$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: +RhHrWzhd6mX5R+wHKLDRWqTntqaMm34tA5/xJXrKe0= Subject key identifier: 22:E5:04:BC:1D:FA:9C:8A:B6:30:89:AF:9E:6A:37:3B:4C:DB:D7:05 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 02A6 Signing time: Tue 13 May 2025 01:16:47 +0000 Manifest this update: Tue 13 May 2025 01:16:46 +0000 Manifest next update: Tue 20 May 2025 01:16:46 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: N+P19NXkltLh6A/dTzbh2rB8lMlDeH47uWEaMGOoc/w=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: jZodcyxZ4nUw78pUbwh5qrFajwuNLHaye10ReDwTgoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: May 13 01:16:46 2025 GMT Not After : May 20 01:16:46 2025 GMT Subject: CN=68229d7e-5575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:42:91:8c:6e:fc:6b:31:d3:34:06:0d:c1:b6: cb:da:ee:a7:95:e3:8e:25:f4:89:04:50:cd:ae:63: 7c:18:c1:c4:b9:4b:a8:51:d1:d0:2a:1e:7c:35:1d: 73:e5:da:e2:26:97:0d:36:07:95:34:fc:20:58:19: b0:22:cc:d7:cc:8d:fa:1b:16:94:c8:f9:83:fc:3f: d5:cc:c5:6b:63:bc:c7:97:6a:02:5c:e8:b2:a5:97: 2a:dc:ff:f3:e0:7b:05:93:f5:1d:fb:27:fa:4f:8c: 5a:db:80:f7:ef:d6:81:b8:77:e8:69:c5:77:32:b0: c7:7a:fe:5f:ff:8f:a3:bc:b3:e5:a9:2d:ed:3b:4d: 17:ee:d6:4b:a5:0d:cd:7b:c1:50:f9:36:72:a1:a9: b6:d5:48:ef:c3:2d:b5:df:32:02:35:f6:64:6a:d3: da:06:cf:bf:47:2e:9b:8a:7c:ea:92:22:04:a7:aa: 83:79:b8:64:6f:c4:70:cd:b0:a4:69:2c:00:db:b0: ca:96:1b:38:d4:4a:e9:05:da:31:f1:eb:b5:0f:18: d1:60:54:c0:84:e9:74:32:e8:b8:d4:e1:61:38:f2: 0e:5f:af:6a:59:2f:84:39:7d:fe:a7:12:33:91:4d: 6a:ca:df:42:23:f4:91:d1:07:82:0f:44:12:4e:45: f3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E5:04:BC:1D:FA:9C:8A:B6:30:89:AF:9E:6A:37:3B:4C:DB:D7:05 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:b2:6d:6d:fb:25:27:6b:ba:35:76:94:ef:79:8e:ff:2d:72: 5d:73:4e:24:35:5c:3c:68:92:f1:2e:00:9a:4e:68:36:4e:67: 8b:cd:42:c5:d9:ba:02:a7:4b:75:af:92:e3:3a:2f:4e:c5:31: 0c:a4:5a:17:d2:d7:61:f2:e5:a8:b0:fe:b0:44:12:77:92:a7: 2e:6d:a2:06:6a:04:d9:94:0b:4c:05:1f:88:a1:7a:c3:8b:27: b2:9f:d0:78:f0:ba:46:d2:9f:d5:52:4a:59:21:79:7c:c6:25: 73:af:43:b7:63:6b:8a:3c:95:0b:6e:b6:1b:c4:cb:26:ce:b9: a0:64:a2:45:77:e8:58:19:c9:4c:fd:71:6a:6c:4b:d6:42:67: 18:bf:6f:ee:a0:7f:74:43:37:3f:64:7b:d9:9d:85:b3:a7:ef: 31:3e:55:7a:7f:58:21:b9:9e:d2:55:4b:8e:de:5e:9c:9f:47: f5:83:c9:00:81:0f:66:6c:0d:ee:af:16:3a:bc:0b:ca:0d:86: 5b:e4:ad:37:d6:fc:7e:01:d4:e1:82:6f:38:fe:3c:7a:4e:23: 9d:95:ca:52:6b:7a:05:80:a1:e5:d0:bf:83:1c:22:d4:7c:46: 4d:87:7f:b1:9d:6f:7a:0e:33:b7:57:bc:1b:82:dc:df:8d:2a: a6:04:d4:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUwNTEzMDExNjQ2WhcNMjUwNTIwMDExNjQ2WjAYMRYwFAYD VQQDEw02ODIyOWQ3ZS01NTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkKRjG78azHTNAYNwbbL2u6nleOOJfSJBFDNrmN8GMHEuUuoUdHQKh58NR1z 5driJpcNNgeVNPwgWBmwIszXzI36GxaUyPmD/D/VzMVrY7zHl2oCXOiypZcq3P/z 4HsFk/Ud+yf6T4xa24D379aBuHfoacV3MrDHev5f/4+jvLPlqS3tO00X7tZLpQ3N e8FQ+TZyoam21Ujvwy213zICNfZkatPaBs+/Ry6binzqkiIEp6qDebhkb8RwzbCk aSwA27DKlhs41ErpBdox8eu1DxjRYFTAhOl0Mui41OFhOPIOX69qWS+EOX3+pxIz kU1qyt9CI/SR0QeCD0QSTkXzyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLlBLwd +pyKtjCJr55qNztM29cFMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMsm1t+yUna7o1dpTveY7/LXJdc04kNVw8aJLxLgCaTmg2TmeLzULF 2boCp0t1r5LjOi9OxTEMpFoX0tdh8uWosP6wRBJ3kqcubaIGagTZlAtMBR+IoXrD iyeyn9B48LpG0p/VUkpZIXl8xiVzr0O3Y2uKPJULbrYbxMsmzrmgZKJFd+hYGclM /XFqbEvWQmcYv2/uoH90Qzc/ZHvZnYWzp+8xPlV6f1ghuZ7SVUuO3l6cn0f1g8kA gQ9mbA3urxY6vAvKDYZb5K031vx+AdThgm84/jx6TiOdlcpSa3oFgKHl0L+DHCLU fEZNh3+xnW96DjO3V7wbgtzfjSqmBNQj -----END CERTIFICATE-----Generated at Wed May 14 15:28:26 2025 by rpki-client