$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: cu0ML6R9B+lMeohSvhDS9hhQ0uBBZkT6ePyEdj+Nmgk= Subject key identifier: D1:49:28:2B:7B:E8:3A:8B:23:AE:C7:6F:60:5F:F9:E1:EF:E5:5B:40 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 0152 Signing time: Sat 31 May 2025 04:07:27 +0000 Manifest this update: Sat 31 May 2025 04:07:26 +0000 Manifest next update: Sat 07 Jun 2025 04:07:26 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: vexNrl2TFWfjn9tu+EWh124BI/mOWKcALBdT1YVCXTY=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: VRlasPmFdnGQ7jXmsGRiZ9YkkvB4UEQJbRXUpRC4bL8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: Qgji862kow2VwzLmbLL0a0Y2hhvgFChH2ZT0r4kSTl8=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: qOQvPOfqQOexW3Sxvhsqmm5W1KEN72YTFSt5Z0QktXg=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: pidH+xtb8OXyN3SlmzLiBUdr0SQho8QbaXQpLP6w5rQ=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: LMxslHx0hj+eRPegweO/Q77RiY35syFR40MU3J+sT8s=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: Wa8VD0lmDOwdth5KoUIOfMLBdB57aoMl1cYAfCOjMXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: May 31 04:07:26 2025 GMT Not After : Jun 7 04:07:26 2025 GMT Subject: CN=683a807f-7239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e2:32:47:46:c2:37:6e:14:a8:ef:51:b1:a9: d1:c5:f0:6b:3c:92:39:96:b8:c0:78:0c:8d:64:0e: 95:2b:fa:5e:59:47:3e:d0:b5:d2:01:ea:0f:8c:da: 06:ca:c8:3f:da:18:0b:8d:58:0a:4a:e5:b4:96:b8: 59:5f:c1:df:08:10:fe:65:ab:d7:87:89:cb:2e:41: 0c:39:27:d2:ec:0c:a1:ad:35:1b:7e:f9:c9:64:7b: 48:1a:ee:fc:85:c1:4f:89:b3:6a:6d:02:e7:c6:13: 36:b0:d1:56:51:e3:4c:10:9a:ef:98:4e:76:c1:6d: 2e:ba:a3:c7:89:ff:84:67:d9:58:48:a3:33:00:4a: d7:82:79:4c:b5:e3:dd:bc:97:28:2f:a8:0e:33:09: 7b:37:7d:9a:3b:6e:57:22:a5:a8:db:c1:41:e5:f1: 79:d2:ce:6e:14:f9:d7:f9:94:3d:13:08:93:fa:fc: 9f:c7:b9:cb:74:39:23:7a:e7:23:6a:c5:cb:30:60: 41:04:24:ba:82:6a:a4:6b:0c:5a:89:c0:8c:07:11: 24:a5:7b:42:ec:7b:e9:f7:6b:3d:de:37:0a:99:4c: 3d:f4:0b:df:c7:9f:4e:0a:60:f6:5d:43:3a:90:a7: 48:79:2f:03:da:d0:3f:21:aa:c4:b0:5b:3b:34:97: d9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:49:28:2B:7B:E8:3A:8B:23:AE:C7:6F:60:5F:F9:E1:EF:E5:5B:40 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:fb:13:f1:2c:85:db:73:9c:58:17:f0:b1:04:83:24:b9:92: 71:b5:06:a3:b6:bc:38:87:d6:04:a3:e9:a2:ff:26:fc:ae:0c: cd:58:1a:02:32:b3:fe:53:2e:1c:64:3f:57:2b:52:34:7b:85: 8a:bd:41:9d:13:33:7b:27:4a:c9:17:6e:e2:f6:e8:05:e6:40: 98:57:64:a2:2a:40:95:f3:db:9f:6d:53:3e:d9:61:bc:d1:81: 67:3c:ba:f5:ca:27:10:e3:a2:31:9c:12:11:81:c9:36:6a:d3: 8d:1a:d5:92:c6:e5:15:8c:1f:ed:97:60:5a:a6:9e:bd:c5:f2: 5c:f3:92:57:4c:73:93:af:2e:a1:79:fc:4b:8f:c1:af:82:e9: 18:a4:31:00:84:b1:a9:aa:ed:3a:53:cc:56:1e:f1:09:aa:2c: 4f:e1:7e:d4:ee:ed:1e:83:f1:a7:c8:50:de:c9:ee:59:28:a1: b5:0d:c9:5d:b5:d9:51:ff:8c:1f:c3:22:70:15:f8:09:55:fc: 95:f2:a3:4a:36:13:a3:0b:56:d8:c4:53:f8:f8:17:af:36:80: 27:4e:44:d9:77:f3:25:8d:b7:6b:1e:c1:07:e2:d1:1e:37:10: 63:d0:f6:ad:06:c6:3f:f8:e1:76:bc:03:9a:f8:fb:27:11:d5: 4e:51:48:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwNTMxMDQwNzI2WhcNMjUwNjA3MDQwNzI2WjAYMRYwFAYD VQQDEw02ODNhODA3Zi03MjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOIyR0bCN24UqO9RsanRxfBrPJI5lrjAeAyNZA6VK/peWUc+0LXSAeoPjNoG ysg/2hgLjVgKSuW0lrhZX8HfCBD+ZavXh4nLLkEMOSfS7AyhrTUbfvnJZHtIGu78 hcFPibNqbQLnxhM2sNFWUeNMEJrvmE52wW0uuqPHif+EZ9lYSKMzAErXgnlMtePd vJcoL6gOMwl7N32aO25XIqWo28FB5fF50s5uFPnX+ZQ9EwiT+vyfx7nLdDkjeucj asXLMGBBBCS6gmqkawxaicCMBxEkpXtC7Hvp92s93jcKmUw99Avfx59OCmD2XUM6 kKdIeS8D2tA/IarEsFs7NJfZDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFJKCt7 6DqLI67Hb2Bf+eHv5VtAMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX+xPxLIXbc5xYF/CxBIMkuZJxtQajtrw4h9YEo+mi/yb8rgzNWBoC MrP+Uy4cZD9XK1I0e4WKvUGdEzN7J0rJF27i9ugF5kCYV2SiKkCV89ufbVM+2WG8 0YFnPLr1yicQ46IxnBIRgck2atONGtWSxuUVjB/tl2Bapp69xfJc85JXTHOTry6h efxLj8GvgukYpDEAhLGpqu06U8xWHvEJqixP4X7U7u0eg/GnyFDeye5ZKKG1Dcld tdlR/4wfwyJwFfgJVfyV8qNKNhOjC1bYxFP4+BevNoAnTkTZd/MljbdrHsEH4tEe NxBj0PatBsY/+OF2vAOa+PsnEdVOUUiV -----END CERTIFICATE-----Generated at Sat May 31 14:41:33 2025 by rpki-client