$ rpki-client -vvf rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft File: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft (raw, json) Hash identifier: 1f9XxCJzbMILT6n9xpxuuNB1g/XQjCpciSaDfa3GUo0= Subject key identifier: F7:60:E1:34:C4:74:ED:BB:64:8E:94:BD:10:A2:08:46:DB:FB:BB:37 Authority key identifier: 5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C Certificate issuer: /CN=A91569FB/serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft Manifest number: 0681 Signing time: Fri 30 May 2025 22:29:29 +0000 Manifest this update: Fri 30 May 2025 22:29:29 +0000 Manifest next update: Fri 06 Jun 2025 22:29:29 +0000 Files and hashes: 1: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl (hash: 3G91sY3VKS7cFR6ensrkbz4rQglm6izXYil1vyemWiU=) 2: 154E7E02762211EBA80A6D61C4F9AE02.roa (hash: qkyN60ECu4BYWQ3TkIsHpS5OSWIDmixvU/RZxjOnAoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91569FB, serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Validity Not Before: May 30 22:29:29 2025 GMT Not After : Jun 6 22:29:29 2025 GMT Subject: CN=683a3149-6627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:93:9b:e6:29:f6:78:16:c3:00:4a:ad:ef:d5: c3:f6:e1:a0:d7:40:3f:80:c5:60:5c:ca:ec:b6:64: df:34:15:d4:00:6f:e9:d3:33:3b:4a:80:fd:19:ca: 8e:dd:df:19:fd:f1:ae:79:86:2f:97:1d:ad:1d:82: 40:60:6a:2c:74:84:36:78:ac:60:1e:23:15:bb:03: 29:2d:8d:1b:95:4a:cd:cf:44:27:90:55:d9:08:7a: 71:f7:77:e5:a9:36:89:44:66:c5:72:fb:7b:60:ec: 63:2e:e6:c7:74:e8:78:da:b0:11:c8:55:8a:42:e1: b3:de:00:73:19:24:44:7c:d3:36:c1:77:8d:de:7a: 6a:8f:b6:dd:43:81:92:19:2a:e6:0b:41:49:dc:a0: 33:bd:7a:60:0b:1b:c6:eb:b4:05:c7:5a:47:08:42: 3a:ea:0b:08:0b:2f:9d:dd:2c:63:3a:15:75:fb:37: 1b:e4:06:a2:0e:b7:59:23:05:31:0d:17:22:92:06: e6:04:01:5d:85:22:74:a3:8d:9a:a2:0a:c1:d2:c1: b8:30:80:1b:17:b7:81:77:ba:b5:ca:87:30:6e:ba: d4:51:f8:19:8e:1e:4d:b4:26:90:7d:b6:4a:34:36: 31:4d:79:69:de:e1:d8:25:dc:ac:a7:0f:89:f7:d7: 96:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:60:E1:34:C4:74:ED:BB:64:8E:94:BD:10:A2:08:46:DB:FB:BB:37 X509v3 Authority Key Identifier: keyid:5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:27:5b:d3:5d:3d:ff:91:79:e5:0b:e1:17:0f:7c:e2:94:4f: 4a:7c:ee:36:24:56:d6:08:b3:e8:00:71:33:b0:2d:bd:97:98: 6b:7b:b4:81:91:70:2b:b2:94:6e:c8:68:3c:5e:e5:be:75:02: 85:c7:e6:87:bb:6c:58:00:16:b5:c4:1c:94:60:47:dc:5f:a4: 66:fd:33:e6:68:57:7e:b9:19:28:38:41:09:d2:e5:43:52:fb: 3b:70:5c:d4:65:90:2d:18:f9:5f:39:17:08:e6:ef:91:06:e1: 17:92:9b:a4:e9:4a:a2:62:bc:88:b6:95:9b:f4:5c:26:8e:0d: 77:3e:b7:6b:00:55:cb:e4:04:35:61:19:1d:d6:f5:4b:c0:4d: af:27:40:ac:1c:76:2e:40:5e:10:60:2f:65:40:30:de:11:13: b0:6c:c4:8e:72:f8:75:5f:6d:2f:91:9f:27:e2:f9:46:73:11: 60:09:a0:69:3e:02:fc:8f:bd:b4:4a:1c:4e:20:6e:13:e0:4f: 90:65:bb:b9:b6:12:3f:f9:14:3b:fd:f7:df:05:28:c5:87:95: f6:7f:2c:22:0b:46:ff:e2:a0:69:13:59:9f:ce:d1:ab:6c:aa: 74:db:cb:52:a8:f0:b1:d7:a4:31:18:99:f0:94:6f:cf:35:7f: d7:68:d4:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5RkIxMTAvBgNVBAUTKDVERUUxNkVGODVBMkJGODREQUQ4ODc2NjY3NTlCMUVD MTVEMUI5NEMwHhcNMjUwNTMwMjIyOTI5WhcNMjUwNjA2MjIyOTI5WjAYMRYwFAYD VQQDEw02ODNhMzE0OS02NjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85Ob5in2eBbDAEqt79XD9uGg10A/gMVgXMrstmTfNBXUAG/p0zM7SoD9GcqO 3d8Z/fGueYYvlx2tHYJAYGosdIQ2eKxgHiMVuwMpLY0blUrNz0QnkFXZCHpx93fl qTaJRGbFcvt7YOxjLubHdOh42rARyFWKQuGz3gBzGSREfNM2wXeN3npqj7bdQ4GS GSrmC0FJ3KAzvXpgCxvG67QFx1pHCEI66gsICy+d3SxjOhV1+zcb5AaiDrdZIwUx DRcikgbmBAFdhSJ0o42aogrB0sG4MIAbF7eBd7q1yocwbrrUUfgZjh5NtCaQfbZK NDYxTXlp3uHYJdyspw+J99eW1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdg4TTE dO27ZI6UvRCiCEbb+7s3MB8GA1UdIwQYMBaAFF3uFu+For+E2tiHZmdZsewV0blM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjlGQi84REUxRENEQTc2 MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0VGEySWRtWjFteDdCWFJ1 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlNFc3NFdpdjRUYTJJZG1aMW14N0JYUnVVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjlGQi84REUxRENEQTc2MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0 VGEySWRtWjFteDdCWFJ1VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSJ1vTXT3/kXnlC+EXD3zilE9KfO42JFbWCLPoAHEzsC29l5hre7SB kXArspRuyGg8XuW+dQKFx+aHu2xYABa1xByUYEfcX6Rm/TPmaFd+uRkoOEEJ0uVD Uvs7cFzUZZAtGPlfORcI5u+RBuEXkpuk6UqiYryItpWb9Fwmjg13PrdrAFXL5AQ1 YRkd1vVLwE2vJ0CsHHYuQF4QYC9lQDDeEROwbMSOcvh1X20vkZ8n4vlGcxFgCaBp PgL8j720ShxOIG4T4E+QZbu5thI/+RQ7/fffBSjFh5X2fywiC0b/4qBpE1mfztGr bKp028tSqPCx16QxGJnwlG/PNX/XaNTx -----END CERTIFICATE-----Generated at Sat May 31 17:04:58 2025 by rpki-client