$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft File: xVznjEX0hWCLgkNgYAPYCooWzNY.mft (raw, json) Hash identifier: 9qWRAy0tWpRpVF/KhuRIKiwhoGVuAnn0NzCIM5eX+94= Subject key identifier: D4:C9:93:2E:87:24:20:DE:2D:1E:13:19:FF:90:96:3D:0F:4E:A7:5E Authority key identifier: C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 Certificate issuer: /CN=A91E6E96/serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Certificate serial: 0493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft Manifest number: 048F Signing time: Mon 12 May 2025 23:48:34 +0000 Manifest this update: Mon 12 May 2025 23:48:34 +0000 Manifest next update: Mon 19 May 2025 23:48:34 +0000 Files and hashes: 1: xVznjEX0hWCLgkNgYAPYCooWzNY.crl (hash: hKfvBU1w4rG3ugz4yCiJj1d+IQFfIAkUuKJHql2Hsys=) 2: 64DE26F6386011EC83DC2E23C4F9AE02.roa (hash: U5GEFoFbAoED1KEx2xWUb5hktSCjTMeSRDs24OHWcTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6E96, serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Validity Not Before: May 12 23:48:34 2025 GMT Not After : May 19 23:48:34 2025 GMT Subject: CN=682288d2-9a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:db:be:8d:f7:34:44:de:e7:15:8f:d0:e2:45: e4:ea:11:81:88:28:ed:e8:39:2e:e2:07:3c:13:25: 90:57:0d:30:fe:13:a0:a9:7a:99:ad:64:33:d3:82: 29:02:26:b6:42:2a:39:28:99:a0:0c:43:7d:57:8f: 01:c0:be:ae:c6:4e:49:6f:59:2f:6b:df:f0:3d:74: 9a:f7:49:f7:8b:b8:2f:d0:9f:1f:a0:06:7d:a2:7b: db:f0:47:29:80:76:67:5e:09:d3:f8:29:bd:c1:69: 83:c6:89:6b:df:39:cf:10:e6:ff:1e:87:23:30:31: 38:e9:23:78:1d:92:83:63:ae:b2:5b:59:99:86:c3: 2b:be:88:72:39:a1:d6:70:71:0c:1d:c6:36:9e:8f: e2:f0:94:5a:36:87:7a:2f:96:24:62:31:46:d9:2d: 55:f5:f0:b7:01:07:03:6c:14:a1:3b:78:f1:c8:47: 7b:a3:6d:6a:f5:d4:64:57:a7:2d:33:24:ff:57:20: 10:26:86:40:b0:2d:46:89:d3:ef:2d:8b:12:24:c9: ed:3a:f5:33:07:7b:ea:6e:7e:86:69:01:58:3e:d9: 80:28:a4:19:2a:39:16:75:70:04:10:05:96:ea:a6: c3:05:3a:01:d9:0e:cb:c3:a2:aa:25:b8:f9:90:bf: c5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C9:93:2E:87:24:20:DE:2D:1E:13:19:FF:90:96:3D:0F:4E:A7:5E X509v3 Authority Key Identifier: keyid:C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:a5:95:39:19:03:27:7e:fd:bd:5a:ad:65:63:8a:b9:d9:ed: 1d:15:21:6b:0b:a9:36:c1:78:3c:c4:9d:32:96:79:1a:1a:45: e3:95:d1:0b:84:a2:8e:26:f8:59:48:c6:0d:41:53:74:92:09: e3:c3:c9:6f:76:b5:56:dd:19:89:d6:bf:b0:42:fe:a3:9e:dc: c1:9c:8f:37:dc:bd:12:07:a4:b0:cf:bd:93:30:44:9e:30:4a: d0:6d:2b:d3:c5:b7:8b:99:33:0d:ca:f3:c8:1a:13:a9:ad:5d: ad:9e:22:1d:9e:5d:61:3e:36:eb:c0:73:57:81:7c:62:c4:99: 1c:b5:46:1a:f4:ca:5d:a0:d6:76:be:aa:11:73:cf:eb:98:6b: c8:b9:27:9c:16:b5:8a:f2:93:34:cd:dc:bd:a0:02:f2:a5:a9: 35:e2:61:de:bb:22:02:88:74:da:8f:78:ee:25:eb:95:8b:78: ba:e7:6b:0e:51:1f:a1:9e:3a:97:05:a6:89:20:c9:78:d5:72: 86:8b:14:53:29:9b:16:81:cf:7f:76:6f:60:57:3e:84:eb:e5: 57:37:db:3d:fd:98:cc:5f:61:d1:3e:18:fd:14:6c:78:82:c3: 55:0f:0a:ed:d1:68:4b:a9:a7:ca:4a:43:a1:78:28:be:aa:df: 6e:a3:35:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFOTYxMTAvBgNVBAUTKEM1NUNFNzhDNDVGNDg1NjA4QjgyNDM2MDYwMDNEODBB OEExNkNDRDYwHhcNMjUwNTEyMjM0ODM0WhcNMjUwNTE5MjM0ODM0WjAYMRYwFAYD VQQDEw02ODIyODhkMi05YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9u+jfc0RN7nFY/Q4kXk6hGBiCjt6Dku4gc8EyWQVw0w/hOgqXqZrWQz04Ip Aia2Qio5KJmgDEN9V48BwL6uxk5Jb1kva9/wPXSa90n3i7gv0J8foAZ9onvb8Ecp gHZnXgnT+Cm9wWmDxolr3znPEOb/HocjMDE46SN4HZKDY66yW1mZhsMrvohyOaHW cHEMHcY2no/i8JRaNod6L5YkYjFG2S1V9fC3AQcDbBShO3jxyEd7o21q9dRkV6ct MyT/VyAQJoZAsC1GidPvLYsSJMntOvUzB3vqbn6GaQFYPtmAKKQZKjkWdXAEEAWW 6qbDBToB2Q7Lw6KqJbj5kL/F2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTJky6H JCDeLR4TGf+Qlj0PTqdeMB8GA1UdIwQYMBaAFMVc54xF9IVgi4JDYGAD2AqKFszW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkU5Ni83QjlEM0RFQTM4 NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhXQ0xna05nWUFQWUNvb1d6 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWem5qRVgwaFdDTGdrTmdZQVBZQ29vV3pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkU5Ni83QjlEM0RFQTM4NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhX Q0xna05nWUFQWUNvb1d6TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkpZU5GQMnfv29Wq1lY4q52e0dFSFrC6k2wXg8xJ0ylnkaGkXjldEL hKKOJvhZSMYNQVN0kgnjw8lvdrVW3RmJ1r+wQv6jntzBnI833L0SB6Swz72TMESe MErQbSvTxbeLmTMNyvPIGhOprV2tniIdnl1hPjbrwHNXgXxixJkctUYa9MpdoNZ2 vqoRc8/rmGvIuSecFrWK8pM0zdy9oALypak14mHeuyICiHTaj3juJeuVi3i652sO UR+hnjqXBaaJIMl41XKGixRTKZsWgc9/dm9gVz6E6+VXN9s9/ZjMX2HRPhj9FGx4 gsNVDwrt0WhLqafKSkOheCi+qt9uozU5 -----END CERTIFICATE-----Generated at Tue May 13 04:36:14 2025 by rpki-client