$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft File: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft (raw, json) Hash identifier: CPwSNcAHkisfiteRZ71xdUC7xaifWC7yqzCVZZDLNlU= Subject key identifier: E3:73:2C:58:8F:92:11:88:FA:94:41:99:E7:0A:EE:1A:E1:FE:DC:EA Authority key identifier: 5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 Certificate issuer: /CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft Manifest number: B1 Signing time: Sat 31 May 2025 05:38:16 +0000 Manifest this update: Sat 31 May 2025 05:38:16 +0000 Manifest next update: Sat 07 Jun 2025 05:38:16 +0000 Files and hashes: 1: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl (hash: wHuJgHX+7xY3asyXJgiRWLlkCeb2GAWJkdeR4fdt6pU=) 2: 51BBEE10B2BE11EFA108946DC4F9AE02.roa (hash: syHq3DbE7eogaPpFVFVsQfYoWLCn9NostuRXmVIHm9Y=) 3: 50F0AF8EB2BE11EFA108946DC4F9AE02.roa (hash: MWqHxm4EUBLTsZ0EUDg6aYtdnfWY5OwTTnXPxS3oZHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C76, serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Validity Not Before: May 31 05:38:16 2025 GMT Not After : Jun 7 05:38:16 2025 GMT Subject: CN=683a95c8-7a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:70:36:c9:53:e9:9e:36:20:90:6b:3d:29:01: 2c:b5:3a:c7:31:9d:4c:e7:d2:5f:af:8e:58:f7:04: ca:bd:aa:60:b3:e6:80:10:3d:d5:ef:86:ad:15:1d: 65:02:47:28:e6:02:0e:77:8f:4a:15:a9:df:19:fd: c1:8d:0d:79:5d:eb:cd:e2:b0:9a:54:8a:58:8f:81: c1:5c:4b:d4:95:43:8d:a8:5c:37:db:6c:c0:11:9d: b0:43:bc:77:6e:83:7a:49:95:b2:95:bb:76:c0:bf: d5:0b:30:36:b4:9f:c2:f9:e9:ef:d6:b4:62:dc:69: 6d:f3:76:1b:77:15:5b:0d:da:1f:ba:2c:68:fd:a4: cf:2c:a9:21:ba:08:30:fc:06:e5:73:c8:21:43:c3: b9:01:5e:38:99:30:63:17:35:75:d6:85:cd:b0:5a: 15:6f:3e:9f:ed:ef:59:aa:f4:50:0b:df:7e:c9:6c: 56:10:7d:02:4a:fb:c7:97:79:5d:d5:83:ac:a6:22: f3:2f:90:1e:bb:78:be:c5:a1:46:0d:05:d9:c3:b6: 8d:6d:71:7c:2a:40:0c:90:a7:98:e7:ed:a7:21:aa: 93:41:9f:64:d9:fb:07:6b:f4:e4:f6:df:ab:07:fb: ea:3a:81:6b:db:0c:93:98:15:b5:c3:6c:6c:af:83: ef:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:73:2C:58:8F:92:11:88:FA:94:41:99:E7:0A:EE:1A:E1:FE:DC:EA X509v3 Authority Key Identifier: keyid:5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:c1:12:e8:52:09:a8:2d:71:c3:f2:56:c2:4b:9e:37:5b:8a: ad:c0:50:cb:ab:9a:81:2e:cb:0c:6a:e5:84:94:4f:b4:6b:29: 70:4d:ae:27:75:2b:f9:7a:74:6a:9b:c0:22:7f:fa:6e:96:7e: 8f:c5:8d:0b:03:c3:31:28:7e:75:c8:71:e4:d6:56:df:44:56: 56:84:28:2f:16:60:01:cd:26:71:cf:81:77:48:1f:f8:88:55: e0:11:f7:91:ad:5a:68:60:a6:ad:2b:8c:7d:96:4f:17:62:49: 4f:43:64:95:41:e2:4f:29:32:be:c4:3d:95:7e:e4:b9:57:ef: c9:0d:c2:e2:16:9f:a9:5d:2b:24:80:ff:38:1e:96:76:25:8a: 34:9a:79:7e:8b:da:9d:18:fb:4b:5e:c7:24:00:11:40:00:f6: 69:cc:fa:cc:bb:27:15:36:c3:6a:bc:ff:a7:a4:9a:b8:f8:cb: 6e:e0:1d:73:e1:cb:3f:d8:cc:54:3d:34:57:6f:93:9f:bd:2c: c2:13:0e:fd:ac:df:2f:d0:08:fa:e7:e1:99:a6:90:2a:af:2a: 05:b6:f7:b0:19:60:9b:90:80:61:da:4f:3d:db:72:7c:4a:d6: 3b:3c:7c:06:7c:78:4c:81:84:10:96:ac:4d:b4:8a:89:5c:09: c4:63:9d:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDNzYxMTAvBgNVBAUTKDVGMDIyNDhDOUM1Qzk0RjE1M0M1OUY1Njc3MkM1RkRB N0Y4RDcxRTcwHhcNMjUwNTMxMDUzODE2WhcNMjUwNjA3MDUzODE2WjAYMRYwFAYD VQQDEw02ODNhOTVjOC03YTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHA2yVPpnjYgkGs9KQEstTrHMZ1M59Jfr45Y9wTKvapgs+aAED3V74atFR1l Akco5gIOd49KFanfGf3BjQ15XevN4rCaVIpYj4HBXEvUlUONqFw322zAEZ2wQ7x3 boN6SZWylbt2wL/VCzA2tJ/C+env1rRi3Glt83YbdxVbDdofuixo/aTPLKkhuggw /Ablc8ghQ8O5AV44mTBjFzV11oXNsFoVbz6f7e9ZqvRQC99+yWxWEH0CSvvHl3ld 1YOspiLzL5Aeu3i+xaFGDQXZw7aNbXF8KkAMkKeY5+2nIaqTQZ9k2fsHa/Tk9t+r B/vqOoFr2wyTmBW1w2xsr4PvAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONzLFiP khGI+pRBmecK7hrh/tzqMB8GA1UdIwQYMBaAFF8CJIycXJTxU8WfVncsX9p/jXHn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M3Ni9CNDk5MkQ1MjM0 NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQRlR4WjlXZHl4ZjJuLU5j ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3SWtqSnhjbFBGVHhaOVdkeXhmMm4tTmNlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M3Ni9CNDk5MkQ1MjM0NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQ RlR4WjlXZHl4ZjJuLU5jZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9wRLoUgmoLXHD8lbCS543W4qtwFDLq5qBLssMauWElE+0aylwTa4n dSv5enRqm8Aif/puln6PxY0LA8MxKH51yHHk1lbfRFZWhCgvFmABzSZxz4F3SB/4 iFXgEfeRrVpoYKatK4x9lk8XYklPQ2SVQeJPKTK+xD2VfuS5V+/JDcLiFp+pXSsk gP84HpZ2JYo0mnl+i9qdGPtLXsckABFAAPZpzPrMuycVNsNqvP+npJq4+Mtu4B1z 4cs/2MxUPTRXb5OfvSzCEw79rN8v0Aj65+GZppAqryoFtvewGWCbkIBh2k8923J8 StY7PHwGfHhMgYQQlqxNtIqJXAnEY53q -----END CERTIFICATE-----Generated at Sat May 31 17:20:32 2025 by rpki-client