$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: rLoF51tstTqQQi/fNmSwQGuuUKJn9VcaqC4J6bocltA= Subject key identifier: 94:90:65:08:31:0C:26:89:6E:CC:82:41:4D:22:15:7E:F0:07:BF:67 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: CD Signing time: Sat 31 May 2025 06:06:01 +0000 Manifest this update: Sat 31 May 2025 06:06:01 +0000 Manifest next update: Sat 07 Jun 2025 06:06:01 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: nNfDNybY0A26/oSLn8U8gjhoFD+uTFxXV5Kt3EgkGj4=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: May 31 06:06:01 2025 GMT Not After : Jun 7 06:06:01 2025 GMT Subject: CN=683a9c49-3ad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:85:e5:8a:ca:28:dc:16:16:cc:e3:5a:72:35: 1c:a9:7b:02:43:68:9e:55:21:5f:4b:d4:d1:b5:0c: b5:f6:10:79:31:6f:02:4a:f2:44:b8:c9:03:49:41: 38:d3:b2:e4:b9:22:17:a0:41:a4:26:f1:42:a1:c9: 46:ff:e6:a5:7d:0c:6c:ab:74:6a:54:f4:2a:47:19: 91:b4:a3:f4:43:7c:ed:18:1b:db:05:b6:83:eb:ec: e1:81:c8:55:50:78:80:f1:6e:f7:9e:85:b7:b7:24: 11:b7:f9:4b:d1:83:b0:58:ab:72:f4:c8:fa:11:ce: 50:4c:9c:a4:e0:7f:ab:79:b1:66:4b:f8:35:de:72: 37:bf:95:cf:22:fa:c7:cc:ed:98:03:cc:90:85:82: df:1c:e2:b8:05:c9:f2:8e:c5:ad:15:c4:33:59:7c: 42:78:40:cf:2f:22:b3:be:3c:17:11:38:de:c6:23: 74:13:31:55:e4:e4:3e:14:cc:2f:a0:1d:36:13:9e: 6b:1c:00:b0:41:12:0b:82:dc:f6:ff:62:9c:d8:f7: 77:fe:93:7a:8f:63:ec:6f:3f:13:68:b7:dc:48:0a: d5:17:fc:3e:95:55:85:87:b3:5f:0e:c7:91:34:9b: ef:fe:60:cc:3d:15:de:f6:04:71:0d:ec:69:64:8e: 55:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:90:65:08:31:0C:26:89:6E:CC:82:41:4D:22:15:7E:F0:07:BF:67 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:79:6b:d6:0d:b2:00:31:6b:49:c3:d3:c5:6c:2d:d3:ae:95: b8:b1:e1:9a:a7:5e:8b:5b:cf:43:61:c2:f1:81:f6:01:39:27: 27:e4:66:f8:30:f2:06:13:16:c6:8e:2c:1e:e7:fa:4e:00:13: 1f:80:cf:b7:ec:e0:0c:55:77:de:46:f0:9f:ba:4b:c0:2f:74: fc:20:02:5e:cd:5a:f6:16:be:76:53:55:e8:18:89:7b:e3:77: 81:0e:0b:39:ac:04:18:d2:f1:b3:e4:9c:72:7a:ba:65:fe:7e: ae:ed:e6:21:39:37:4a:99:5e:fa:e1:7a:c4:e4:48:5b:6f:7a: e1:b0:9d:9a:56:26:3d:f4:9c:42:a1:7c:1f:d8:c5:86:00:fa: 86:ac:07:e9:f8:79:25:fe:fd:30:5c:ea:eb:0b:1d:1b:14:84: 21:4c:9e:f1:14:2d:35:9a:af:7d:18:10:69:20:db:2e:3f:5c: a9:95:ff:3b:66:1b:14:21:0b:b8:70:cb:c0:40:b5:c1:5c:9b: 99:25:8a:45:50:b9:71:a0:1c:b0:a0:39:98:a6:f6:78:b8:e1: b2:e7:8d:f6:fb:09:0f:2f:6c:71:7b:ed:61:c7:05:a3:5e:94: 9e:12:ba:d2:0b:9a:41:2e:54:cb:f0:53:33:af:4f:1e:db:3f: 0f:4b:d9:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUwNTMxMDYwNjAxWhcNMjUwNjA3MDYwNjAxWjAYMRYwFAYD VQQDEw02ODNhOWM0OS0zYWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoXlisoo3BYWzONacjUcqXsCQ2ieVSFfS9TRtQy19hB5MW8CSvJEuMkDSUE4 07LkuSIXoEGkJvFCoclG/+alfQxsq3RqVPQqRxmRtKP0Q3ztGBvbBbaD6+zhgchV UHiA8W73noW3tyQRt/lL0YOwWKty9Mj6Ec5QTJyk4H+rebFmS/g13nI3v5XPIvrH zO2YA8yQhYLfHOK4BcnyjsWtFcQzWXxCeEDPLyKzvjwXETjexiN0EzFV5OQ+FMwv oB02E55rHACwQRILgtz2/2Kc2Pd3/pN6j2Psbz8TaLfcSArVF/w+lVWFh7NfDseR NJvv/mDMPRXe9gRxDexpZI5VUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSQZQgx DCaJbsyCQU0iFX7wB79nMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZeWvWDbIAMWtJw9PFbC3TrpW4seGap16LW89DYcLxgfYBOScn5Gb4 MPIGExbGjiwe5/pOABMfgM+37OAMVXfeRvCfukvAL3T8IAJezVr2Fr52U1XoGIl7 43eBDgs5rAQY0vGz5Jxyerpl/n6u7eYhOTdKmV764XrE5Ehbb3rhsJ2aViY99JxC oXwf2MWGAPqGrAfp+Hkl/v0wXOrrCx0bFIQhTJ7xFC01mq99GBBpINsuP1yplf87 ZhsUIQu4cMvAQLXBXJuZJYpFULlxoBywoDmYpvZ4uOGy5432+wkPL2xxe+1hxwWj XpSeErrSC5pBLlTL8FMzr08e2z8PS9lS -----END CERTIFICATE-----Generated at Sat May 31 17:44:03 2025 by rpki-client