$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: 92d1TWop64koRYDktBgw8Lxt+OIHyITtPIpCO50Wt24= Subject key identifier: E7:B2:6C:A6:6A:D7:C6:D1:4D:48:48:F7:83:1D:3B:FE:84:6D:26:92 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 3F Signing time: Sat 31 May 2025 07:10:29 +0000 Manifest this update: Sat 31 May 2025 07:10:29 +0000 Manifest next update: Sat 07 Jun 2025 07:10:29 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: DXdUOwWFScnxum1IWMWGl7dljnOEKTLo3SPDQnNZZdA=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: xsROjP2odAWh0kHafpV6U2yAzjD0YVmpO7HNKMKB17M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: May 31 07:10:29 2025 GMT Not After : Jun 7 07:10:29 2025 GMT Subject: CN=683aab65-dcda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a1:d1:32:40:7b:99:7d:8d:5f:67:11:88:e5: bb:00:d7:c2:7f:06:41:f9:87:7f:6f:e3:eb:1c:59: 34:44:ee:f4:eb:a4:6f:b1:f3:f0:ca:f6:16:ea:87: b9:db:c5:fb:a2:b8:72:74:3b:e7:ce:8b:db:32:bb: 83:91:23:e5:c8:46:97:f5:5d:d2:b8:3b:13:9f:90: ef:db:7d:87:94:26:a6:30:2e:3d:5b:46:9e:2b:e2: 00:23:2d:59:52:e9:a0:04:20:eb:6d:84:ae:06:2a: d4:ad:b1:57:b2:d7:c1:ed:4b:3c:0b:81:03:a5:ab: e8:b0:c4:f8:ce:61:49:e2:7c:fa:5a:5a:a5:73:ae: 65:7c:64:06:d5:94:43:d8:a9:c9:d2:00:04:75:c0: 07:9b:7d:48:d0:ac:a6:66:02:92:da:4b:e2:28:71: cd:9d:f2:d4:77:3a:14:a2:b2:e1:fd:80:9c:04:83: 3a:41:20:56:dd:fd:fb:99:af:a2:ec:8c:18:b3:4d: 76:39:5c:1c:20:2b:74:dc:ff:87:53:7c:0c:7f:5f: 14:99:77:b9:5e:fe:38:67:23:06:66:d2:33:02:fb: 1a:bf:ae:77:2e:4c:0e:74:0a:65:1e:3d:65:4d:36: 97:cd:70:89:55:7c:27:c7:eb:f2:8b:cf:38:c5:14: b7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B2:6C:A6:6A:D7:C6:D1:4D:48:48:F7:83:1D:3B:FE:84:6D:26:92 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:cd:c2:d1:bb:3f:41:5c:7a:61:bf:86:13:d2:5f:e6:36:b8: 3b:9b:85:2f:f3:d0:82:55:7d:1e:f3:70:4e:d1:05:8d:4a:08: c6:39:cb:97:d1:9e:8b:07:89:ab:ee:b5:b0:46:28:00:af:d4: 77:57:88:c5:5a:81:c4:36:ec:5e:4a:b7:86:1d:70:e1:16:ee: b9:e7:a3:93:68:5d:66:3c:da:69:78:6a:77:f3:45:78:08:36: 56:8d:d2:0a:a2:7b:2c:66:57:68:69:d4:7a:d3:75:09:5d:4d: 3b:b8:76:12:42:0e:ad:1e:07:ef:61:79:de:47:cb:fa:16:f9: 21:85:2c:5d:0f:69:bf:b3:cb:4a:7f:4a:ed:28:fe:92:69:95: 81:86:8c:c6:c3:85:cc:3e:81:13:e7:7d:1d:b2:71:99:d6:83: 5b:63:43:2e:43:5e:1a:43:b5:b8:82:a0:cc:d6:48:3b:64:62: 9a:07:1f:73:3e:95:66:3c:68:15:e8:23:bf:c0:c3:b8:d3:b7: c5:a5:17:98:15:9b:b3:c2:f7:6f:5c:71:a6:e4:ba:09:a9:e2: 42:2d:83:03:25:9c:64:b5:15:70:9d:26:ff:0e:c4:26:7f:5c: a6:37:e3:a3:65:bd:98:7a:d7:25:ba:5e:3d:bb:8e:d1:b0:bc: 79:94:ca:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA1MzEwNzEwMjlaFw0yNTA2MDcwNzEwMjlaMBgxFjAUBgNV BAMTDTY4M2FhYjY1LWRjZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsodEyQHuZfY1fZxGI5bsA18J/BkH5h39v4+scWTRE7vTrpG+x8/DK9hbqh7nb xfuiuHJ0O+fOi9syu4ORI+XIRpf1XdK4OxOfkO/bfYeUJqYwLj1bRp4r4gAjLVlS 6aAEIOtthK4GKtStsVey18HtSzwLgQOlq+iwxPjOYUnifPpaWqVzrmV8ZAbVlEPY qcnSAAR1wAebfUjQrKZmApLaS+Iocc2d8tR3OhSisuH9gJwEgzpBIFbd/fuZr6Ls jBizTXY5XBwgK3Tc/4dTfAx/XxSZd7le/jhnIwZm0jMC+xq/rncuTA50CmUePWVN NpfNcIlVfCfH6/KLzzjFFLfbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU57JspmrX xtFNSEj3gx07/oRtJpIwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw RjkwLzA0Nzc5QjlDRUQ4MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFk ald2SlJtdHpRQXVFeS04NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHTNwtG7P0FcemG/hhPSX+Y2uDubhS/z0IJVfR7zcE7RBY1KCMY5y5fR nosHiavutbBGKACv1HdXiMVagcQ27F5Kt4YdcOEW7rnno5NoXWY82ml4anfzRXgI NlaN0gqieyxmV2hp1HrTdQldTTu4dhJCDq0eB+9hed5Hy/oW+SGFLF0Pab+zy0p/ Su0o/pJplYGGjMbDhcw+gRPnfR2ycZnWg1tjQy5DXhpDtbiCoMzWSDtkYpoHH3M+ lWY8aBXoI7/Aw7jTt8WlF5gVm7PC929ccabkugmp4kItgwMlnGS1FXCdJv8OxCZ/ XKY346NlvZh61yW6Xj27jtGwvHmUyj4= -----END CERTIFICATE-----Generated at Sat May 31 16:35:57 2025 by rpki-client