$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: ZBJvKvHBLev+ApPCA7X4giR2dDOpkD+A098s09XRI4w= Subject key identifier: ED:85:2C:DB:D9:42:D0:3C:4F:26:27:2E:68:77:C5:B2:2B:B4:FD:78 Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 347A Signing time: Thu 08 May 2025 15:06:27 +0000 Manifest this update: Thu 08 May 2025 15:06:27 +0000 Manifest next update: Thu 15 May 2025 15:06:27 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: wrmF80Bxp/wLobyfmk4Y2+Ne00vovUAnljSautXG7bQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 15:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: May 8 15:06:27 2025 GMT Not After : May 15 15:06:27 2025 GMT Subject: CN=681cc873-434d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e5:2d:a4:58:a3:ae:18:be:f5:c2:42:00:6d: ee:18:d5:05:70:ee:5e:5c:3f:f0:44:be:b8:1e:c5: cf:18:97:c9:c2:e4:cd:72:d7:ec:81:fb:c5:44:dc: af:3c:d0:b7:51:18:29:43:85:c2:b3:be:fc:3c:ed: ce:43:fa:0a:f4:fa:fe:e6:9b:59:24:67:9d:3d:a6: e9:16:c3:c7:e7:a3:34:19:ea:7f:38:a2:1b:4e:c8: 0d:2c:c5:25:32:87:70:7b:ce:d1:cd:39:84:1b:f2: 43:39:e3:f3:dc:89:fd:27:66:c5:e3:1e:5f:41:52: f6:49:5a:2d:f7:74:e5:43:b3:69:c0:96:de:24:3f: e5:be:f6:2d:ad:78:37:a7:ae:5d:7d:bb:a0:2f:48: 18:4a:94:ff:93:96:64:8d:69:b2:18:cb:29:32:1f: b2:14:9f:ae:05:72:c3:23:ca:95:df:5d:30:d4:80: e3:fa:51:51:cc:19:b9:51:d8:ff:bd:17:8e:ef:a8: aa:41:c5:7c:8e:44:a2:90:66:a2:9f:f7:17:47:6f: 75:92:ae:9e:01:c9:17:0e:f5:5e:d9:87:e6:23:b7: 5f:1f:f4:11:fa:f6:c9:11:99:7a:73:72:63:21:6e: 06:68:ad:67:46:2d:12:6d:c4:c6:0b:86:2e:35:85: cc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:85:2C:DB:D9:42:D0:3C:4F:26:27:2E:68:77:C5:B2:2B:B4:FD:78 X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:14:70:92:70:0c:8e:e3:79:f9:c8:e6:d4:97:37:29:8b:77: 9f:32:4a:c0:0e:b6:7c:01:e0:72:b1:36:9a:ca:8f:e6:95:2d: 58:29:05:a3:8b:c3:38:11:ad:06:22:86:78:9a:be:d5:d0:03: 29:71:9c:85:f6:eb:fc:07:dd:23:da:19:53:7d:dd:f2:58:cb: f7:b0:d1:e4:5e:6d:00:6f:bf:93:6d:10:23:fe:a6:d6:9d:0d: 83:da:42:9c:ed:8e:7e:80:16:ba:22:ff:a8:42:65:a4:d6:4a: ff:42:1c:18:3f:28:6d:f7:12:5c:14:5e:39:1a:56:f8:8d:7b: 68:08:9b:2c:e9:6e:47:f4:4e:43:07:bb:c6:13:7f:21:d3:8d: 62:8c:21:fa:6b:b0:c8:27:7e:39:14:e5:25:c5:5f:dd:b2:bb: 11:38:ae:99:9b:7a:40:c0:15:1a:b2:b9:7b:3f:47:b4:f5:5f: 5c:ad:87:59:02:50:73:53:b8:3c:57:dd:69:bd:37:0b:a5:e6: ec:5a:04:d8:be:b6:60:3e:6c:28:c4:a0:85:98:65:1a:db:0c: bb:72:60:56:55:16:ae:4a:e8:2e:0e:42:d9:21:29:a1:1a:8d: 0b:ee:cd:bf:78:75:e1:0b:8e:ee:a4:c5:c4:ce:2f:b7:64:0d: bc:7c:59:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUwNTA4MTUwNjI3WhcNMjUwNTE1MTUwNjI3WjAYMRYwFAYD VQQDEw02ODFjYzg3My00MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuUtpFijrhi+9cJCAG3uGNUFcO5eXD/wRL64HsXPGJfJwuTNctfsgfvFRNyv PNC3URgpQ4XCs778PO3OQ/oK9Pr+5ptZJGedPabpFsPH56M0Gep/OKIbTsgNLMUl Modwe87RzTmEG/JDOePz3In9J2bF4x5fQVL2SVot93TlQ7NpwJbeJD/lvvYtrXg3 p65dfbugL0gYSpT/k5ZkjWmyGMspMh+yFJ+uBXLDI8qV310w1IDj+lFRzBm5Udj/ vReO76iqQcV8jkSikGain/cXR291kq6eAckXDvVe2YfmI7dfH/QR+vbJEZl6c3Jj IW4GaK1nRi0SbcTGC4YuNYXMbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2FLNvZ QtA8TyYnLmh3xbIrtP14MB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdFHCScAyO43n5yObUlzcpi3efMkrADrZ8AeBysTaayo/mlS1YKQWj i8M4Ea0GIoZ4mr7V0AMpcZyF9uv8B90j2hlTfd3yWMv3sNHkXm0Ab7+TbRAj/qbW nQ2D2kKc7Y5+gBa6Iv+oQmWk1kr/QhwYPyht9xJcFF45Glb4jXtoCJss6W5H9E5D B7vGE38h041ijCH6a7DIJ345FOUlxV/dsrsROK6Zm3pAwBUasrl7P0e09V9crYdZ AlBzU7g8V91pvTcLpebsWgTYvrZgPmwoxKCFmGUa2wy7cmBWVRauSuguDkLZISmh Go0L7s2/eHXhC47upMXEzi+3ZA28fFk/ -----END CERTIFICATE-----Generated at Sat May 10 14:53:38 2025 by rpki-client