5:0e:20:82:47:40:a6:6d:d5:cf:94:d4:b4:f7: d9:ac:a9:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA1MTEwNjI2NTFaFw0yNTA1MTgwNjI2NTFaMBgxFjAUBgNV BAMTDTY4MjA0MzJiLWFlYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTuUqCvGt7I+YsBxLSufZaOY05D3MXAWkXMp5E9LngEZ8+0tldNaJMEcibky80 yLSpFV2CIkvPuAslIOhtz9u0Vz6DMrm0Z2up83xVab914eKrMwL1TSD35hXaQjqd ySW5kpLLkO79k9nzTyibeMeErTxwNk00Q5QyfTN3jAw1p4nU5uf0X0zO17yU1gMd WaA2ELoc/NYjIWKArQFjAx2A8XfkBI1yYLxfvwpt0jehbRoR/P/zpEr+pVHoIcBF +ZonRIrUzPdxNdXVCu5U8KAxO7xEQLT3/6liCCn2kYhYRargeuUpf35jaQzccaYt iDr6U8YQSY2H2vhjUVsiK6VVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDorCkKmE 32U6tt06+/JWZri3MFAwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw RjkwLzA0Nzc5QjlDRUQ4MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFk ald2SlJtdHpRQXVFeS04NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAt+I+vdsoQldaPr2k0jfdU7qBdMEmwilloKr6sYx3Z3e2ZHGPEJBMLy fprNagjFn+ltz81J0k/HDsZ+7vv/XwmY7wV6AxYFWw2BJBZQ/nCNHfF2dhuiUdpb r077v5KCDRk1UnCk0pRg2pOSD/cPBtqzLNurPLUMXkqcW0TC80pyQyRg3rF4FajC DRz+RCshHTT+CCeZhdlwg09Q8lxR7HdPyF/c35tn1y88Gj+KwsFQJzPrITjKZo8N EihhmClRsuZTJOvR38lWkPCVUi8cAVRUX6xu7v+b03h0S7Eyf7CXiJ8pToYkiWdF 8tJXXpHlDiCCR0CmbdXPlNS099msqY4= -----END CERTIFICATE-----Generated at Mon May 12 14:36:51 2025 by rpki-client