$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: qmZmmsrGlZ1UkAakFFClTmGKIu8lJ1TOAOZaaMSZsHc= Subject key identifier: 16:3C:6E:C9:81:EE:75:80:9B:13:D0:CF:F2:CB:33:66:58:06:75:43 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0137 Signing time: Sat 31 May 2025 04:05:25 +0000 Manifest this update: Sat 31 May 2025 04:05:24 +0000 Manifest next update: Sat 07 Jun 2025 04:05:24 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: R629EzXr9a4pUyuc66152p8EXAH+H4tNuZ1aeF6jXGc=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: May 31 04:05:24 2025 GMT Not After : Jun 7 04:05:24 2025 GMT Subject: CN=683a8004-25ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:2c:5e:84:c2:85:0c:76:8b:47:c8:b1:ce: b7:d5:a4:37:3d:91:84:14:66:0e:33:8a:dd:b3:ee: c1:7f:08:6b:58:50:dc:ca:80:1e:bd:b6:8b:d8:c2: 73:16:3f:e8:b8:1b:ea:8a:3a:1d:ac:e0:6c:90:ba: 60:3a:31:cb:b6:fe:67:7f:a2:d8:ce:57:44:9e:d2: 6c:08:9d:f9:da:e1:66:9a:cb:ab:f4:64:4a:97:ce: 2e:76:8e:c3:2f:b1:f5:12:8d:ff:a3:5d:7f:fb:e4: ac:21:a2:8e:2e:42:f8:ba:f5:ac:2f:ba:aa:37:4e: e6:7d:41:ae:be:f5:21:15:56:61:dc:79:18:c0:8d: c0:41:fe:b9:40:8c:9d:04:2f:1b:b9:37:e3:c2:ca: d5:5b:4c:cb:2f:79:b3:8d:a9:a6:83:4c:64:fc:bc: d0:62:d2:b1:6a:2c:b1:6f:b1:13:49:e9:b6:ff:f1: d2:2c:4c:9b:4e:93:31:c9:31:a8:07:1f:a4:87:c1: bc:c4:8e:d2:71:f8:11:fe:f5:e7:29:47:02:f6:72: 5e:ea:13:5e:32:77:cd:42:15:6b:4a:a5:cc:9c:50: d3:24:ac:80:35:38:e3:af:45:e6:66:4b:52:0c:7b: ea:d3:7e:11:3d:41:e5:ca:f1:c0:55:de:71:19:f6: 65:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3C:6E:C9:81:EE:75:80:9B:13:D0:CF:F2:CB:33:66:58:06:75:43 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f1:93:9c:c9:34:aa:50:5c:84:b8:1e:67:88:52:a7:a6:45: b4:f6:06:af:bb:75:d1:c8:7f:f6:bd:d3:21:48:36:f1:f8:99: 75:e4:ca:d5:fd:02:89:81:c2:f8:d3:df:3b:e6:08:66:29:13: 87:01:42:e9:61:a5:e8:c8:b9:2e:4d:80:13:29:bf:b3:19:7b: 66:7d:dc:e4:39:e8:84:d8:8a:5c:17:14:7e:3f:4e:7a:5a:e8: b1:9a:d7:2a:94:22:13:91:d2:6f:08:2c:66:c3:cd:aa:f4:bc: fe:1e:9d:e7:8f:e2:9f:e6:28:23:16:c9:5f:3e:e9:38:e0:c8: f1:f5:31:e9:1f:31:0c:7f:79:f3:93:0b:d5:8d:08:8c:cb:8d: 1a:9c:9b:df:27:1a:19:3c:02:16:c4:9b:99:0a:3d:70:2e:c7: 32:86:03:9d:f0:48:75:0b:b3:66:25:81:2b:3b:af:b6:8b:79: 85:66:70:a6:e3:18:5c:77:0c:b5:81:12:7a:4a:3d:0c:e4:8d: 52:91:36:26:f8:ee:1e:16:80:ac:53:0c:4c:ae:fb:68:b3:68: 47:0f:21:a1:c9:c7:f1:a8:da:8d:fd:ad:8f:45:0e:cb:ad:39: c3:f1:7e:80:d0:b8:4d:3b:f2:ca:ac:42:53:a1:c1:fa:ab:e0: ec:69:9f:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwNTMxMDQwNTI0WhcNMjUwNjA3MDQwNTI0WjAYMRYwFAYD VQQDEw02ODNhODAwNC0yNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5QsXoTChQx2i0fIsc631aQ3PZGEFGYOM4rds+7BfwhrWFDcyoAevbaL2MJz Fj/ouBvqijodrOBskLpgOjHLtv5nf6LYzldEntJsCJ352uFmmsur9GRKl84udo7D L7H1Eo3/o11/++SsIaKOLkL4uvWsL7qqN07mfUGuvvUhFVZh3HkYwI3AQf65QIyd BC8buTfjwsrVW0zLL3mzjammg0xk/LzQYtKxaiyxb7ETSem2//HSLEybTpMxyTGo Bx+kh8G8xI7ScfgR/vXnKUcC9nJe6hNeMnfNQhVrSqXMnFDTJKyANTjjr0XmZktS DHvq034RPUHlyvHAVd5xGfZlNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBY8bsmB 7nWAmxPQz/LLM2ZYBnVDMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc8ZOcyTSqUFyEuB5niFKnpkW09gavu3XRyH/2vdMhSDbx+Jl15MrV /QKJgcL409875ghmKROHAULpYaXoyLkuTYATKb+zGXtmfdzkOeiE2IpcFxR+P056 WuixmtcqlCITkdJvCCxmw82q9Lz+Hp3nj+Kf5igjFslfPuk44Mjx9THpHzEMf3nz kwvVjQiMy40anJvfJxoZPAIWxJuZCj1wLscyhgOd8Eh1C7NmJYErO6+2i3mFZnCm 4xhcdwy1gRJ6Sj0M5I1SkTYm+O4eFoCsUwxMrvtos2hHDyGhycfxqNqN/a2PRQ7L rTnD8X6A0LhNO/LKrEJTocH6q+DsaZ+n -----END CERTIFICATE-----Generated at Sat May 31 17:46:23 2025 by rpki-client