$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: GWdFl6ImOWaPcwod3wFwgwXG2sr3OhVDyIyaO92T4u8= Subject key identifier: 2A:A4:A1:98:A6:68:F2:E4:91:5F:D3:59:32:F2:E4:2D:B5:C5:D3:CF Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 011B Signing time: Sat 31 May 2025 04:22:51 +0000 Manifest this update: Sat 31 May 2025 04:22:50 +0000 Manifest next update: Sat 07 Jun 2025 04:22:50 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: QFOVPpGXShmgvgZF8YDcY4xYs69A+wGH96YkNAhs88g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: May 31 04:22:50 2025 GMT Not After : Jun 7 04:22:50 2025 GMT Subject: CN=683a841b-d6b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:de:2b:10:35:62:53:dd:50:8a:ed:db:63:d7: 83:a8:a1:d5:c5:d0:81:03:39:22:c8:52:b9:f9:2b: c3:e4:82:2d:01:91:66:8f:c9:a5:e9:47:4f:fb:63: 06:2b:32:f3:f7:df:89:b1:f6:d7:bb:30:55:80:28: 04:63:0b:39:e0:8a:16:53:0c:a7:8e:06:e5:fc:20: 9d:9d:27:47:82:2c:87:f0:3a:2d:c2:01:f0:5a:e5: 6a:03:35:db:30:b7:d4:c2:dc:e7:8b:7c:e2:22:ed: a3:be:70:7b:b7:4d:b1:5f:14:c4:25:cc:f9:8e:03: 60:a9:d4:85:b2:c8:2c:3d:0b:a2:c2:ef:de:e5:82: 3e:42:20:ad:30:b0:51:c3:f7:83:e4:17:6f:cf:0c: 6b:17:73:01:ff:11:b0:10:7c:cb:f2:bb:5f:bc:cd: c7:2d:33:c0:a2:d2:14:42:6d:f5:bf:c0:ff:40:e5: d4:93:44:02:fc:26:22:bc:2a:d1:8d:13:55:c9:16: b1:2f:36:26:cb:f9:d7:c8:20:95:55:45:19:3d:9c: eb:8b:c4:0b:98:d0:5d:d0:5a:62:7e:c5:a4:41:ee: 85:ed:63:f9:b0:43:17:15:ed:2a:22:c4:0d:83:59: 7f:0f:2b:8c:1f:d3:ce:81:fd:99:bc:e8:d6:c8:93: ec:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A4:A1:98:A6:68:F2:E4:91:5F:D3:59:32:F2:E4:2D:B5:C5:D3:CF X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:c1:97:f9:38:46:d6:b2:aa:54:ee:b7:3e:1c:67:08:90:78: bf:12:aa:ed:d1:c9:47:8e:74:44:19:2c:0c:69:f0:17:db:58: 4c:2b:b1:4c:a6:6e:83:ab:69:a0:b3:1d:38:45:11:df:50:b9: 3c:da:4b:70:20:62:ee:c8:ac:62:90:7b:6c:49:39:83:9a:f7: 91:97:70:6c:70:f6:83:8c:0f:d2:0c:f4:2b:25:51:c0:aa:67: 43:97:75:19:b5:92:67:44:ee:a6:93:1d:c8:ca:91:bd:13:a0: 6b:e3:84:a2:ca:ae:a2:0c:98:cd:ad:ae:f1:bf:b3:61:30:7d: d7:c5:46:06:87:44:bd:0b:f6:ae:c0:ad:73:95:d4:c8:62:4c: ac:b4:5e:cf:47:12:f1:72:7b:ac:56:5f:35:3c:32:52:af:68: 98:64:24:f9:a2:c3:ce:0c:8a:af:ca:15:10:a2:11:98:20:0f: 7a:25:df:38:26:59:ff:fc:41:65:b5:8c:72:42:2c:c6:72:9e: b9:d7:b6:69:3d:e3:01:d3:c7:dd:d6:ba:7a:d2:df:64:08:20: c3:88:53:63:bf:bb:b9:5e:c3:fd:5f:86:4e:8f:cc:ee:ba:e4: 65:54:72:25:65:dc:42:0e:e5:4e:d2:60:fb:4a:4b:84:83:53: 8e:d7:bc:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjUwNTMxMDQyMjUwWhcNMjUwNjA3MDQyMjUwWjAYMRYwFAYD VQQDEw02ODNhODQxYi1kNmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw94rEDViU91Qiu3bY9eDqKHVxdCBAzkiyFK5+SvD5IItAZFmj8ml6UdP+2MG KzLz99+JsfbXuzBVgCgEYws54IoWUwynjgbl/CCdnSdHgiyH8DotwgHwWuVqAzXb MLfUwtzni3ziIu2jvnB7t02xXxTEJcz5jgNgqdSFssgsPQuiwu/e5YI+QiCtMLBR w/eD5BdvzwxrF3MB/xGwEHzL8rtfvM3HLTPAotIUQm31v8D/QOXUk0QC/CYivCrR jRNVyRaxLzYmy/nXyCCVVUUZPZzri8QLmNBd0FpifsWkQe6F7WP5sEMXFe0qIsQN g1l/DyuMH9POgf2ZvOjWyJPsrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqkoZim aPLkkV/TWTLy5C21xdPPMB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcwZf5OEbWsqpU7rc+HGcIkHi/Eqrt0clHjnREGSwMafAX21hMK7FM pm6Dq2mgsx04RRHfULk82ktwIGLuyKxikHtsSTmDmveRl3BscPaDjA/SDPQrJVHA qmdDl3UZtZJnRO6mkx3IypG9E6Br44Siyq6iDJjNra7xv7NhMH3XxUYGh0S9C/au wK1zldTIYkystF7PRxLxcnusVl81PDJSr2iYZCT5osPODIqvyhUQohGYIA96Jd84 Jln//EFltYxyQizGcp6517ZpPeMB08fd1rp60t9kCCDDiFNjv7u5XsP9X4ZOj8zu uuRlVHIlZdxCDuVO0mD7SkuEg1OO17yl -----END CERTIFICATE-----Generated at Sat May 31 17:14:40 2025 by rpki-client