$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: o6URlEfv3g2cKY60HONbIfWl+gpt4Hsl2GF5JqaamPA= Subject key identifier: 8A:2A:7D:87:78:E4:B1:5D:DA:8C:3D:12:FD:82:A4:C3:FF:4A:EC:CF Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 028C Signing time: Sat 31 May 2025 01:47:45 +0000 Manifest this update: Sat 31 May 2025 01:47:45 +0000 Manifest next update: Sat 07 Jun 2025 01:47:45 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: Z1gu9nZ2Z9EgwKWBLoiUFajfqkzUiby7ulPLLetN4YQ=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: EuoLXvibJYzVLshOhBvVYHJccoZUmB/oPyzL/sJ9KVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9, serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: May 31 01:47:45 2025 GMT Not After : Jun 7 01:47:45 2025 GMT Subject: CN=683a5fc1-3479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:97:ff:04:64:76:0e:86:01:8c:a7:b0:97:61: fd:c2:8d:19:12:c3:3a:62:f4:66:8e:c6:e7:b6:38: 5d:0d:8c:0a:c9:1b:20:80:6e:e5:01:10:09:bd:67: cb:68:76:9b:a8:4f:8f:31:3b:f7:e8:23:a9:ad:e2: 77:6d:f8:0c:de:7d:60:b5:d9:a5:be:97:8d:42:01: 8f:cc:86:f4:1c:31:88:94:ff:91:c6:42:1c:99:25: 88:85:ab:77:0d:78:a6:8c:f1:8f:72:87:79:39:43: fc:50:10:1a:e5:48:73:7d:80:92:60:c4:25:d5:94: 76:cb:aa:7b:8e:09:2a:08:65:c9:84:67:71:e1:07: e3:84:7b:99:0f:9f:75:12:35:57:91:7c:25:10:89: d5:19:56:2d:18:10:2c:44:34:01:70:8a:9e:51:e7: c5:54:9c:61:81:d7:09:e1:d7:c8:8c:79:85:a2:45: c4:03:26:5f:76:b6:2c:1e:72:52:0a:c6:b4:ed:a8: 1d:99:55:a3:11:01:a9:2b:3d:80:7c:e3:0d:99:13: 7b:cd:a7:9c:dc:66:cd:b7:0c:43:d7:20:82:4e:c9: 04:4b:f5:4a:99:61:a6:72:95:71:e9:b3:3e:8d:1c: cf:81:9f:ce:a2:e4:a9:29:56:47:29:36:b0:ec:2e: 62:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:2A:7D:87:78:E4:B1:5D:DA:8C:3D:12:FD:82:A4:C3:FF:4A:EC:CF X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:23:a0:b1:64:db:a4:97:6a:08:15:91:06:d1:2e:95:1a:fa: ba:a3:92:f8:fa:f4:76:09:f0:62:3b:b9:93:52:e0:8e:00:b9: 06:32:6f:4b:1f:fc:2d:d4:27:ac:08:58:f1:1f:f9:c6:0d:56: 2b:70:ef:99:e9:57:d1:30:3c:0a:bc:2f:89:2b:a9:ea:5a:e9: f9:3f:ca:36:fd:92:4f:3b:97:47:d5:db:c6:a5:c1:fd:c0:d0: a2:76:40:dd:71:1c:b8:3a:28:5e:6b:de:df:96:ab:6a:9d:7e: 26:e1:bf:55:e1:2e:8c:8b:20:d0:63:46:c9:08:e1:39:73:07: 90:fa:f1:da:69:8a:9c:18:e4:78:a1:96:0a:da:87:f6:55:b2: 0b:67:24:29:c7:55:ff:62:69:33:0b:4d:18:de:bc:bc:cf:01: cd:86:db:a7:ff:2d:c0:f4:1b:a3:a4:b3:50:9a:30:b5:e3:8d: 5c:d0:47:fa:35:80:4b:d2:79:55:0d:82:c9:bf:48:cb:6a:9e: 1d:c9:6d:6d:98:3a:75:54:49:dc:d4:a5:9b:5e:b5:d9:cb:92: 60:5f:8c:6b:1c:90:11:a7:52:60:88:49:68:f5:e1:27:d6:d3: 48:3e:3c:52:14:52:f6:96:a3:4f:85:53:16:e0:97:73:57:09: 36:ac:d6:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjUwNTMxMDE0NzQ1WhcNMjUwNjA3MDE0NzQ1WjAYMRYwFAYD VQQDEw02ODNhNWZjMS0zNDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pf/BGR2DoYBjKewl2H9wo0ZEsM6YvRmjsbntjhdDYwKyRsggG7lARAJvWfL aHabqE+PMTv36COpreJ3bfgM3n1gtdmlvpeNQgGPzIb0HDGIlP+RxkIcmSWIhat3 DXimjPGPcod5OUP8UBAa5UhzfYCSYMQl1ZR2y6p7jgkqCGXJhGdx4QfjhHuZD591 EjVXkXwlEInVGVYtGBAsRDQBcIqeUefFVJxhgdcJ4dfIjHmFokXEAyZfdrYsHnJS Csa07agdmVWjEQGpKz2AfOMNmRN7zaec3GbNtwxD1yCCTskES/VKmWGmcpVx6bM+ jRzPgZ/OouSpKVZHKTaw7C5iMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoqfYd4 5LFd2ow9Ev2CpMP/SuzPMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUI6CxZNukl2oIFZEG0S6VGvq6o5L4+vR2CfBiO7mTUuCOALkGMm9L H/wt1CesCFjxH/nGDVYrcO+Z6VfRMDwKvC+JK6nqWun5P8o2/ZJPO5dH1dvGpcH9 wNCidkDdcRy4Oihea97flqtqnX4m4b9V4S6MiyDQY0bJCOE5cweQ+vHaaYqcGOR4 oZYK2of2VbILZyQpx1X/YmkzC00Y3ry8zwHNhtun/y3A9BujpLNQmjC1441c0Ef6 NYBL0nlVDYLJv0jLap4dyW1tmDp1VEnc1KWbXrXZy5JgX4xrHJARp1JgiElo9eEn 1tNIPjxSFFL2lqNPhVMW4JdzVwk2rNaJ -----END CERTIFICATE-----Generated at Sat May 31 16:42:57 2025 by rpki-client