$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: UPG9oTmTOLCFN+6nBhwFgzzGT5/Aif9+yRiVm2XRKeA= Subject key identifier: A9:CC:73:34:34:8B:84:F4:1B:99:87:6F:4E:AF:15:36:AE:72:E1:79 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 3484 Signing time: Fri 30 May 2025 14:37:20 +0000 Manifest this update: Fri 30 May 2025 14:37:19 +0000 Manifest next update: Fri 06 Jun 2025 14:37:19 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: 5qctJ2I8HJBN+Cq2gP1DH8pkI2xcSy3Le3AaDDohEx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: May 30 14:37:19 2025 GMT Not After : Jun 6 14:37:19 2025 GMT Subject: CN=6839c2a0-0cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:90:00:52:81:70:76:f9:6e:e9:c2:6e:40:f6: f1:76:63:97:1b:77:de:cd:cf:88:cd:68:c2:39:c5: a0:0b:f5:20:00:56:de:e8:7e:ea:4d:68:6a:6c:0e: 0c:c4:a6:f1:86:7c:a3:78:c8:13:dc:63:c6:7e:32: ec:e5:9c:aa:20:e7:4e:10:bb:70:f1:58:cf:09:14: 02:64:0c:95:0c:54:7e:d7:9d:95:c1:e2:bf:ec:82: 89:fe:35:97:f5:01:92:a2:cd:ec:ab:7e:c9:eb:6b: a8:18:d1:24:d7:dd:28:ab:28:2e:fd:ed:2c:8d:c7: 73:ce:79:21:ba:c7:ea:6f:94:70:f1:c7:d6:c2:4e: e1:a0:e1:3f:2b:1b:a8:a6:a0:7b:62:aa:5c:05:7e: de:64:df:e8:84:93:06:13:27:ce:23:09:21:db:58: cb:03:b2:18:63:00:a8:e5:a0:2a:75:35:9b:79:e4: 0e:8a:7c:d1:1a:e3:95:d1:e9:ea:3f:77:a7:35:74: ec:81:96:c8:4c:87:3f:56:82:b3:eb:3a:c3:bf:69: ba:0f:2c:e2:14:eb:f6:bc:83:e0:bb:7a:96:82:42: cd:eb:e1:af:61:e0:72:27:b8:2d:c7:eb:be:67:9a: 07:89:59:10:9b:ac:7c:e2:ad:7b:01:dd:a7:50:28: 3f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CC:73:34:34:8B:84:F4:1B:99:87:6F:4E:AF:15:36:AE:72:E1:79 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:80:35:6b:cb:3b:64:75:8b:59:3c:21:d7:c7:44:cc:e6:60: d4:0a:92:87:ab:bb:46:7c:44:78:49:58:80:f6:ac:7f:94:2f: 20:1f:d5:90:0b:5d:27:6e:33:93:71:97:39:7f:24:dd:a8:b4: 7b:61:1b:db:de:49:a3:57:f5:d2:cb:3b:9f:be:66:5f:2f:1f: 96:38:52:60:77:8b:21:47:be:4b:be:b6:da:68:29:2b:f5:63: d6:0f:9a:32:94:0d:62:48:74:35:b0:ab:d3:8c:c1:56:f8:ba: 2e:2d:0d:d0:80:68:a2:98:d7:9e:06:c4:63:4e:bb:c8:0b:ab: 94:00:30:5a:16:69:24:18:ea:7d:14:b7:39:a9:33:fc:fd:bc: c7:c8:99:52:2e:0e:2a:05:82:da:d1:8e:9b:a6:6b:35:b4:64: 52:cb:d1:71:3a:74:4a:c3:16:73:af:fe:fb:c7:92:2d:d2:3f: b1:fb:e1:df:2f:09:35:1f:85:36:56:6e:1c:c2:e6:6b:46:77: 4d:1d:38:82:eb:48:cb:30:c9:06:18:52:a3:71:86:59:6d:4a: 6d:76:3b:45:57:3f:73:97:30:a1:b5:14:13:50:50:4e:44:32: a3:49:55:b6:cb:55:8e:9a:fd:38:d5:c4:a5:dc:c3:da:76:08: 8f:65:5a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwNTMwMTQzNzE5WhcNMjUwNjA2MTQzNzE5WjAYMRYwFAYD VQQDEw02ODM5YzJhMC0wY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJAAUoFwdvlu6cJuQPbxdmOXG3fezc+IzWjCOcWgC/UgAFbe6H7qTWhqbA4M xKbxhnyjeMgT3GPGfjLs5ZyqIOdOELtw8VjPCRQCZAyVDFR+152VweK/7IKJ/jWX 9QGSos3sq37J62uoGNEk190oqygu/e0sjcdzznkhusfqb5Rw8cfWwk7hoOE/Kxuo pqB7YqpcBX7eZN/ohJMGEyfOIwkh21jLA7IYYwCo5aAqdTWbeeQOinzRGuOV0enq P3enNXTsgZbITIc/VoKz6zrDv2m6DyziFOv2vIPgu3qWgkLN6+GvYeByJ7gtx+u+ Z5oHiVkQm6x84q17Ad2nUCg/9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnMczQ0 i4T0G5mHb06vFTaucuF5MB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClgDVryztkdYtZPCHXx0TM5mDUCpKHq7tGfER4SViA9qx/lC8gH9WQ C10nbjOTcZc5fyTdqLR7YRvb3kmjV/XSyzufvmZfLx+WOFJgd4shR75LvrbaaCkr 9WPWD5oylA1iSHQ1sKvTjMFW+LouLQ3QgGiimNeeBsRjTrvIC6uUADBaFmkkGOp9 FLc5qTP8/bzHyJlSLg4qBYLa0Y6bpms1tGRSy9FxOnRKwxZzr/77x5It0j+x++Hf Lwk1H4U2Vm4cwuZrRndNHTiC60jLMMkGGFKjcYZZbUptdjtFVz9zlzChtRQTUFBO RDKjSVW2y1WOmv041cSl3MPadgiPZVpy -----END CERTIFICATE-----Generated at Sat May 31 15:09:33 2025 by rpki-client