$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: 9C6jzgNhwtN6H+hdTYyqarush5ISqiv76FSEvrNPX8s= Subject key identifier: D0:48:B9:C4:C7:80:61:83:CB:E4:94:55:68:89:BA:8A:88:59:7F:BD Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: EA Signing time: Sat 31 May 2025 04:58:36 +0000 Manifest this update: Sat 31 May 2025 04:58:36 +0000 Manifest next update: Sat 07 Jun 2025 04:58:36 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: gFGrOt0ykE7HsXgrD+tZNn9AoNPJQYcFuDnr6+4fFxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: May 31 04:58:36 2025 GMT Not After : Jun 7 04:58:36 2025 GMT Subject: CN=683a8c7c-2e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7e:5e:2e:40:00:66:c5:c0:7a:b8:86:36:11: 9f:0f:77:7c:0a:72:80:8c:97:cc:22:73:8f:1d:a4: 21:3b:b0:64:4f:34:6f:72:6c:50:65:5c:d6:91:42: 7c:7f:41:de:fa:04:62:ed:98:38:4b:2b:02:e6:57: 60:04:ae:ac:da:f4:e1:22:cf:52:ca:d2:02:41:19: aa:3f:14:4f:92:c2:43:5a:95:c3:5f:97:f3:48:77: f4:01:d0:59:77:fa:99:01:1c:9b:74:84:36:4d:dd: 0a:d3:da:13:c1:56:d9:c0:8c:14:8f:ed:c0:9e:34: f1:66:a7:3d:38:f9:76:00:e6:7b:1e:ad:c0:b3:0c: 8d:6e:be:67:39:cd:18:c5:df:13:47:b1:ae:7f:cb: 91:00:4a:0c:15:1d:b3:5d:33:d1:ff:b7:86:75:96: 0c:8d:c4:1b:fa:59:19:03:13:b8:06:cc:5e:1f:80: d8:5c:df:72:a5:26:24:46:94:c7:3f:65:db:eb:03: 02:bc:1c:37:ec:5d:34:5f:92:4a:29:00:02:32:35: bb:f3:0c:14:b8:4a:9e:39:bc:95:ce:76:6f:3a:3c: 79:25:b9:74:40:07:9c:7b:7f:be:26:36:fd:fd:eb: 23:89:61:3a:a5:04:5d:ab:aa:6a:6e:13:e4:fb:81: 80:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:48:B9:C4:C7:80:61:83:CB:E4:94:55:68:89:BA:8A:88:59:7F:BD X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:df:cb:d3:c5:b7:1e:ff:c8:33:9e:fa:6d:b3:62:ea:00:27: ac:11:a3:8f:16:7e:dc:ab:df:b4:ee:d3:9c:78:e4:44:48:6f: 2c:4f:86:17:c4:f2:c4:94:69:bb:75:bd:f7:16:07:ae:63:4d: 8e:8a:c3:0c:1b:26:d7:7b:c0:74:36:f0:ab:d2:ff:e2:bb:56: 43:d3:3f:e1:3d:11:cf:1a:7e:da:a0:15:5e:b6:08:b6:da:58: 34:5e:2b:67:da:35:39:fc:08:e2:c1:ef:81:87:5f:41:92:24: 6e:da:da:90:59:76:a0:6e:33:06:13:4e:14:67:c8:4c:fb:52: 2e:8c:08:ae:02:7a:2e:cc:65:32:5d:b6:89:7b:f9:35:6a:5f: ec:73:47:cb:41:00:4b:b3:6c:2a:bd:0d:b3:82:39:5f:e1:aa: b1:7d:72:5b:9b:e7:df:97:51:77:44:5a:82:2e:01:96:4d:96: f1:7f:4a:9b:21:b2:4e:45:7a:6f:7a:f7:ef:dd:36:43:88:fe: 15:52:f8:43:2d:09:88:9d:15:86:f0:cc:e9:6a:93:d4:5f:41: 3c:6f:96:e9:4a:04:f8:13:de:63:a5:6f:d2:2c:9e:ef:d2:82: 65:b8:72:bf:b8:e1:da:0d:ee:8b:6c:8f:26:27:14:39:47:3e: de:bb:93:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUwNTMxMDQ1ODM2WhcNMjUwNjA3MDQ1ODM2WjAYMRYwFAYD VQQDEw02ODNhOGM3Yy0yZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH5eLkAAZsXAeriGNhGfD3d8CnKAjJfMInOPHaQhO7BkTzRvcmxQZVzWkUJ8 f0He+gRi7Zg4SysC5ldgBK6s2vThIs9SytICQRmqPxRPksJDWpXDX5fzSHf0AdBZ d/qZARybdIQ2Td0K09oTwVbZwIwUj+3AnjTxZqc9OPl2AOZ7Hq3AswyNbr5nOc0Y xd8TR7Guf8uRAEoMFR2zXTPR/7eGdZYMjcQb+lkZAxO4BsxeH4DYXN9ypSYkRpTH P2Xb6wMCvBw37F00X5JKKQACMjW78wwUuEqeObyVznZvOjx5Jbl0QAece3++Jjb9 /esjiWE6pQRdq6pqbhPk+4GAgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBIucTH gGGDy+SUVWiJuoqIWX+9MB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc38vTxbce/8gznvpts2LqACesEaOPFn7cq9+07tOceORESG8sT4YX xPLElGm7db33FgeuY02OisMMGybXe8B0NvCr0v/iu1ZD0z/hPRHPGn7aoBVetgi2 2lg0Xitn2jU5/Ajiwe+Bh19BkiRu2tqQWXagbjMGE04UZ8hM+1IujAiuAnouzGUy XbaJe/k1al/sc0fLQQBLs2wqvQ2zgjlf4aqxfXJbm+ffl1F3RFqCLgGWTZbxf0qb IbJORXpvevfv3TZDiP4VUvhDLQmInRWG8MzpapPUX0E8b5bpSgT4E95jpW/SLJ7v 0oJluHK/uOHaDe6LbI8mJxQ5Rz7eu5Pd -----END CERTIFICATE-----Generated at Sat May 31 16:59:27 2025 by rpki-client