$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: IoKTiTBCNRFMczj70lrsaxSM2vA0gmeuQXqLEtokVus= Subject key identifier: 91:6D:C0:7A:C7:70:E3:BF:49:09:D7:84:5E:97:B6:B6:E5:77:47:FC Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 012B Signing time: Thu 15 May 2025 03:58:48 +0000 Manifest this update: Thu 15 May 2025 03:58:47 +0000 Manifest next update: Thu 22 May 2025 03:58:47 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: Egd/Bw/2iBeu4C4at7oK2PRhUuP/AfMnbGnJTS6f2GA=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: YxGxJeshNnV3Vuuq1mbiFcEZbIJHwrpzAcTYwU5uciY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: May 15 03:58:47 2025 GMT Not After : May 22 03:58:47 2025 GMT Subject: CN=68256678-e467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:68:87:08:ab:1e:8a:7b:d7:7c:e6:aa:c2:26: d5:53:2d:b5:6a:cd:3e:62:45:da:c8:1b:85:8d:68: d6:db:2c:85:ae:f6:48:ee:9f:07:19:21:c1:d9:bb: b1:2e:ba:5b:52:9b:4c:a3:e3:66:26:dc:51:56:96: a6:c0:be:ef:41:2f:7c:d2:43:9d:7a:49:dd:0a:78: d5:a0:97:d4:f3:a4:7a:c7:64:c3:81:90:b9:b6:9d: d5:3c:12:80:06:ce:d6:65:e6:0b:90:fc:ae:d8:90: 25:20:b8:b3:f7:c7:7f:0a:d9:d1:b7:76:09:19:cf: 74:4c:14:cf:83:b0:0e:1a:78:ee:65:84:94:28:a6: e9:5f:20:8c:56:26:88:53:e4:35:78:3a:41:71:0a: 11:57:87:d6:84:2e:f1:b9:07:4f:28:b4:83:80:ca: 49:c6:cc:1a:e7:6f:02:0c:81:88:d4:3e:04:73:7a: 04:cb:6a:fd:8e:71:39:24:c7:c4:a0:5e:10:1d:1a: 68:59:76:21:bb:1c:53:df:de:db:bf:83:8b:a8:a7: ac:8f:85:89:b9:a8:60:6a:0c:6c:e2:bd:39:be:66: d0:8b:89:36:07:98:1c:7a:39:a8:9b:b0:2d:31:12: 3a:bb:d2:bf:6e:c3:8f:fa:37:99:fa:08:ba:d3:83: bb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6D:C0:7A:C7:70:E3:BF:49:09:D7:84:5E:97:B6:B6:E5:77:47:FC X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b8:01:cd:07:75:ae:c0:7c:d0:06:c7:d4:86:53:0f:52:c7: 5e:f8:9e:23:e8:f5:f3:c7:84:44:a4:56:9e:ff:21:47:17:4a: 01:1f:e1:86:57:9a:07:9f:67:8d:2b:a3:05:5f:61:e2:9c:53: 0c:60:ff:45:05:f4:5d:4b:2b:99:6d:79:27:43:61:b4:d3:20: c1:00:00:c2:7a:d4:c6:70:15:e5:21:52:86:f9:d1:35:29:74: 41:25:09:97:88:dc:5f:69:df:89:26:fe:50:98:a3:d4:df:03: 54:1a:6d:57:9d:1c:63:05:81:62:a0:32:13:3f:e0:13:32:58: c2:9a:f2:aa:eb:8f:de:6a:d8:85:46:63:74:0a:78:54:6f:9d: 57:4e:46:dd:bf:33:1a:e5:83:d5:6c:69:7a:00:86:77:2e:09: 72:b3:b8:99:19:47:ff:ca:cb:66:b3:dd:db:a3:bc:58:44:08: ca:0e:ff:4f:6c:a7:43:01:8f:16:38:aa:5f:53:eb:a3:75:f9: 61:f1:21:01:89:f4:67:5b:c3:fd:22:c5:7c:da:a0:7e:02:23: 85:83:7c:dd:f2:2e:14:09:7c:e3:c7:76:0d:7c:e3:0d:32:fd: a4:2a:a3:46:0a:13:d5:b9:d1:56:7b:6f:a2:d5:03:51:ab:a1: 06:9a:0b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwNTE1MDM1ODQ3WhcNMjUwNTIyMDM1ODQ3WjAYMRYwFAYD VQQDEw02ODI1NjY3OC1lNDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWiHCKseinvXfOaqwibVUy21as0+YkXayBuFjWjW2yyFrvZI7p8HGSHB2bux LrpbUptMo+NmJtxRVpamwL7vQS980kOdekndCnjVoJfU86R6x2TDgZC5tp3VPBKA Bs7WZeYLkPyu2JAlILiz98d/CtnRt3YJGc90TBTPg7AOGnjuZYSUKKbpXyCMViaI U+Q1eDpBcQoRV4fWhC7xuQdPKLSDgMpJxswa528CDIGI1D4Ec3oEy2r9jnE5JMfE oF4QHRpoWXYhuxxT397bv4OLqKesj4WJuahgagxs4r05vmbQi4k2B5gcejmom7At MRI6u9K/bsOP+jeZ+gi604O75QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFtwHrH cOO/SQnXhF6Xtrbld0f8MB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsuAHNB3WuwHzQBsfUhlMPUsde+J4j6PXzx4REpFae/yFHF0oBH+GG V5oHn2eNK6MFX2HinFMMYP9FBfRdSyuZbXknQ2G00yDBAADCetTGcBXlIVKG+dE1 KXRBJQmXiNxfad+JJv5QmKPU3wNUGm1XnRxjBYFioDITP+ATMljCmvKq64/eatiF RmN0CnhUb51XTkbdvzMa5YPVbGl6AIZ3Lglys7iZGUf/ystms93bo7xYRAjKDv9P bKdDAY8WOKpfU+ujdflh8SEBifRnW8P9IsV82qB+AiOFg3zd8i4UCXzjx3YNfOMN Mv2kKqNGChPVudFWe2+i1QNRq6EGmguS -----END CERTIFICATE-----Generated at Thu May 15 23:02:39 2025 by rpki-client