$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: W7QOPdX3Zm8a3jrNuUJx63kIKKqDCtOnC2iKK2+jBlg= Subject key identifier: EC:F1:35:FD:B0:26:9F:F6:C2:5C:C1:89:F9:21:88:BF:55:AC:1C:97 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 0113 Signing time: Sat 31 May 2025 04:33:08 +0000 Manifest this update: Sat 31 May 2025 04:33:07 +0000 Manifest next update: Sat 07 Jun 2025 04:33:07 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: 0qRLUfpzJMqgbFYBvugpKZFNTnPTMEs6RcR5dJjDkLA=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: May 31 04:33:07 2025 GMT Not After : Jun 7 04:33:07 2025 GMT Subject: CN=683a8684-e5b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b7:94:bf:2a:29:bd:5f:8a:71:1d:9d:a6:ad: 92:d7:de:67:3c:4d:f0:95:41:b6:c5:e2:85:be:e0: d0:79:02:40:e3:9a:0a:56:e6:9f:66:61:54:23:26: c1:fb:0d:f7:3b:6a:89:71:6d:9c:ad:a6:4b:46:89: b5:ac:d3:26:d4:2b:41:98:1c:25:28:08:8b:86:99: f0:32:3e:ee:6d:97:f4:9c:8a:49:9f:75:1e:59:23: a9:c6:df:2b:bb:03:c3:69:ce:8c:ee:c5:47:66:e2: 8f:df:fb:c7:b1:af:df:a8:b6:48:3a:f0:50:34:84: bf:10:ed:17:55:1b:36:21:78:36:87:03:e2:1f:09: 0a:62:83:89:a1:44:5d:ce:72:22:2f:0f:40:1f:13: ee:3e:44:40:30:12:d3:76:3d:65:5e:98:1a:db:e1: 4a:df:62:49:9f:bf:38:15:86:b0:14:8f:e7:fe:d4: 8b:7d:ca:53:1e:f6:c8:15:a7:71:1e:3b:8c:06:eb: e8:a7:26:46:9c:d1:44:83:fc:d0:13:96:82:21:2c: 62:6a:65:cb:30:c5:e4:a9:3f:59:78:b2:85:d9:dd: 44:38:30:4d:9f:26:2e:f8:ca:0f:21:d6:a7:ae:ef: c4:50:e1:46:4e:39:90:69:21:d9:e4:51:7d:81:a8: 7e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F1:35:FD:B0:26:9F:F6:C2:5C:C1:89:F9:21:88:BF:55:AC:1C:97 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:83:d7:c8:d1:1b:e0:c1:59:56:56:f6:4f:f6:27:c6:8f:6f: 3e:cd:f4:db:f4:73:cc:8d:f5:2f:5b:76:64:88:e9:0e:45:a6: 0c:0a:ac:a8:61:55:b8:89:69:28:b9:ec:e5:e3:97:f9:cb:69: d0:7f:7f:a5:13:04:83:81:68:ce:38:81:ab:e7:e7:84:d3:f3: 1b:80:2e:ce:41:66:a5:1a:26:f0:5d:6a:4f:48:be:c0:b4:9b: 5e:4d:ee:96:47:58:5b:80:9f:2d:a7:eb:bc:89:fb:b5:ec:e6: 22:f5:5c:44:21:8e:20:53:74:77:b2:6c:d2:8b:0c:7f:23:32: 86:7d:27:d9:f5:ce:63:2c:d3:64:8d:db:41:e9:03:ec:f7:2a: 74:f4:72:b9:03:b5:95:ff:0a:2c:ee:9b:cc:5b:ab:91:b6:8c: a1:ff:08:56:a3:ba:2b:bd:ee:d7:51:c2:9b:bc:29:e0:ef:82: 3a:f4:76:7c:f9:51:91:09:fb:a5:3f:d6:e7:87:97:61:50:89: cd:6b:0c:ce:c4:a7:ae:83:2a:ed:e8:96:b1:fa:b7:23:23:ce: 20:63:2a:60:4f:1f:e8:f9:6b:c9:ea:b5:13:e9:38:fa:10:9e: ad:1e:9e:7d:6e:ee:b2:94:a6:f1:ee:89:43:62:7b:80:d9:65: 2d:e5:87:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUwNTMxMDQzMzA3WhcNMjUwNjA3MDQzMzA3WjAYMRYwFAYD VQQDEw02ODNhODY4NC1lNWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1beUvyopvV+KcR2dpq2S195nPE3wlUG2xeKFvuDQeQJA45oKVuafZmFUIybB +w33O2qJcW2craZLRom1rNMm1CtBmBwlKAiLhpnwMj7ubZf0nIpJn3UeWSOpxt8r uwPDac6M7sVHZuKP3/vHsa/fqLZIOvBQNIS/EO0XVRs2IXg2hwPiHwkKYoOJoURd znIiLw9AHxPuPkRAMBLTdj1lXpga2+FK32JJn784FYawFI/n/tSLfcpTHvbIFadx HjuMBuvopyZGnNFEg/zQE5aCISxiamXLMMXkqT9ZeLKF2d1EODBNnyYu+MoPIdan ru/EUOFGTjmQaSHZ5FF9gah+EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzxNf2w Jp/2wlzBifkhiL9VrByXMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGg9fI0RvgwVlWVvZP9ifGj28+zfTb9HPMjfUvW3ZkiOkORaYMCqyo YVW4iWkouezl45f5y2nQf3+lEwSDgWjOOIGr5+eE0/MbgC7OQWalGibwXWpPSL7A tJteTe6WR1hbgJ8tp+u8ifu17OYi9VxEIY4gU3R3smzSiwx/IzKGfSfZ9c5jLNNk jdtB6QPs9yp09HK5A7WV/wos7pvMW6uRtoyh/whWo7orve7XUcKbvCng74I69HZ8 +VGRCfulP9bnh5dhUInNawzOxKeugyrt6Jax+rcjI84gYypgTx/o+WvJ6rUT6Tj6 EJ6tHp59bu6ylKbx7olDYnuA2WUt5Yck -----END CERTIFICATE-----Generated at Sat May 31 17:16:13 2025 by rpki-client