$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: TtZ4Hzl+yPt6RUK+AXoZ6AO9ezO3O7r78i2DtThCdGg= Subject key identifier: A2:42:E2:F7:91:1B:39:CC:DD:8F:DA:D6:BD:4F:3E:4A:8B:DB:10:FC Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01BD Signing time: Sat 31 May 2025 02:48:08 +0000 Manifest this update: Sat 31 May 2025 02:48:08 +0000 Manifest next update: Sat 07 Jun 2025 02:48:08 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: fuptITsiAcnQjKRS/JVOnTMwQlGkVSigpuck72GTtcM=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: May 31 02:48:08 2025 GMT Not After : Jun 7 02:48:08 2025 GMT Subject: CN=683a6de8-201a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:16:53:9f:a4:62:19:50:de:c0:0f:58:c0:ab: 25:f5:d9:97:ab:b4:a3:41:5c:05:03:aa:d5:88:84: c3:c5:f0:29:e0:8f:9b:9c:6e:35:80:7d:8b:09:72: bc:30:d0:fa:d4:7f:26:77:38:bb:c7:7b:76:96:54: f7:66:c2:8c:3c:c3:f8:05:a5:8f:2a:57:47:61:71: 41:db:42:41:6f:25:73:ce:7f:cf:24:2b:cf:bc:b2: 66:f5:ff:ba:87:0a:62:33:18:de:d6:09:fc:01:f4: 0b:4e:55:6c:fe:f1:0d:e6:98:97:84:9f:90:96:03: 24:87:d3:2f:5d:df:00:50:f9:fe:03:44:17:6a:de: df:53:51:ed:d1:f0:e0:6d:23:10:83:84:87:6b:37: ce:ca:fb:9d:bb:c5:2b:d7:48:28:aa:f8:85:0e:ad: 71:72:b6:25:9d:8c:94:1b:b0:ea:c3:af:59:61:bf: c5:93:1e:cb:b5:6f:fe:73:fc:80:5e:c4:da:3f:e4: d2:b2:2e:e3:9a:b2:ce:42:07:f5:09:d7:b1:d7:76: 6e:60:1a:62:49:3a:9a:f6:88:78:25:6a:15:57:83: d6:7a:bf:03:25:8a:45:2b:d6:da:d3:ea:82:e9:d9: cc:eb:3c:ae:3e:90:06:c8:90:a6:3a:c2:ae:e7:b9: 9f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:42:E2:F7:91:1B:39:CC:DD:8F:DA:D6:BD:4F:3E:4A:8B:DB:10:FC X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:73:ba:7a:0c:2b:bb:3c:35:51:0a:88:52:c4:cb:0b:62:2a: 81:3a:f0:a3:74:5d:16:33:01:b0:fe:16:01:27:05:ec:d0:4b: 08:89:e8:03:d0:55:cb:24:f7:24:01:fb:4a:b4:f6:0a:e5:4b: 07:b1:3b:ce:ad:f5:45:db:ac:31:5d:35:5d:b6:37:c4:1b:0d: f2:36:73:09:70:76:d9:02:44:db:c8:82:45:93:80:06:2c:cb: 31:47:97:f8:78:72:8e:86:65:6a:3c:72:b2:b2:12:4d:8a:0b: ef:92:1a:27:c2:73:18:f2:17:08:2e:1c:ec:a2:d0:e2:93:16: d7:23:0c:04:bc:80:d1:a0:5f:cc:1b:e5:ae:f2:4e:ba:9d:40: a9:ff:03:f2:81:95:08:ab:f8:29:db:7e:f1:36:b3:30:32:1c: 47:25:24:6d:fc:07:ff:f3:06:ff:b6:64:20:c8:13:36:d8:c1: 27:5d:38:9d:f1:42:39:91:ca:45:0d:13:17:80:34:03:3e:db: 13:c9:52:44:a1:4d:7f:82:b0:65:0b:bc:01:5f:8b:68:d7:df: e4:9b:4d:1e:7a:24:67:b4:44:e8:ee:76:00:b1:86:ae:47:e2: 52:77:a8:6e:a3:6f:17:23:75:7d:02:54:29:3d:d0:65:c9:95: 75:6d:b0:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwNTMxMDI0ODA4WhcNMjUwNjA3MDI0ODA4WjAYMRYwFAYD VQQDEw02ODNhNmRlOC0yMDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBZTn6RiGVDewA9YwKsl9dmXq7SjQVwFA6rViITDxfAp4I+bnG41gH2LCXK8 MND61H8mdzi7x3t2llT3ZsKMPMP4BaWPKldHYXFB20JBbyVzzn/PJCvPvLJm9f+6 hwpiMxje1gn8AfQLTlVs/vEN5piXhJ+QlgMkh9MvXd8AUPn+A0QXat7fU1Ht0fDg bSMQg4SHazfOyvudu8Ur10goqviFDq1xcrYlnYyUG7Dqw69ZYb/Fkx7LtW/+c/yA XsTaP+TSsi7jmrLOQgf1Cdex13ZuYBpiSTqa9oh4JWoVV4PWer8DJYpFK9ba0+qC 6dnM6zyuPpAGyJCmOsKu57mfewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJC4veR GznM3Y/a1r1PPkqL2xD8MB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHc7p6DCu7PDVRCohSxMsLYiqBOvCjdF0WMwGw/hYBJwXs0EsIiegD 0FXLJPckAftKtPYK5UsHsTvOrfVF26wxXTVdtjfEGw3yNnMJcHbZAkTbyIJFk4AG LMsxR5f4eHKOhmVqPHKyshJNigvvkhonwnMY8hcILhzsotDikxbXIwwEvIDRoF/M G+Wu8k66nUCp/wPygZUIq/gp237xNrMwMhxHJSRt/Af/8wb/tmQgyBM22MEnXTid 8UI5kcpFDRMXgDQDPtsTyVJEoU1/grBlC7wBX4to19/km00eeiRntETo7nYAsYau R+JSd6huo28XI3V9AlQpPdBlyZV1bbCf -----END CERTIFICATE-----Generated at Sat May 31 17:56:18 2025 by rpki-client