$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: bVc3laLfiCdCZ5AeS9T0tZUhdJG9ZsDL8KQpGoHTlt4= Subject key identifier: 1B:BD:35:00:D0:55:C3:33:67:01:79:40:3A:06:0F:83:0F:BB:17:23 Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 04CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 04C5 Signing time: Sat 31 May 2025 00:01:53 +0000 Manifest this update: Sat 31 May 2025 00:01:53 +0000 Manifest next update: Sat 07 Jun 2025 00:01:53 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: Qxsh3fKM+hrQkNm2d4qVKNaAzNXTJfW2PQg3yg8Ldg8=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: APl5b4vCPo52FjFgWioqB5D0vfXVOhLUTwuTuf6xSiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: May 31 00:01:53 2025 GMT Not After : Jun 7 00:01:53 2025 GMT Subject: CN=683a46f1-7fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4f:cc:3c:c9:8c:80:48:3f:dd:6f:5c:82:1e: a4:59:f4:8a:5f:2e:e8:f0:90:5f:04:ff:d2:7a:7f: 91:d6:e8:f9:c4:9e:0a:17:a6:e9:a1:f9:26:7e:80: cb:d3:e6:9f:2d:b1:fd:3b:0b:2c:57:eb:2c:16:5d: b0:eb:90:e3:bf:0a:2d:37:32:d7:ab:ea:cb:50:64: 3d:c7:fa:f7:bd:c4:80:02:59:df:60:c0:29:80:d9: a3:0d:95:9a:7f:0c:19:f7:11:2a:57:d2:ef:bb:8e: ff:f4:4f:3e:e4:7f:8c:08:a3:35:10:95:d8:51:cd: 18:ea:7b:14:b8:ec:54:8f:43:c4:f8:a0:43:4a:e6: 9d:ad:e5:4e:76:86:60:7f:39:31:2c:66:25:c0:7b: ce:05:61:17:54:73:e6:37:2b:ce:aa:ac:01:59:70: f0:26:81:fb:78:4f:d1:62:8b:06:4e:fb:57:9a:d4: fc:7f:43:9f:f9:cc:77:d0:75:fa:4f:54:7f:8e:e7: 06:18:54:a7:ff:29:3a:b1:39:7d:3d:81:b2:63:cc: 09:ff:ab:62:df:f0:60:07:b3:5b:98:1a:b1:5f:32: 68:33:5b:41:2e:37:df:4d:ed:53:19:9b:22:0d:14: 29:96:b7:1d:0e:ef:8d:2b:f7:e6:e0:f4:c6:f5:f4: 50:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BD:35:00:D0:55:C3:33:67:01:79:40:3A:06:0F:83:0F:BB:17:23 X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:86:df:cd:90:cf:39:d7:82:1a:2f:53:19:2b:b4:0e:9e:a5: 88:b5:b9:05:0b:27:ae:50:65:1a:01:95:86:7c:be:4b:ad:35: 91:38:3a:e7:12:0d:18:fd:22:c8:8a:c8:5f:53:3f:ca:b3:9c: 6d:96:0f:85:2b:2a:67:ce:2a:0f:47:bf:05:24:28:3b:dd:d5: 45:bc:4a:ff:75:12:de:10:79:07:28:bf:eb:6d:7e:61:47:dc: 06:b7:37:b7:b5:a6:8a:ce:c7:68:86:6a:58:08:0e:7a:15:37: 35:bd:df:b7:b2:23:9f:07:6b:b1:39:a4:4c:c1:5a:05:41:88: 48:4c:0d:8e:1e:5c:84:aa:4c:0f:8c:7c:b0:01:53:fd:26:ca: 83:37:05:5d:fb:48:02:f4:c7:4a:de:86:c6:91:5a:73:5e:3e: a7:84:89:b3:54:3d:84:0d:81:3d:8f:55:bf:ac:92:5f:84:ea: f8:8f:70:14:14:ea:ec:a1:24:cc:8b:0d:38:1c:9f:3c:f4:d5: fe:db:37:14:94:16:24:a8:62:4b:76:22:b4:d2:70:f7:42:75: 1b:cf:b9:4a:a2:cd:23:38:e3:3c:49:f2:9b:a7:4c:98:e4:08: 9d:df:f2:fb:d1:50:54:4f:e2:6a:ec:c5:b3:ab:7b:7c:9c:d7: 5d:b7:02:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUwNTMxMDAwMTUzWhcNMjUwNjA3MDAwMTUzWjAYMRYwFAYD VQQDEw02ODNhNDZmMS03ZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5U/MPMmMgEg/3W9cgh6kWfSKXy7o8JBfBP/Sen+R1uj5xJ4KF6bpofkmfoDL 0+afLbH9OwssV+ssFl2w65DjvwotNzLXq+rLUGQ9x/r3vcSAAlnfYMApgNmjDZWa fwwZ9xEqV9Lvu47/9E8+5H+MCKM1EJXYUc0Y6nsUuOxUj0PE+KBDSuadreVOdoZg fzkxLGYlwHvOBWEXVHPmNyvOqqwBWXDwJoH7eE/RYosGTvtXmtT8f0Of+cx30HX6 T1R/jucGGFSn/yk6sTl9PYGyY8wJ/6ti3/BgB7NbmBqxXzJoM1tBLjffTe1TGZsi DRQplrcdDu+NK/fm4PTG9fRQRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBu9NQDQ VcMzZwF5QDoGD4MPuxcjMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXht/NkM8514IaL1MZK7QOnqWItbkFCyeuUGUaAZWGfL5LrTWRODrn Eg0Y/SLIishfUz/Ks5xtlg+FKypnzioPR78FJCg73dVFvEr/dRLeEHkHKL/rbX5h R9wGtze3taaKzsdohmpYCA56FTc1vd+3siOfB2uxOaRMwVoFQYhITA2OHlyEqkwP jHywAVP9JsqDNwVd+0gC9MdK3obGkVpzXj6nhImzVD2EDYE9j1W/rJJfhOr4j3AU FOrsoSTMiw04HJ889NX+2zcUlBYkqGJLdiK00nD3QnUbz7lKos0jOOM8SfKbp0yY 5Aid3/L70VBUT+Jq7MWzq3t8nNddtwIG -----END CERTIFICATE-----Generated at Sat May 31 17:23:32 2025 by rpki-client