$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: kilA73LKMDBgDWfQy/9/4/Uub/D7Bb2JYss17duPBE8= Subject key identifier: 0B:88:79:03:E9:43:06:9A:21:29:08:D2:1C:05:49:BF:9F:83:46:C9 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 97 Signing time: Sat 31 May 2025 05:56:26 +0000 Manifest this update: Sat 31 May 2025 05:56:26 +0000 Manifest next update: Sat 07 Jun 2025 05:56:26 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: n8uDIPqr5Zb+Pj3UIh3gfBHv+TU9cHFvkHzE74/vjzg=) 2: AA5F20585B9A11EFBB8CB141C4F9AE02.roa (hash: xwJyyBO1pg9qb2VE0/6cn7we8wuOMnw/nqF3R5gu+VU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: May 31 05:56:26 2025 GMT Not After : Jun 7 05:56:26 2025 GMT Subject: CN=683a9a0a-33c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e9:8b:1a:f1:f2:40:29:7d:68:66:27:b4:d4: e8:c8:14:cf:c7:77:b2:bd:58:bd:01:d6:14:11:35: 9b:bd:da:ec:dd:b4:ac:68:5c:9e:b5:02:b9:e3:ac: 09:d9:8b:60:49:14:fe:a1:63:7f:5c:f9:71:87:1a: 38:53:07:a1:64:62:e4:d2:ba:f1:7e:6b:3d:f0:a9: 86:9d:b1:a7:d5:f4:51:70:b9:8f:40:86:f7:37:a1: a6:15:8b:9c:b2:4f:aa:96:c6:11:ed:24:bc:c6:26: 08:16:00:3f:76:c6:88:fd:c6:16:46:fb:d6:aa:7f: d0:4b:c9:53:57:5f:83:c9:d8:50:b5:5a:96:da:6d: d2:d2:f4:e8:6e:5e:c0:e4:f5:2b:79:2e:99:72:eb: 87:f6:f9:29:3c:56:d4:6b:62:90:47:ed:8a:70:97: ce:eb:67:3b:c4:81:76:b3:7d:12:80:af:db:53:0e: 16:8d:fb:af:c4:4a:1c:81:5a:8d:04:7a:44:70:fd: ee:74:25:78:2f:d0:22:ca:c0:77:79:9e:37:23:39: 26:09:7e:43:62:79:31:5f:b0:02:36:35:df:64:03: 1e:53:60:18:4f:0d:1d:08:1b:70:86:2e:de:ac:c0: dc:18:77:23:01:48:42:c0:2a:34:72:d0:76:04:03: 94:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:88:79:03:E9:43:06:9A:21:29:08:D2:1C:05:49:BF:9F:83:46:C9 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8a:1a:c0:1b:8c:e2:56:62:24:61:58:3b:be:93:1a:85:55: 1b:95:27:e5:76:71:ee:32:35:97:2f:4c:f0:3a:1c:fd:5e:c5: f5:e2:ca:5c:c7:e9:d5:96:bf:c7:5f:7d:0f:82:ec:dd:b6:07: f3:28:77:33:d0:5f:42:9d:82:46:4e:be:b2:7e:7c:bf:3b:a8: ef:c5:cc:78:21:a6:9c:7a:4c:5c:72:d5:8e:4c:db:6e:44:a0: 1e:e3:e5:34:24:e7:d9:46:08:95:cf:7f:51:5e:62:f7:bd:78: 7a:e7:df:55:12:79:92:6e:3c:ff:97:30:d6:00:9d:34:0d:7a: 57:b8:36:74:ed:19:e0:95:99:6a:55:a4:49:4d:73:72:30:da: ff:2e:96:f3:7d:7d:ec:2e:b6:7a:57:66:f4:bb:cc:92:6a:73: c1:b1:ee:bf:40:9c:a7:e5:b8:c0:c2:cc:f6:e3:3c:58:84:af: 3c:32:40:8b:71:32:4d:05:93:49:bd:67:2b:4f:3f:e5:13:22: de:01:55:58:bd:b9:af:be:7f:3a:29:a5:58:51:4d:89:fa:94: 96:80:bd:d9:70:29:29:49:de:59:03:a7:d1:9a:7b:b5:f0:76: 45:4d:d9:76:3e:b8:c2:d5:fd:8f:52:e1:cc:79:01:39:cd:5c: 45:c2:13:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwNTMxMDU1NjI2WhcNMjUwNjA3MDU1NjI2WjAYMRYwFAYD VQQDEw02ODNhOWEwYS0zM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOmLGvHyQCl9aGYntNToyBTPx3eyvVi9AdYUETWbvdrs3bSsaFyetQK546wJ 2YtgSRT+oWN/XPlxhxo4UwehZGLk0rrxfms98KmGnbGn1fRRcLmPQIb3N6GmFYuc sk+qlsYR7SS8xiYIFgA/dsaI/cYWRvvWqn/QS8lTV1+DydhQtVqW2m3S0vTobl7A 5PUreS6ZcuuH9vkpPFbUa2KQR+2KcJfO62c7xIF2s30SgK/bUw4WjfuvxEocgVqN BHpEcP3udCV4L9AiysB3eZ43IzkmCX5DYnkxX7ACNjXfZAMeU2AYTw0dCBtwhi7e rMDcGHcjAUhCwCo0ctB2BAOUnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuIeQPp QwaaISkI0hwFSb+fg0bJMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxihrAG4ziVmIkYVg7vpMahVUblSfldnHuMjWXL0zwOhz9XsX14spc x+nVlr/HX30PguzdtgfzKHcz0F9CnYJGTr6yfny/O6jvxcx4IaacekxcctWOTNtu RKAe4+U0JOfZRgiVz39RXmL3vXh6599VEnmSbjz/lzDWAJ00DXpXuDZ07RnglZlq VaRJTXNyMNr/LpbzfX3sLrZ6V2b0u8ySanPBse6/QJyn5bjAwsz24zxYhK88MkCL cTJNBZNJvWcrTz/lEyLeAVVYvbmvvn86KaVYUU2J+pSWgL3ZcCkpSd5ZA6fRmnu1 8HZFTdl2PrjC1f2PUuHMeQE5zVxFwhPE -----END CERTIFICATE-----Generated at Sat May 31 16:59:30 2025 by rpki-client