$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: OM7zA1GExj7PdyOh+0PK4tiz2rt/QIAFgbt4MBBRZtU= Subject key identifier: 9B:CD:D9:B8:36:1D:0B:E6:4B:4C:7B:37:12:63:5F:BC:B5:26:DB:08 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 03AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 03AA Signing time: Sat 31 May 2025 00:54:49 +0000 Manifest this update: Sat 31 May 2025 00:54:48 +0000 Manifest next update: Sat 07 Jun 2025 00:54:48 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: aONvE+qGQmMWFcC12HB9EapCRvIsUCYWSWAqxWgEat8=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 942 (0x3ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: May 31 00:54:48 2025 GMT Not After : Jun 7 00:54:48 2025 GMT Subject: CN=683a5359-3afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:40:53:5e:34:1b:9a:01:89:21:d4:21:8f:97: 29:27:43:0a:ab:1b:6c:ba:8f:86:53:36:cd:5e:dd: 02:e8:d9:0f:99:5f:c6:4f:1c:2b:4b:02:8e:96:55: b4:34:1a:bf:34:8b:ed:d3:b5:1b:03:1b:ef:1a:1e: f4:74:65:8b:98:c8:d4:41:16:6a:dd:60:4b:da:b9: 1e:c6:ce:62:f1:48:89:1d:7d:2d:bc:7b:71:9e:b6: b2:9f:ab:fa:6c:fd:88:89:a5:a4:d0:2c:4d:33:d6: 3f:54:af:a2:be:09:a0:1f:7e:67:26:10:28:25:d6: 94:25:06:fe:58:27:66:ed:ac:fe:02:6a:5e:ff:72: 7a:bc:b0:1a:d7:78:d4:81:54:ae:b2:98:d4:32:aa: 70:52:59:8f:b9:f4:ea:9b:fd:29:ac:82:fc:a1:d4: 21:e8:f7:6b:96:eb:64:61:b0:cb:5b:0f:ff:c7:40: f9:1d:6f:3c:53:ad:82:08:11:af:46:39:18:80:2f: 58:bb:76:92:4c:7c:7b:f6:3b:bf:ac:4f:be:fd:92: fa:9c:6c:69:ca:ef:6d:52:92:e8:d0:05:ec:d0:a5: f5:c7:34:2d:98:2b:61:42:55:b7:27:95:46:d0:25: 4c:19:ca:bb:0c:0c:a8:40:4b:55:3b:e7:fa:c0:1e: 1c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CD:D9:B8:36:1D:0B:E6:4B:4C:7B:37:12:63:5F:BC:B5:26:DB:08 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:38:31:99:cd:bc:0b:16:4a:80:55:da:a3:55:d8:45:aa:8b: 07:20:1f:c5:57:e4:43:14:a9:07:43:ac:7d:c6:63:b2:e1:4f: cd:18:59:92:d2:c7:a3:41:48:02:dd:2d:7c:e8:7a:7a:35:9d: b8:3b:d6:84:50:6c:1f:27:80:2b:07:25:a0:b8:c4:2c:25:13: c8:4d:88:8a:bc:1a:83:93:91:02:e5:46:24:ad:dd:5c:87:b8: dd:b0:31:7c:0f:02:f0:18:00:64:cb:48:09:3f:13:9f:a5:be: 14:25:05:de:b0:5d:a3:c8:ff:a3:0e:bf:a5:aa:aa:24:75:d0: 28:80:d3:c0:f7:bc:96:7d:32:5b:2f:22:ad:ec:a3:c0:c5:14: 16:68:86:14:71:84:64:77:f3:8c:3d:65:a4:45:8d:c8:a3:24: 7b:ec:b3:79:60:b6:e1:8b:54:9a:64:ab:d6:91:c6:d7:83:45: dd:29:91:83:df:86:fb:0e:9a:85:a9:62:3c:fa:16:50:5a:d8: 39:18:55:d0:1b:dd:11:12:1f:7c:92:ad:90:34:ad:a7:bd:db: e7:64:1f:d2:dc:c0:ff:88:2c:2a:cd:db:72:b4:42:4b:53:28: f4:df:9f:66:12:25:10:80:8b:63:b3:a6:f2:b9:33:13:06:04: 35:98:a8:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUwNTMxMDA1NDQ4WhcNMjUwNjA3MDA1NDQ4WjAYMRYwFAYD VQQDEw02ODNhNTM1OS0zYWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUBTXjQbmgGJIdQhj5cpJ0MKqxtsuo+GUzbNXt0C6NkPmV/GTxwrSwKOllW0 NBq/NIvt07UbAxvvGh70dGWLmMjUQRZq3WBL2rkexs5i8UiJHX0tvHtxnrayn6v6 bP2IiaWk0CxNM9Y/VK+ivgmgH35nJhAoJdaUJQb+WCdm7az+Ampe/3J6vLAa13jU gVSuspjUMqpwUlmPufTqm/0prIL8odQh6PdrlutkYbDLWw//x0D5HW88U62CCBGv RjkYgC9Yu3aSTHx79ju/rE++/ZL6nGxpyu9tUpLo0AXs0KX1xzQtmCthQlW3J5VG 0CVMGcq7DAyoQEtVO+f6wB4cTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvN2bg2 HQvmS0x7NxJjX7y1JtsIMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5ODGZzbwLFkqAVdqjVdhFqosHIB/FV+RDFKkHQ6x9xmOy4U/NGFmS 0sejQUgC3S186Hp6NZ24O9aEUGwfJ4ArByWguMQsJRPITYiKvBqDk5EC5UYkrd1c h7jdsDF8DwLwGABky0gJPxOfpb4UJQXesF2jyP+jDr+lqqokddAogNPA97yWfTJb LyKt7KPAxRQWaIYUcYRkd/OMPWWkRY3IoyR77LN5YLbhi1SaZKvWkcbXg0XdKZGD 34b7DpqFqWI8+hZQWtg5GFXQG90REh98kq2QNK2nvdvnZB/S3MD/iCwqzdtytEJL Uyj0359mEiUQgItjs6byuTMTBgQ1mKjC -----END CERTIFICATE-----Generated at Sat May 31 17:42:45 2025 by rpki-client