$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft File: XytYId1DwpQ50rruW9wEMpHEe68.mft (raw, json) Hash identifier: 4kqjaoBsMMEufqacrwSQr50r240UhslG2f0aQKnq0DE= Subject key identifier: 07:DE:C0:C6:28:3B:8D:0C:C8:22:4F:5F:80:5E:2C:97:2C:45:27:4F Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft Manifest number: E4 Signing time: Sat 31 May 2025 05:02:28 +0000 Manifest this update: Sat 31 May 2025 05:02:28 +0000 Manifest next update: Sat 07 Jun 2025 05:02:28 +0000 Files and hashes: 1: XytYId1DwpQ50rruW9wEMpHEe68.crl (hash: funcJfsTwkbUSJXBHMh5Uo3G6OzUD0w9eQDpfsocGr0=) 2: 199F588CE21711EE913F3E62C4F9AE02.roa (hash: osmG47ejUnqAfJKuMkDqKj8NyV5CxVCxx93M/mU6AGU=) 3: F5A311DAE21611EEB7B0D361C4F9AE02.roa (hash: tXFOS4K6NP0mWp2yqDrG4Mk0xH2TKVaPDDMjLQ6peHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD, serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: May 31 05:02:28 2025 GMT Not After : Jun 7 05:02:28 2025 GMT Subject: CN=683a8d64-0987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:37:4a:82:67:bb:d4:a9:b4:69:d9:57:bf: 50:14:50:bf:b2:21:e4:0d:91:a7:71:9b:84:56:7d: c4:ff:c7:65:15:3d:ae:0b:76:04:04:54:ba:b5:8e: fe:aa:2a:82:7d:bc:b6:09:39:0c:6f:9a:fc:5a:63: fb:8f:56:27:09:83:47:01:f3:40:70:2e:75:98:54: 35:6f:93:2a:5b:7b:99:14:d4:5f:81:66:1f:9d:65: cc:ce:8d:1b:5a:d7:77:db:62:08:16:a9:85:8d:85: a4:cc:4d:50:e1:c5:4f:bf:4c:a9:2f:c1:07:e1:01: a1:30:f2:65:00:23:44:9c:09:a0:69:83:fe:e7:75: 6c:6e:b6:c7:ba:9b:12:dd:d8:5a:8a:f1:3d:31:90: eb:ea:22:c4:5d:ca:c5:66:a1:90:9f:5a:ec:f2:2a: 70:03:e3:f9:63:4e:2b:66:ce:43:35:29:24:4e:ee: b9:53:a0:70:4b:7b:3c:da:23:7d:54:08:10:6b:9c: f3:5f:1b:40:2c:d6:41:74:73:55:58:00:31:1e:9b: 40:3b:e0:82:c4:ec:f2:a9:ac:15:a4:f2:e8:c9:da: 78:f2:41:49:e5:4e:82:fd:fa:0d:12:a2:32:a6:d5: 84:a7:8a:ac:1a:74:3a:bc:75:62:94:b5:b1:33:04: 58:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DE:C0:C6:28:3B:8D:0C:C8:22:4F:5F:80:5E:2C:97:2C:45:27:4F X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:46:23:6e:88:dd:6c:ec:45:cd:4c:16:51:5b:8a:dd:2f:9d: 4d:01:1b:4d:5f:47:f6:87:0b:8c:45:03:62:26:26:b9:58:f3: 4f:6b:a3:89:d2:2c:30:94:5f:b5:54:c3:e2:46:8e:04:8f:3f: 76:31:22:9d:b0:8f:9e:42:1e:60:64:c7:03:79:20:d4:65:c2: 82:05:ae:d9:90:31:45:ca:97:8d:5d:34:40:a3:be:56:2a:cd: 5e:4a:45:c5:21:13:f4:8f:8b:fb:6e:fc:19:12:b3:c4:9c:ce: 6f:38:13:84:04:08:78:04:f5:a3:dd:19:b3:bb:f8:c7:9d:20: 7c:84:37:96:fd:bf:b8:c1:96:cd:5b:79:f8:68:cb:65:e3:41: 41:9d:59:e8:c1:2a:04:48:2f:d7:76:aa:b8:0d:65:56:07:0d: ed:41:c7:90:1d:a9:6f:7a:f3:13:cb:d5:4b:36:a7:9f:9d:fe: 70:fa:34:bd:2e:90:e4:6f:75:54:4d:4a:63:bd:15:56:1c:55: 02:12:99:5d:5e:9e:94:57:73:60:e8:da:6d:ce:be:d5:07:a3: a7:a8:7b:97:15:3d:94:2e:3f:05:09:64:70:67:15:a9:72:1e: 09:5f:23:5a:4f:58:5f:f3:83:6d:ad:fd:e5:8f:ee:f6:37:0b: 17:0c:89:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjUwNTMxMDUwMjI4WhcNMjUwNjA3MDUwMjI4WjAYMRYwFAYD VQQDEw02ODNhOGQ2NC0wOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKQ3SoJnu9SptGnZV79QFFC/siHkDZGncZuEVn3E/8dlFT2uC3YEBFS6tY7+ qiqCfby2CTkMb5r8WmP7j1YnCYNHAfNAcC51mFQ1b5MqW3uZFNRfgWYfnWXMzo0b Wtd322IIFqmFjYWkzE1Q4cVPv0ypL8EH4QGhMPJlACNEnAmgaYP+53VsbrbHupsS 3dhaivE9MZDr6iLEXcrFZqGQn1rs8ipwA+P5Y04rZs5DNSkkTu65U6BwS3s82iN9 VAgQa5zzXxtALNZBdHNVWAAxHptAO+CCxOzyqawVpPLoydp48kFJ5U6C/foNEqIy ptWEp4qsGnQ6vHVilLWxMwRY3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfewMYo O40MyCJPX4BeLJcsRSdPMB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjJGRC82MzhENjJBMEUxMTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdw UTUwcnJ1Vzl3RU1wSEVlNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5RiNuiN1s7EXNTBZRW4rdL51NARtNX0f2hwuMRQNiJia5WPNPa6OJ 0iwwlF+1VMPiRo4Ejz92MSKdsI+eQh5gZMcDeSDUZcKCBa7ZkDFFypeNXTRAo75W Ks1eSkXFIRP0j4v7bvwZErPEnM5vOBOEBAh4BPWj3Rmzu/jHnSB8hDeW/b+4wZbN W3n4aMtl40FBnVnowSoESC/Xdqq4DWVWBw3tQceQHalvevMTy9VLNqefnf5w+jS9 LpDkb3VUTUpjvRVWHFUCEpldXp6UV3Ng6Nptzr7VB6OnqHuXFT2ULj8FCWRwZxWp ch4JXyNaT1hf84Ntrf3lj+72NwsXDInk -----END CERTIFICATE-----Generated at Sat May 31 16:49:02 2025 by rpki-client