$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: 4X7Cgqp/rpihobDGjVmpoLIP8pUcpDv0OdXnWEnkktI= Subject key identifier: B2:5D:81:D2:8B:39:89:F8:3D:92:E2:ED:05:4F:D0:AF:25:3D:5A:B1 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 048A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0473 Signing time: Sat 31 May 2025 00:23:12 +0000 Manifest this update: Sat 31 May 2025 00:23:12 +0000 Manifest next update: Sat 07 Jun 2025 00:23:12 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: RzGMb21Fn1a1TAIuup8h8qwpkbUBqRi8pN7Dy5tmmlM=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: May 31 00:23:12 2025 GMT Not After : Jun 7 00:23:12 2025 GMT Subject: CN=683a4bf0-6407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d2:6c:b3:a2:07:46:e4:d6:99:03:1a:44:09: c2:d1:9d:aa:e5:98:30:55:36:14:c6:7d:01:16:3e: 1c:de:06:e0:8f:60:3e:12:67:10:b5:29:38:df:5c: f8:a2:7b:05:76:7d:78:7c:fc:90:37:27:5d:81:b4: d6:33:83:6d:ae:55:26:17:ee:b5:76:6b:64:80:be: 9a:69:b4:72:c1:61:10:aa:f9:94:8c:2c:c6:ea:b5: 21:e4:fc:81:b2:4d:b6:b3:96:8b:e0:5f:e4:74:16: b2:eb:0f:80:47:35:e8:2b:aa:84:cd:d7:e5:0a:d0: 7b:53:43:dc:ac:47:cb:a3:97:9a:8c:ed:6c:51:f4: f1:af:18:0d:8b:4f:6e:a6:50:9a:63:18:7f:f6:e1: e1:1d:9e:49:e4:d9:72:e5:e9:ee:fd:99:5f:c9:c0: 7c:70:05:19:92:f0:1c:42:e0:22:8d:d5:4b:bf:e8: 71:f1:93:71:5a:02:f2:f3:69:af:74:65:d2:67:7b: fe:be:73:bc:85:48:a2:29:0e:fd:a7:bb:aa:f7:45: 96:57:0f:5b:06:21:24:7d:64:69:c1:79:9e:7f:2a: 35:4a:a7:88:84:b2:db:14:4d:22:6e:c7:ec:63:b0: 1e:70:05:79:73:72:8d:53:19:da:0c:a6:96:2e:c3: 5f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5D:81:D2:8B:39:89:F8:3D:92:E2:ED:05:4F:D0:AF:25:3D:5A:B1 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:5a:4c:c0:63:ac:0d:39:ce:f0:dc:ee:09:11:2c:17:58:b6: de:fb:11:0b:63:88:e3:55:a4:8b:7a:63:2d:05:9e:69:f1:34: b3:3d:a2:b7:ca:c4:15:62:c1:9e:1c:d1:00:ae:7b:47:40:3a: 8e:5c:4c:8b:d0:bb:fe:32:1b:85:7b:55:86:5e:48:cb:69:ef: 9e:a0:4a:49:51:94:42:ac:d7:f9:8a:84:56:ca:5d:fe:08:57: cb:56:29:27:8d:06:d5:e5:cb:55:02:6a:cf:65:46:bc:88:19: 31:84:6d:bd:51:b7:77:b7:19:76:51:c3:da:64:3b:54:2e:a0: 66:70:3b:a1:bf:3b:26:6a:0d:f0:c8:fe:c6:b0:09:59:bb:0e: 51:d5:ab:ab:4b:53:21:f5:97:7f:24:4b:83:2f:85:63:21:7e: 6b:a6:59:fd:48:62:e5:39:79:8a:40:5b:29:31:da:21:5a:1f: 59:aa:bd:bc:72:a8:09:7a:14:4d:83:9d:32:3f:b3:49:74:0c: bf:77:e7:54:cb:f2:c3:11:0a:90:d2:61:26:3e:74:d2:52:70: 97:86:24:a5:cc:97:32:cc:58:91:17:1e:7b:ef:83:87:96:83: 53:6f:cb:95:8b:df:e1:ed:b1:46:5d:86:96:96:79:84:ab:e0: eb:2b:d4:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwNTMxMDAyMzEyWhcNMjUwNjA3MDAyMzEyWjAYMRYwFAYD VQQDEw02ODNhNGJmMC02NDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydJss6IHRuTWmQMaRAnC0Z2q5ZgwVTYUxn0BFj4c3gbgj2A+EmcQtSk431z4 onsFdn14fPyQNyddgbTWM4NtrlUmF+61dmtkgL6aabRywWEQqvmUjCzG6rUh5PyB sk22s5aL4F/kdBay6w+ARzXoK6qEzdflCtB7U0PcrEfLo5eajO1sUfTxrxgNi09u plCaYxh/9uHhHZ5J5Nly5enu/ZlfycB8cAUZkvAcQuAijdVLv+hx8ZNxWgLy82mv dGXSZ3v+vnO8hUiiKQ79p7uq90WWVw9bBiEkfWRpwXmefyo1SqeIhLLbFE0ibsfs Y7AecAV5c3KNUxnaDKaWLsNfdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJdgdKL OYn4PZLi7QVP0K8lPVqxMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6WkzAY6wNOc7w3O4JESwXWLbe+xELY4jjVaSLemMtBZ5p8TSzPaK3 ysQVYsGeHNEArntHQDqOXEyL0Lv+MhuFe1WGXkjLae+eoEpJUZRCrNf5ioRWyl3+ CFfLViknjQbV5ctVAmrPZUa8iBkxhG29Ubd3txl2UcPaZDtULqBmcDuhvzsmag3w yP7GsAlZuw5R1aurS1Mh9Zd/JEuDL4VjIX5rpln9SGLlOXmKQFspMdohWh9Zqr28 cqgJehRNg50yP7NJdAy/d+dUy/LDEQqQ0mEmPnTSUnCXhiSlzJcyzFiRFx5774OH loNTb8uVi9/h7bFGXYaWlnmEq+DrK9TM -----END CERTIFICATE-----Generated at Sat May 31 16:43:47 2025 by rpki-client