$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: kZGIk9VYv8rYNoc3Pg5KLFw3YXzs91r8cwgVryNss7s= Subject key identifier: 8C:45:5D:9E:B8:7C:59:25:07:09:85:99:35:B6:15:B3:80:DA:39:9F Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 0F Signing time: Tue 13 May 2025 07:19:17 +0000 Manifest this update: Tue 13 May 2025 07:19:17 +0000 Manifest next update: Tue 20 May 2025 07:19:17 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: ufonqmZ7O/yg195JsiX7wFdZ1m+Yd/AEFhP+bdU+g0U=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:19:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: May 13 07:19:17 2025 GMT Not After : May 20 07:19:17 2025 GMT Subject: CN=6822f275-934a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f2:61:17:82:d8:65:6e:b0:f5:e0:fe:fa:1d: 6d:a7:e2:76:1f:b2:5d:f3:b1:b2:6d:cc:0f:d8:01: d0:7e:67:39:58:fe:15:80:7d:1a:18:e9:95:c1:6c: 3f:9f:c6:4a:28:57:f5:28:b3:3f:2d:aa:51:a1:0a: bc:68:20:ef:79:77:bf:ae:3d:b3:c7:c9:1a:08:2c: 0a:da:b3:e0:1b:b8:1d:04:70:ad:9f:53:46:77:51: f0:18:26:43:60:15:32:13:ca:0a:32:fd:f7:ec:a8: ec:f5:e6:03:3b:4c:82:74:f3:a4:e1:eb:33:b4:13: 97:d4:42:70:f6:7c:40:db:50:9f:14:ee:b9:4f:9f: 31:78:51:dd:e5:76:62:78:59:69:af:5c:1e:cf:8c: 6c:70:c2:a4:22:93:e2:24:4e:e8:39:f7:76:3a:08: d8:e9:fb:f9:fb:f8:0e:cf:f9:59:cc:42:43:6f:6b: 39:d7:fa:fd:c0:ac:bb:66:b8:4f:0b:02:b0:f7:44: ee:c0:77:c9:b7:f6:77:c8:66:41:35:9e:29:c2:60: d0:ec:44:45:0f:d3:16:2d:79:e1:0c:aa:32:8c:e0: ef:b2:13:a6:cc:ca:ab:8c:b5:85:36:2b:2a:7e:e7: 01:c0:d1:d2:04:60:45:c7:f8:04:4d:db:34:b6:60: c7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:45:5D:9E:B8:7C:59:25:07:09:85:99:35:B6:15:B3:80:DA:39:9F X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c4:fd:b4:3c:d4:32:ec:06:70:d8:21:20:72:d9:79:e8:c4: 3b:00:2c:31:67:94:42:eb:ca:1d:96:87:30:c1:40:cd:60:33: ac:f6:5f:fc:dc:ca:f4:fd:c4:57:55:23:58:2e:01:5d:81:f6: 2f:89:f9:6d:27:1c:bd:f1:b5:15:0b:b5:34:81:b1:5c:eb:b0: 1b:25:17:b9:15:5e:78:80:c0:e3:fd:73:0e:02:51:4a:d6:71: e3:66:e0:08:3e:5a:c2:3c:75:c8:e0:78:cb:a4:12:17:f8:04: 34:5b:f5:0b:64:30:7e:99:61:33:76:05:85:1c:ef:1f:11:7d: bb:81:d6:ad:12:4a:46:a0:17:8d:b8:de:0a:45:15:6e:00:4b: e6:b6:b3:e9:a3:6c:90:97:2f:fe:a9:97:46:00:15:4b:57:3e: d6:05:73:74:be:26:9c:1e:c4:6b:26:3c:3f:5a:73:4c:0f:96: 87:11:5d:d3:e9:96:88:08:a9:a2:60:5d:d9:16:1a:05:25:30: cc:9d:1c:b0:86:fc:44:77:7b:91:74:21:97:8a:9c:ed:27:4c: 22:7a:e1:a5:4f:ab:23:4e:69:27:3e:61:e6:25:a5:50:a0:c9: 91:76:e3:c2:59:1d:9c:c7:44:ba:46:fc:c5:b3:14:5b:81:bf: 28:ca:1b:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA1MTMwNzE5MTdaFw0yNTA1MjAwNzE5MTdaMBgxFjAUBgNV BAMTDTY4MjJmMjc1LTkzNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO8mEXgthlbrD14P76HW2n4nYfsl3zsbJtzA/YAdB+ZzlY/hWAfRoY6ZXBbD+f xkooV/Uosz8tqlGhCrxoIO95d7+uPbPHyRoILAras+AbuB0EcK2fU0Z3UfAYJkNg FTITygoy/ffsqOz15gM7TIJ086Th6zO0E5fUQnD2fEDbUJ8U7rlPnzF4Ud3ldmJ4 WWmvXB7PjGxwwqQik+IkTug593Y6CNjp+/n7+A7P+VnMQkNvaznX+v3ArLtmuE8L ArD3RO7Ad8m39nfIZkE1ninCYNDsREUP0xYteeEMqjKM4O+yE6bMyquMtYU2Kyp+ 5wHA0dIEYEXH+ARN2zS2YMfzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjEVdnrh8 WSUHCYWZNbYVs4DaOZ8wHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACbE/bQ81DLsBnDYISBy2XnoxDsALDFnlELryh2WhzDBQM1gM6z2X/zc yvT9xFdVI1guAV2B9i+J+W0nHL3xtRULtTSBsVzrsBslF7kVXniAwOP9cw4CUUrW ceNm4Ag+WsI8dcjgeMukEhf4BDRb9QtkMH6ZYTN2BYUc7x8RfbuB1q0SSkagF424 3gpFFW4AS+a2s+mjbJCXL/6pl0YAFUtXPtYFc3S+JpwexGsmPD9ac0wPlocRXdPp logIqaJgXdkWGgUlMMydHLCG/ER3e5F0IZeKnO0nTCJ64aVPqyNOaSc+YeYlpVCg yZF248JZHZzHRLpG/MWzFFuBvyjKGz8= -----END CERTIFICATE-----Generated at Thu May 15 03:03:45 2025 by rpki-client