$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: IMJU5w5WgkWdrH2C7wLCiDifCm9ySP707OEQuNEPpj0= Subject key identifier: 7E:6D:84:E4:F6:4B:F5:51:5C:E5:0B:93:F4:08:0E:2E:E8:2C:9B:B2 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 08FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 08F7 Signing time: Fri 30 May 2025 20:35:52 +0000 Manifest this update: Fri 30 May 2025 20:35:51 +0000 Manifest next update: Fri 06 Jun 2025 20:35:51 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: wo+8wrrM/FkGnrNg323fb0L0y7xHsX7xGdG3zJYJ4Fg=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: May 30 20:35:51 2025 GMT Not After : Jun 6 20:35:51 2025 GMT Subject: CN=683a16a7-e540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:78:fa:19:55:66:33:69:a4:32:fa:ba:88:d3: b6:c8:0b:2c:27:19:59:ca:40:89:21:48:07:96:9e: 46:34:c0:ae:2b:23:6f:1e:97:45:aa:50:22:85:bc: d2:b9:32:dd:1d:d9:1f:f4:5c:ec:7a:0a:3e:a4:07: 78:94:b7:3c:85:3b:c6:4e:ff:75:d6:34:a6:ea:4b: 5f:0c:f1:cf:86:38:3a:ea:a7:99:7c:ff:05:3b:b7: 13:29:d3:5a:2e:dd:ea:39:82:b6:ea:4b:97:18:28: dd:95:29:2a:c8:c2:8f:f3:6a:8a:d8:2c:f1:22:1c: b2:1f:1a:39:e9:16:a3:b2:c2:58:a4:cb:14:5e:66: 59:5e:dd:ed:cb:4e:01:f7:34:35:89:39:17:83:b8: bf:1f:67:66:3d:2c:c7:b7:b8:46:e7:18:6d:a8:40: 51:c3:b9:df:05:e4:62:26:02:c7:08:7b:dd:a3:b5: 45:44:ff:87:d1:24:68:9b:3f:b1:d6:e8:d0:dc:60: 90:86:ff:0b:43:5c:ec:dc:d0:bd:f9:e3:cb:65:fe: d3:3d:d5:b4:72:e2:9d:01:34:15:a9:7e:05:8a:08: 00:ef:02:7a:05:b1:b7:bf:1c:7b:31:38:a2:17:91: c2:df:39:b6:23:3e:ba:54:21:a9:c8:dd:9f:60:77: 41:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6D:84:E4:F6:4B:F5:51:5C:E5:0B:93:F4:08:0E:2E:E8:2C:9B:B2 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:00:81:12:bc:69:e3:8f:23:c3:48:64:ff:20:e9:16:20:f8: 19:3a:24:de:13:04:32:63:00:19:64:4b:8d:4e:06:51:b5:69: 9a:f5:b3:e0:8f:03:6c:9a:67:d4:0d:bf:05:8c:4f:be:29:b6: 7e:56:c4:4c:78:25:d1:20:5c:f1:52:78:8f:0d:48:1d:fe:53: 24:f6:05:d8:3c:7a:93:bc:6e:3c:5c:6a:cd:35:6c:4e:9b:78: 75:6d:6a:82:71:09:a5:8f:c6:da:55:93:f2:69:7e:90:05:64: 2d:07:79:6b:5f:41:12:be:66:f6:2b:30:11:da:01:ba:5c:f0: 53:70:2f:16:0f:7b:5a:be:dc:0d:27:bb:a6:dc:7a:9b:8e:68: f9:9e:be:e5:7b:27:d5:7c:ce:ed:df:7b:57:22:34:90:00:79: 3a:b7:7d:56:4e:0c:97:83:2e:a9:2f:f6:60:c5:92:ac:f3:c8: cf:31:d5:58:cd:a9:d6:92:4d:2c:9f:d3:dd:fb:cc:91:6c:45: 09:4b:30:d0:32:e7:72:79:e2:db:9e:07:42:e0:e8:be:2c:55: 54:f3:f6:14:99:1c:a7:35:2e:e1:ff:ee:60:72:e2:01:d4:66: 58:d4:00:ec:89:55:70:80:da:2e:c4:db:cc:fa:b1:66:03:be: a8:1c:08:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUwNTMwMjAzNTUxWhcNMjUwNjA2MjAzNTUxWjAYMRYwFAYD VQQDEw02ODNhMTZhNy1lNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3j6GVVmM2mkMvq6iNO2yAssJxlZykCJIUgHlp5GNMCuKyNvHpdFqlAihbzS uTLdHdkf9Fzsego+pAd4lLc8hTvGTv911jSm6ktfDPHPhjg66qeZfP8FO7cTKdNa Lt3qOYK26kuXGCjdlSkqyMKP82qK2CzxIhyyHxo56RajssJYpMsUXmZZXt3ty04B 9zQ1iTkXg7i/H2dmPSzHt7hG5xhtqEBRw7nfBeRiJgLHCHvdo7VFRP+H0SRomz+x 1ujQ3GCQhv8LQ1zs3NC9+ePLZf7TPdW0cuKdATQVqX4FiggA7wJ6BbG3vxx7MTii F5HC3zm2Iz66VCGpyN2fYHdB4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5thOT2 S/VRXOULk/QIDi7oLJuyMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUAIESvGnjjyPDSGT/IOkWIPgZOiTeEwQyYwAZZEuNTgZRtWma9bPg jwNsmmfUDb8FjE++KbZ+VsRMeCXRIFzxUniPDUgd/lMk9gXYPHqTvG48XGrNNWxO m3h1bWqCcQmlj8baVZPyaX6QBWQtB3lrX0ESvmb2KzAR2gG6XPBTcC8WD3tavtwN J7um3Hqbjmj5nr7leyfVfM7t33tXIjSQAHk6t31WTgyXgy6pL/ZgxZKs88jPMdVY zanWkk0sn9Pd+8yRbEUJSzDQMudyeeLbngdC4Oi+LFVU8/YUmRynNS7h/+5gcuIB 1GZY1ADsiVVwgNouxNvM+rFmA76oHAi3 -----END CERTIFICATE-----Generated at Sat May 31 17:29:00 2025 by rpki-client