$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: wqGci9GptLUz5W98GjF3jz0lmOQc+kwLfiejayo/1Lw= Subject key identifier: FE:BC:DD:D9:85:31:1B:91:5B:FD:72:DA:34:5F:21:73:DB:E0:50:A7 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 03AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 03A3 Signing time: Sat 31 May 2025 00:57:13 +0000 Manifest this update: Sat 31 May 2025 00:57:13 +0000 Manifest next update: Sat 07 Jun 2025 00:57:13 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: QBXr5Yh3ad9h70C5vuQ/JrrEO7SRx7ONPqWR9dbm+N0=) 2: 728139D62FA311F0A9129814C4F9AE02.roa (hash: guIJtqQN+EFa/f6cWPw4iUlLONR7odnIq46PWDEQXBE=) 3: F31E86967B2311EF93801A72C4F9AE02.roa (hash: Um+5nEX9UGWaeunNGOXHeeYETiEJM95laBvW70lUPDE=) 4: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: EglzY5P8gEG+IosP670+janTnu12u5QYgDoCSiDyeR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 940 (0x3ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: May 31 00:57:13 2025 GMT Not After : Jun 7 00:57:13 2025 GMT Subject: CN=683a53e9-1055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:85:38:d6:93:93:87:5d:56:17:36:4b:0a:d4: 8f:5e:f9:9c:13:9d:a3:63:05:db:58:91:ea:54:bb: 1e:f9:52:51:da:60:04:d5:44:85:fa:8a:32:86:b1: 82:74:d0:f2:fa:8d:0e:80:bf:0d:03:1b:9c:a0:88: ee:e5:71:79:d1:e7:79:de:7a:ce:b1:47:80:fe:fe: f6:d1:05:fb:97:e2:9b:8a:a8:f8:00:d5:1e:a1:f6: ce:0d:39:50:63:7a:70:f9:54:00:f6:75:fd:07:7e: b9:bf:ba:1b:18:fa:67:c0:e7:d4:0b:7b:09:17:1f: 37:4b:ba:bb:c5:46:fb:1e:68:79:6d:0c:21:ea:30: 36:07:ab:b1:ae:a1:59:36:45:9d:b9:3d:42:60:24: 50:cb:f7:1d:df:3c:53:e1:cf:20:fd:ab:58:08:89: bb:07:6d:c8:ff:ab:35:ec:89:21:3c:4b:19:5d:16: c4:20:2b:a1:1c:6c:73:fc:2d:e8:2c:63:74:30:6f: 55:52:11:e9:92:2d:01:55:ae:16:f1:26:c0:45:22: 84:64:34:ca:6f:3e:43:39:37:99:74:cc:f1:0c:3b: e1:e7:78:97:b6:85:be:14:e6:d7:f6:47:4e:bd:4e: 67:ae:47:4a:29:ce:46:06:4e:d7:e3:1c:7a:36:4f: cc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BC:DD:D9:85:31:1B:91:5B:FD:72:DA:34:5F:21:73:DB:E0:50:A7 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:b3:b4:03:49:b2:f2:d4:94:8f:35:9c:87:4c:43:fc:51:91: 00:53:23:8c:ca:15:5d:50:7f:0f:36:83:1b:a5:1a:fc:73:4a: 0f:c5:3a:ac:14:8a:1f:a0:09:44:5c:b2:58:47:6a:90:2c:79: 2d:88:ce:3a:69:f0:6b:b8:02:18:bc:8f:0c:cc:88:37:40:aa: c8:c5:91:2b:9b:68:a6:5c:7f:8d:55:2c:e7:e2:9b:b1:4b:6c: 82:5e:17:ea:c7:88:b1:c2:fe:fb:70:c8:19:05:ad:40:c1:d9: e7:c8:c8:e5:7c:c0:5a:94:b0:83:06:8c:24:3e:14:1d:06:1d: e2:01:fa:57:a7:5a:d9:c3:0b:9d:1c:5d:42:ca:97:de:54:a2: 69:f8:ff:ab:4e:ec:47:68:fe:4a:0e:d7:99:30:32:98:91:db: 1d:79:96:9d:0a:d6:bd:d8:1e:88:6f:c8:b3:d4:1a:24:c8:cb: d4:b1:27:23:f1:fb:63:93:e5:d3:b4:f1:3d:2c:c8:90:bb:b1: 3c:53:4b:fc:dc:a4:76:76:2d:fe:48:ed:41:8b:ad:2b:27:d1: fa:9e:a4:0e:9b:8d:82:e4:a2:c6:02:ba:6c:36:dc:b2:fd:2f: 6a:93:b3:f2:12:ca:11:61:6b:91:19:d7:24:31:88:ee:ba:6e: fd:9c:85:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjUwNTMxMDA1NzEzWhcNMjUwNjA3MDA1NzEzWjAYMRYwFAYD VQQDEw02ODNhNTNlOS0xMDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIU41pOTh11WFzZLCtSPXvmcE52jYwXbWJHqVLse+VJR2mAE1USF+ooyhrGC dNDy+o0OgL8NAxucoIju5XF50ed53nrOsUeA/v720QX7l+Kbiqj4ANUeofbODTlQ Y3pw+VQA9nX9B365v7obGPpnwOfUC3sJFx83S7q7xUb7Hmh5bQwh6jA2B6uxrqFZ NkWduT1CYCRQy/cd3zxT4c8g/atYCIm7B23I/6s17IkhPEsZXRbEICuhHGxz/C3o LGN0MG9VUhHpki0BVa4W8SbARSKEZDTKbz5DOTeZdMzxDDvh53iXtoW+FObX9kdO vU5nrkdKKc5GBk7X4xx6Nk/MwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP683dmF MRuRW/1y2jRfIXPb4FCnMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDs7QDSbLy1JSPNZyHTEP8UZEAUyOMyhVdUH8PNoMbpRr8c0oPxTqs FIofoAlEXLJYR2qQLHktiM46afBruAIYvI8MzIg3QKrIxZErm2imXH+NVSzn4pux S2yCXhfqx4ixwv77cMgZBa1AwdnnyMjlfMBalLCDBowkPhQdBh3iAfpXp1rZwwud HF1CypfeVKJp+P+rTuxHaP5KDteZMDKYkdsdeZadCta92B6Ib8iz1BokyMvUsScj 8ftjk+XTtPE9LMiQu7E8U0v83KR2di3+SO1Bi60rJ9H6nqQOm42C5KLGArpsNtyy /S9qk7PyEsoRYWuRGdckMYjuum79nIU3 -----END CERTIFICATE-----Generated at Sat May 31 17:50:35 2025 by rpki-client