$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: NwT85ntalefuyN2VwWuU0n2JIapL4NyxFx/vHmD+jZw= Subject key identifier: 5B:36:53:F9:EA:82:D4:BC:0C:54:59:DB:DB:21:9C:1B:DC:95:D2:11 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3498 Signing time: Sun 04 May 2025 14:19:18 +0000 Manifest this update: Sun 04 May 2025 14:19:17 +0000 Manifest next update: Sun 11 May 2025 14:19:17 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: hZMjWsoJGNmsT9FXgKNJNWub7lxKZREgfqA5nDmK+4o=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: LKJoEQzPb1sMSVb2vDN9+BembbPiOElHd7gaQSKpvPY=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: 0Rx8HN5jmUeLiu9CtnRcyXpipRICUg/GHNM7vipXeYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 14:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 4 14:19:17 2025 GMT Not After : May 11 14:19:17 2025 GMT Subject: CN=68177766-8eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:04:b3:f2:7c:a8:a5:07:f2:ed:71:05:2a: 83:86:64:5b:e7:e8:2a:cc:90:32:82:1c:19:19:09: ae:ba:5a:6e:53:58:37:1c:8c:cc:8c:52:4f:86:f5: 30:18:09:4c:7c:51:69:8b:82:05:43:09:11:82:69: 45:35:79:8b:6d:ef:34:86:c7:1f:c7:b1:cf:24:a0: f1:34:fa:a9:b7:85:11:f6:6d:b8:1f:43:f5:59:ee: 4d:38:9e:5a:97:1b:e5:14:94:05:9b:47:df:f7:93: 1d:78:e6:d5:00:24:3c:7f:50:a9:66:96:5f:9e:d3: db:3f:5f:48:8d:cf:b6:e7:b1:e3:25:45:da:15:e7: cf:64:0e:9b:0c:b7:78:be:90:b8:25:97:a3:33:df: 98:46:87:d8:a6:0d:ae:32:a6:3d:80:c5:26:85:7a: e6:e7:67:d4:c7:13:3a:ad:d2:bc:0b:4e:a0:91:50: 3b:82:16:b1:41:b5:55:3a:2e:ad:52:be:20:1f:58: 85:c0:f9:b5:82:e6:f4:18:74:67:44:93:97:41:d0: b6:fa:b2:0c:7e:2f:fc:01:95:53:d3:dd:2a:62:83: cd:a3:cf:0f:5e:0d:83:15:87:9c:fa:d9:a8:e8:0e: 7b:c6:5e:8b:aa:57:c0:4b:77:ea:ef:b0:f0:a0:27: a3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:36:53:F9:EA:82:D4:BC:0C:54:59:DB:DB:21:9C:1B:DC:95:D2:11 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:de:92:c3:c1:55:09:c8:da:5f:42:26:41:e4:bf:47:00:bc: af:9b:93:05:c0:6a:d0:20:87:ef:05:1a:50:30:08:06:ea:0c: 41:a7:80:a3:04:3f:c0:30:20:de:19:52:ab:cd:8b:95:ac:d0: ae:a8:6f:ae:9d:15:a7:0c:a2:42:6b:c9:2a:11:27:fa:93:72: 18:b1:53:a1:cd:e9:8b:2b:75:42:50:c0:0b:ad:ed:62:de:b2: 13:65:c9:df:1f:7e:ae:88:d3:a4:40:ac:a0:05:59:32:d0:af: 94:a6:26:a4:ec:16:7e:f1:1b:5f:f2:6c:34:04:67:0e:d6:4b: 9f:da:61:8b:c6:0a:f9:49:63:03:e5:5f:26:c4:85:43:ec:f5: d3:d6:24:fb:81:e7:cb:49:2e:11:bf:25:93:f5:2d:c4:a7:79: 72:9f:9a:ee:e4:5f:d1:5b:d8:c5:27:40:d8:e5:d4:0a:70:2f: 9e:67:5f:a4:63:a6:14:b3:83:16:1c:79:d1:32:a1:a9:07:19: ad:e4:98:3a:75:f5:7c:95:3f:5f:5a:c4:67:77:5f:b1:cc:8b: 94:2b:78:5a:27:54:2f:3e:c2:48:f9:54:8a:26:0c:eb:00:75: f2:6f:f0:6f:50:3c:f8:e7:47:46:56:fc:97:ae:ef:89:2f:43: fa:9c:8e:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNTA0MTQxOTE3WhcNMjUwNTExMTQxOTE3WjAYMRYwFAYD VQQDEw02ODE3Nzc2Ni04ZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2oEs/J8qKUH8u1xBSqDhmRb5+gqzJAyghwZGQmuulpuU1g3HIzMjFJPhvUw GAlMfFFpi4IFQwkRgmlFNXmLbe80hscfx7HPJKDxNPqpt4UR9m24H0P1We5NOJ5a lxvlFJQFm0ff95MdeObVACQ8f1CpZpZfntPbP19Ijc+257HjJUXaFefPZA6bDLd4 vpC4JZejM9+YRofYpg2uMqY9gMUmhXrm52fUxxM6rdK8C06gkVA7ghaxQbVVOi6t Ur4gH1iFwPm1gub0GHRnRJOXQdC2+rIMfi/8AZVT090qYoPNo88PXg2DFYec+tmo 6A57xl6LqlfAS3fq77DwoCej6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFs2U/nq gtS8DFRZ29shnBvcldIRMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ3pLDwVUJyNpfQiZB5L9HALyvm5MFwGrQIIfvBRpQMAgG6gxBp4Cj BD/AMCDeGVKrzYuVrNCuqG+unRWnDKJCa8kqESf6k3IYsVOhzemLK3VCUMALre1i 3rITZcnfH36uiNOkQKygBVky0K+Upiak7BZ+8Rtf8mw0BGcO1kuf2mGLxgr5SWMD 5V8mxIVD7PXT1iT7gefLSS4RvyWT9S3Ep3lyn5ru5F/RW9jFJ0DY5dQKcC+eZ1+k Y6YUs4MWHHnRMqGpBxmt5Jg6dfV8lT9fWsRnd1+xzIuUK3haJ1QvPsJI+VSKJgzr AHXyb/BvUDz450dGVvyXru+JL0P6nI5o -----END CERTIFICATE-----Generated at Mon May 5 02:25:47 2025 by rpki-client