$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: ph5O5YXYmiqbnKRkqAbWdWnN3Jr8ILFznNek886k//I= Subject key identifier: 59:06:6D:A7:4D:DD:F7:6A:DD:CD:51:C5:78:D4:6D:46:B2:65:AD:F7 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0BD7 Signing time: Mon 12 May 2025 19:14:34 +0000 Manifest this update: Mon 12 May 2025 19:14:33 +0000 Manifest next update: Mon 19 May 2025 19:14:33 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: Ja6O4J78bsBx4mKo8EA/z7zcRYDBcCdAJrljy8Z53po=) 2: 6360524E03D311F0A6C64177C4F9AE02.roa (hash: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8=) 3: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: fNb48r4M+gfLXajaKFGp8VWXxugH32v0si+d8iboCho=) 4: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: EO+r4YCRXrWQGjZoJ/CD1KsxdVzlBHVNlbdYh39PLSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: May 12 19:14:33 2025 GMT Not After : May 19 19:14:33 2025 GMT Subject: CN=6822489a-60ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:a4:2a:2f:9c:d9:84:3d:ed:5b:6e:a4:05: 68:0b:42:fe:c0:06:d2:65:0c:6f:6e:48:76:87:7c: 30:d3:bb:13:f5:02:97:dd:49:59:e0:ba:63:f5:e2: 92:26:5e:58:cb:8e:12:46:d3:d6:b2:62:18:d6:82: 1f:0e:58:30:85:58:a6:71:57:9f:dd:81:7c:be:b5: 0f:1c:14:94:18:ee:f8:55:ce:2f:9e:74:a2:6d:9d: 1a:ef:8e:9c:57:f2:37:e6:ec:6c:50:e2:c9:c1:4f: 18:97:fa:c4:45:3f:b4:0f:78:d2:79:51:87:71:d4: 1d:37:87:c6:6e:4e:75:60:12:31:44:90:0c:44:79: 10:33:75:f2:c8:6b:09:00:d2:07:4b:91:3e:94:8f: 2a:a9:04:2c:19:25:c0:32:f6:a4:d2:8c:3d:f6:d1: 23:fa:66:e4:38:9e:7a:50:e4:9f:49:fb:32:a6:aa: 58:12:26:c8:66:33:c4:02:94:9e:b8:c0:5c:2c:63: c1:69:b3:d7:35:64:39:86:67:2d:c9:02:07:37:97: 3e:9b:11:bc:a9:27:fd:b5:2e:57:57:b5:6e:88:45: e6:d8:a1:2a:6d:d0:8f:1e:63:32:cc:fd:aa:0d:a8: 16:c9:32:1d:0e:15:24:1f:80:9b:b2:5b:d1:77:02: aa:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:06:6D:A7:4D:DD:F7:6A:DD:CD:51:C5:78:D4:6D:46:B2:65:AD:F7 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:2c:60:37:08:21:fa:f8:7a:cb:29:79:50:92:07:99:54:39: df:ee:01:a6:90:bc:4e:02:b8:8a:7f:ac:44:bd:63:4c:2e:d5: d7:f1:40:64:ad:33:29:bd:67:74:68:69:a3:f3:d2:90:c1:b7: e0:0b:69:f4:4b:02:65:24:9f:64:b2:77:09:f7:b3:46:64:36: bf:b4:7e:ab:ef:54:d1:85:94:12:7e:38:7d:51:bb:05:1e:b4: 6f:85:5f:7d:05:8e:49:a0:00:d4:6a:a3:4b:46:78:a0:f7:a6: 24:bf:be:b1:ea:e2:86:38:72:cf:07:14:39:25:43:95:25:92: 9e:f2:c1:0c:32:a2:bd:12:5a:33:99:2f:c5:31:6c:14:8c:0e: b1:2c:a8:31:61:ed:9e:dc:58:e7:2a:44:02:2e:1e:0e:f4:96: ea:f7:73:8d:e7:ea:97:f1:29:e7:a2:bf:9c:4c:83:e3:90:4c: 0b:9b:20:a3:bb:4a:56:57:c4:c7:9f:fa:e2:0e:96:dd:98:92: 47:a4:f0:8c:82:b1:ad:96:be:fc:9c:d7:a6:a2:6f:d7:3f:07: 28:92:27:ff:0c:31:32:6e:6c:a1:5e:00:6e:d2:49:75:a6:e0: 6c:d4:6e:6a:9a:00:f4:8d:9e:dc:8a:ef:c1:31:d1:b7:22:2e: dc:8d:55:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUwNTEyMTkxNDMzWhcNMjUwNTE5MTkxNDMzWjAYMRYwFAYD VQQDEw02ODIyNDg5YS02MGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0V+kKi+c2YQ97VtupAVoC0L+wAbSZQxvbkh2h3ww07sT9QKX3UlZ4Lpj9eKS Jl5Yy44SRtPWsmIY1oIfDlgwhVimcVef3YF8vrUPHBSUGO74Vc4vnnSibZ0a746c V/I35uxsUOLJwU8Yl/rERT+0D3jSeVGHcdQdN4fGbk51YBIxRJAMRHkQM3XyyGsJ ANIHS5E+lI8qqQQsGSXAMvak0ow99tEj+mbkOJ56UOSfSfsypqpYEibIZjPEApSe uMBcLGPBabPXNWQ5hmctyQIHN5c+mxG8qSf9tS5XV7VuiEXm2KEqbdCPHmMyzP2q DagWyTIdDhUkH4CbslvRdwKqTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkGbadN 3fdq3c1RxXjUbUayZa33MB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7LGA3CCH6+HrLKXlQkgeZVDnf7gGmkLxOAriKf6xEvWNMLtXX8UBk rTMpvWd0aGmj89KQwbfgC2n0SwJlJJ9ksncJ97NGZDa/tH6r71TRhZQSfjh9UbsF HrRvhV99BY5JoADUaqNLRnig96Ykv76x6uKGOHLPBxQ5JUOVJZKe8sEMMqK9Eloz mS/FMWwUjA6xLKgxYe2e3FjnKkQCLh4O9Jbq93ON5+qX8Snnor+cTIPjkEwLmyCj u0pWV8THn/riDpbdmJJHpPCMgrGtlr78nNemom/XPwcokif/DDEybmyhXgBu0kl1 puBs1G5qmgD0jZ7ciu/BMdG3Ii7cjVW3 -----END CERTIFICATE-----Generated at Tue May 13 19:41:40 2025 by rpki-client