$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: 6zBk1Qpt3y7JduSV0dzHwDzCufw8Zy6scYX55M+4nsM= Subject key identifier: D2:05:91:F2:BE:A2:F1:7C:DB:1B:8C:B0:60:55:E1:FC:C0:75:0D:D9 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 02E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 02E8 Signing time: Mon 05 May 2025 00:53:19 +0000 Manifest this update: Mon 05 May 2025 00:53:19 +0000 Manifest next update: Mon 12 May 2025 00:53:19 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: ThFN9VJMcQhXZKlK1ScmZuwkLVVGreC2ew95gAeTPCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: May 5 00:53:19 2025 GMT Not After : May 12 00:53:19 2025 GMT Subject: CN=68180bff-10c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:77:ca:4d:b5:45:dc:9a:8f:d0:c1:48:c1:b4: 79:b6:f8:69:35:93:80:15:36:c3:42:bf:a3:45:4e: fd:75:64:72:63:83:37:3f:ab:78:83:77:2a:28:a8: 8b:09:99:4d:bd:eb:9e:44:73:32:49:b7:67:b5:7b: 37:b8:d1:c7:b8:18:78:35:0d:1a:2b:39:a8:7f:95: 11:75:bd:45:03:00:e2:9a:9c:87:5e:5f:5a:88:4e: 17:1f:28:6c:b8:a0:b7:66:cd:ca:22:64:6b:a4:98: eb:a2:a1:86:48:88:c8:ef:a5:56:f8:54:25:98:58: 0b:5d:46:a8:5f:66:55:e3:2d:0d:79:cd:72:eb:f3: 9c:00:37:3b:3b:1c:4c:c6:9d:c0:e5:cb:b5:9f:b5: a4:62:4c:cf:e2:38:6d:e1:db:69:87:7f:3b:8e:8e: 82:83:2e:e6:5b:29:5a:85:70:32:71:5f:a9:31:02: 70:99:e8:7f:95:0a:4e:b7:ba:c9:ea:41:b7:c8:9c: 79:10:c7:09:c8:be:fe:ce:2e:34:02:99:51:91:a1: ad:b8:d8:bd:87:c9:cb:a8:1c:77:b5:3a:6a:3e:9f: 3d:c4:78:7f:14:66:d8:4d:5b:a7:4a:dc:e7:27:c9: 4f:1a:5f:b6:b6:33:cc:fa:06:06:6e:b5:b3:f0:89: 8c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:05:91:F2:BE:A2:F1:7C:DB:1B:8C:B0:60:55:E1:FC:C0:75:0D:D9 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:49:a6:47:af:e1:db:65:85:62:6f:a4:8c:08:07:be:b8:dc: e1:ca:69:f0:3c:90:9a:2a:16:b0:9b:1a:43:d9:72:39:e9:85: 2a:03:d6:f4:16:a6:e8:1f:01:16:3b:3a:bb:47:a3:d5:7b:79: ed:b1:c5:76:7a:0f:f8:1b:99:4c:27:3a:36:eb:4e:74:eb:ed: bc:f6:0e:98:a3:ae:ef:71:4b:48:a2:c7:ef:4a:e0:ab:f0:f6: 19:10:94:8c:ea:38:c1:cb:2b:3e:42:4d:9c:13:45:c2:1b:96: 9e:2c:04:34:0a:5d:e3:09:7d:13:d7:7c:ab:f2:c4:92:dc:62: 3d:48:4e:12:0c:fd:27:24:03:38:88:e3:e3:f8:8c:d9:ff:e3: 8a:a9:f5:4b:e6:18:7b:df:9e:ec:83:e7:b6:13:e1:c7:cf:d2: 1d:89:97:66:0f:96:b1:48:4d:02:0d:0c:5a:b7:68:b6:22:19: ce:0b:df:95:1b:7e:81:7c:50:3b:44:d2:ed:3f:7d:4f:fe:38: e5:cf:b9:7f:ec:58:c1:2d:f4:a8:7d:20:9c:71:d2:8b:bd:65: 6e:ae:2a:f7:ee:17:6f:23:b2:87:85:2a:7f:45:2f:6e:aa:a6: 74:85:2d:14:cf:2e:9c:48:cb:94:c4:9a:46:d8:fb:0d:51:fe: bc:57:2c:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUwNTA1MDA1MzE5WhcNMjUwNTEyMDA1MzE5WjAYMRYwFAYD VQQDEw02ODE4MGJmZi0xMGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nfKTbVF3JqP0MFIwbR5tvhpNZOAFTbDQr+jRU79dWRyY4M3P6t4g3cqKKiL CZlNveueRHMySbdntXs3uNHHuBh4NQ0aKzmof5URdb1FAwDimpyHXl9aiE4XHyhs uKC3Zs3KImRrpJjroqGGSIjI76VW+FQlmFgLXUaoX2ZV4y0Nec1y6/OcADc7OxxM xp3A5cu1n7WkYkzP4jht4dtph387jo6Cgy7mWylahXAycV+pMQJwmeh/lQpOt7rJ 6kG3yJx5EMcJyL7+zi40AplRkaGtuNi9h8nLqBx3tTpqPp89xHh/FGbYTVunStzn J8lPGl+2tjPM+gYGbrWz8ImM+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIFkfK+ ovF82xuMsGBV4fzAdQ3ZMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7SaZHr+HbZYVib6SMCAe+uNzhymnwPJCaKhawmxpD2XI56YUqA9b0 FqboHwEWOzq7R6PVe3ntscV2eg/4G5lMJzo260506+289g6Yo67vcUtIosfvSuCr 8PYZEJSM6jjByys+Qk2cE0XCG5aeLAQ0Cl3jCX0T13yr8sSS3GI9SE4SDP0nJAM4 iOPj+IzZ/+OKqfVL5hh7357sg+e2E+HHz9IdiZdmD5axSE0CDQxat2i2IhnOC9+V G36BfFA7RNLtP31P/jjlz7l/7FjBLfSofSCccdKLvWVurir37hdvI7KHhSp/RS9u qqZ0hS0Uzy6cSMuUxJpG2PsNUf68Vyyh -----END CERTIFICATE-----Generated at Tue May 6 10:33:27 2025 by rpki-client