$ rpki-client -vvf rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft File: xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft (raw, json) Hash identifier: 0YSYhBxAlhbIi7DYcTnSJBr5r6tVmA6R6yAi1lEvtZQ= Subject key identifier: A3:09:20:3A:C7:D4:E5:E5:5F:45:CB:A9:74:88:4A:81:52:7E:B2:2B Authority key identifier: C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C Certificate issuer: /CN=A91423FF/serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft Manifest number: 0147 Signing time: Thu 05 Jun 2025 03:37:00 +0000 Manifest this update: Thu 05 Jun 2025 03:37:00 +0000 Manifest next update: Thu 12 Jun 2025 03:37:00 +0000 Files and hashes: 1: xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl (hash: 58wKWVitHRbWCBQwdFYP7zmDl0vOkEU0J4lg93Mclqw=) 2: 278C467E4DF911EE8927F265C4F9AE02.roa (hash: ocnHIom5bfqYmJrUux5YVIb0Vcn2/L2ylLJbcgISr0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423FF, serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Validity Not Before: Jun 5 03:37:00 2025 GMT Not After : Jun 12 03:37:00 2025 GMT Subject: CN=684110dc-b4f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3f:8a:a1:20:c2:b9:b6:aa:a5:a2:44:d2:d4: a0:0f:ad:84:60:9e:dc:6d:3e:6e:43:f8:e9:9a:f2: 67:c0:3d:12:05:62:70:32:36:8b:9f:86:96:e2:24: aa:a3:19:f5:6f:7e:05:90:2c:f8:cc:19:63:d4:b2: 0b:95:f6:33:28:fe:44:28:f6:ff:36:91:94:0e:7e: c0:63:a1:fb:a0:33:ad:48:40:da:c8:81:c7:23:36: 9d:fe:78:41:39:2c:a6:03:55:28:2a:49:ea:2f:94: e1:90:68:04:58:02:e9:0a:c7:f2:a7:57:1c:ab:f7: db:41:9d:02:d1:7a:b2:e4:c4:84:ab:cc:7b:99:bb: 00:4d:c3:5a:de:c7:19:04:3b:81:c9:d8:6f:e3:e5: cd:c4:0a:45:c3:4b:00:34:30:4a:be:b5:84:c5:24: e3:86:0d:0f:80:60:a6:13:8b:94:a0:75:e5:5d:6c: 5a:dd:ee:ce:56:e3:d2:a7:20:66:c2:5c:c4:72:54: d7:9c:0c:03:5b:98:f4:98:dc:b0:5a:12:5a:2d:74: 29:54:fb:4b:bb:42:26:39:44:d1:8c:2c:dc:1e:1d: e6:c1:f1:3a:01:03:e0:ee:d3:75:73:42:a4:5e:43: 0c:cc:88:c5:c2:fe:d6:ff:a1:d8:34:20:29:8c:9b: 41:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:09:20:3A:C7:D4:E5:E5:5F:45:CB:A9:74:88:4A:81:52:7E:B2:2B X509v3 Authority Key Identifier: keyid:C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:cc:f0:bc:0a:f3:08:ac:aa:26:e4:b8:23:1e:81:f3:3e:b5: 93:a6:85:f7:f0:32:0d:db:81:87:46:5e:13:3a:9d:15:c2:70: f5:9f:e5:08:9e:70:af:13:37:d4:62:50:2c:7e:08:e8:56:a6: 94:56:f0:e3:1c:11:37:e7:52:24:6f:aa:b8:de:8d:03:05:86: 19:dc:df:08:24:d6:3f:82:f1:03:d6:96:a7:65:c6:97:6c:d3: 5a:72:36:c4:38:74:fd:c4:fa:03:51:80:f1:7e:fa:a3:36:63: de:1b:20:f9:0a:3a:95:1c:1e:38:3e:4a:7f:93:6f:34:99:95: 71:f7:94:ba:99:94:7c:05:0a:af:87:7f:8a:89:b1:35:7f:37: e1:ad:24:e1:f5:0f:66:e0:ef:a3:76:d8:b5:17:df:de:2d:ca: 85:16:71:15:0a:42:92:9d:da:25:d6:0d:41:71:f4:c5:0d:5d: 91:f3:61:93:27:72:47:4a:d9:e5:b6:76:69:2e:78:4c:40:f8: 5d:c3:30:0d:4f:5c:fd:c1:91:f6:b2:1f:5c:bb:7f:3e:e7:94: 62:ce:e0:b6:f1:39:cb:a0:75:05:45:f0:1b:d7:72:5f:68:c5: a2:c7:76:1d:73:c1:d2:f5:29:84:50:04:57:e0:11:05:bd:51: fe:0a:5c:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzRkYxMTAvBgNVBAUTKEM2QTU3NkYwOENENEE3M0VBOUREOTc1MDNCQzlEMjhC MDU5MTFCOUMwHhcNMjUwNjA1MDMzNzAwWhcNMjUwNjEyMDMzNzAwWjAYMRYwFAYD VQQDEw02ODQxMTBkYy1iNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzD+KoSDCubaqpaJE0tSgD62EYJ7cbT5uQ/jpmvJnwD0SBWJwMjaLn4aW4iSq oxn1b34FkCz4zBlj1LILlfYzKP5EKPb/NpGUDn7AY6H7oDOtSEDayIHHIzad/nhB OSymA1UoKknqL5ThkGgEWALpCsfyp1ccq/fbQZ0C0Xqy5MSEq8x7mbsATcNa3scZ BDuBydhv4+XNxApFw0sANDBKvrWExSTjhg0PgGCmE4uUoHXlXWxa3e7OVuPSpyBm wlzEclTXnAwDW5j0mNywWhJaLXQpVPtLu0ImOUTRjCzcHh3mwfE6AQPg7tN1c0Kk XkMMzIjFwv7W/6HYNCApjJtBpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMJIDrH 1OXlX0XLqXSISoFSfrIrMB8GA1UdIwQYMBaAFMaldvCM1Kc+qd2XUDvJ0osFkRuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNGRi9EODVBMEI3QzRE RjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6NnAzWmRRTzhuU2l3V1JH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxVjI4SXpVcHo2cDNaZFFPOG5TaXdXUkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNGRi9EODVBMEI3QzRERjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6 NnAzWmRRTzhuU2l3V1JHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFzPC8CvMIrKom5LgjHoHzPrWTpoX38DIN24GHRl4TOp0VwnD1n+UI nnCvEzfUYlAsfgjoVqaUVvDjHBE351Ikb6q43o0DBYYZ3N8IJNY/gvED1panZcaX bNNacjbEOHT9xPoDUYDxfvqjNmPeGyD5CjqVHB44Pkp/k280mZVx95S6mZR8BQqv h3+KibE1fzfhrSTh9Q9m4O+jdti1F9/eLcqFFnEVCkKSndol1g1BcfTFDV2R82GT J3JHStnltnZpLnhMQPhdwzANT1z9wZH2sh9cu38+55RizuC28TnLoHUFRfAb13Jf aMWix3Ydc8HS9SmEUARX4BEFvVH+ClyU -----END CERTIFICATE-----Generated at Thu Jun 5 20:09:17 2025 by rpki-client