$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: 66ln7IgmiHjKcOF/ig9h7L1fPOtHSpZFUrr5+d7ZXqE= Subject key identifier: 83:3D:6C:5B:37:C2:C8:D6:EF:18:E9:8D:49:24:29:01:0B:15:AB:91 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 046A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 0466 Signing time: Sat 31 May 2025 00:20:09 +0000 Manifest this update: Sat 31 May 2025 00:20:08 +0000 Manifest next update: Sat 07 Jun 2025 00:20:08 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: A8jg3Cezl9IaQ4b8UlDv2iSswQTaplQDiP8p9QsOT58=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: IcEuGPt4GTNEbPQpjAanlaif3gO8wRzi48eufGxQr4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: May 31 00:20:08 2025 GMT Not After : Jun 7 00:20:08 2025 GMT Subject: CN=683a4b38-4ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:68:3f:fb:b6:28:0e:e7:4b:35:5f:8c:b4:83: b6:ee:9e:11:d4:81:56:37:f1:34:07:55:4e:b1:c3: 65:56:2e:d6:ca:91:1c:1a:c9:8b:56:ce:7a:ca:e7: 85:fc:ca:df:6d:fa:b0:92:9c:af:94:b8:21:9f:96: e7:cf:50:f7:ad:21:11:60:ee:c0:99:aa:e5:4f:ca: 84:f4:2d:59:86:a1:5c:8c:32:a8:aa:a1:38:62:e8: c1:7f:e8:42:e8:99:40:4d:6b:d0:20:ce:6a:24:69: 53:99:99:83:3d:d5:4c:92:31:49:bd:bf:db:2c:0d: d3:06:b9:e2:13:34:c2:d6:7e:e6:f8:1d:68:d5:8c: 98:e2:88:6b:4e:64:ac:c3:09:75:4e:83:6e:74:6f: b8:7f:de:a6:ac:cb:c1:83:f5:a7:b4:f4:9b:7a:65: b3:d6:f0:e1:ad:95:fb:72:6e:90:4c:33:21:6e:91: 44:79:ea:b3:11:d8:f2:c3:f6:10:26:fe:58:2e:28: 0d:f2:80:1f:a2:ce:f3:a6:8e:46:de:22:ba:51:9c: 34:6e:83:9f:86:32:15:f0:9b:70:af:fd:47:93:b7: 61:96:3d:84:c2:b2:25:7a:54:70:44:23:29:69:1e: ff:1e:63:f1:49:6c:78:1e:3c:ac:33:8a:df:46:92: 9f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3D:6C:5B:37:C2:C8:D6:EF:18:E9:8D:49:24:29:01:0B:15:AB:91 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:e1:6b:77:55:9a:bd:ad:59:64:b2:79:b2:18:eb:39:0c:18: ee:c0:aa:3d:46:ae:0d:2a:f0:ce:ea:31:29:b5:1e:7e:56:68: 34:6f:6b:a6:97:06:e7:20:7c:7e:5d:98:a7:6c:29:7a:90:42: d8:4f:9a:6c:6d:52:0d:fe:86:86:8d:e3:a3:60:b7:3e:ae:65: 2a:22:8f:1f:1c:90:e6:54:06:be:1b:df:a7:25:fb:94:82:6e: 97:55:16:87:e4:2c:bc:8c:9b:d5:36:5b:66:d0:bd:48:e5:2c: 0a:15:84:7d:dc:1e:ac:ef:f2:00:4a:66:ce:1a:73:c7:34:ed: e3:90:0f:b3:09:96:f3:c7:3a:69:2b:58:b1:87:b6:14:fa:2e: aa:f1:5d:b9:c7:a0:89:f4:28:ee:53:2a:5a:45:da:de:22:0b: 62:81:2e:60:65:6b:38:db:a2:61:69:34:39:a5:c8:46:0d:c0: 09:e4:4f:d3:f7:39:b2:d9:6e:a0:25:a4:72:4e:0e:ca:92:6a: 6a:04:07:67:6c:f5:40:13:85:b5:df:4c:05:08:60:43:1a:11: b2:da:dc:22:78:0e:d3:0a:77:28:af:b1:b5:3f:98:af:a1:91: 78:fe:9e:b6:28:d1:89:05:33:71:91:78:96:42:df:9d:d0:b2: 30:cb:12:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUwNTMxMDAyMDA4WhcNMjUwNjA3MDAyMDA4WjAYMRYwFAYD VQQDEw02ODNhNGIzOC00YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmg/+7YoDudLNV+MtIO27p4R1IFWN/E0B1VOscNlVi7WypEcGsmLVs56yueF /MrfbfqwkpyvlLghn5bnz1D3rSERYO7AmarlT8qE9C1ZhqFcjDKoqqE4YujBf+hC 6JlATWvQIM5qJGlTmZmDPdVMkjFJvb/bLA3TBrniEzTC1n7m+B1o1YyY4ohrTmSs wwl1ToNudG+4f96mrMvBg/WntPSbemWz1vDhrZX7cm6QTDMhbpFEeeqzEdjyw/YQ Jv5YLigN8oAfos7zpo5G3iK6UZw0boOfhjIV8Jtwr/1Hk7dhlj2EwrIlelRwRCMp aR7/HmPxSWx4HjysM4rfRpKfBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM9bFs3 wsjW7xjpjUkkKQELFauRMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY4Wt3VZq9rVlksnmyGOs5DBjuwKo9Rq4NKvDO6jEptR5+Vmg0b2um lwbnIHx+XZinbCl6kELYT5psbVIN/oaGjeOjYLc+rmUqIo8fHJDmVAa+G9+nJfuU gm6XVRaH5Cy8jJvVNltm0L1I5SwKFYR93B6s7/IASmbOGnPHNO3jkA+zCZbzxzpp K1ixh7YU+i6q8V25x6CJ9CjuUypaRdreIgtigS5gZWs426JhaTQ5pchGDcAJ5E/T 9zmy2W6gJaRyTg7KkmpqBAdnbPVAE4W130wFCGBDGhGy2twieA7TCncor7G1P5iv oZF4/p62KNGJBTNxkXiWQt+d0LIwyxLF -----END CERTIFICATE-----Generated at Sat May 31 16:34:56 2025 by rpki-client