$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: fwncQEYCnXFLmX8tZ+jWGyf5u8G5fnA9o4wRnDfQaXs= Subject key identifier: A2:CA:F9:D3:93:CA:43:F9:ED:8C:58:A8:EB:D8:50:AA:89:34:90:41 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 065B Signing time: Fri 30 May 2025 22:43:32 +0000 Manifest this update: Fri 30 May 2025 22:43:32 +0000 Manifest next update: Fri 06 Jun 2025 22:43:32 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: WfZZLtSuIqXMLf6lGzdZ+OwD2nUue/We7gJi7PyUUTk=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: zRXwtVciA3XUq61vGPC3fC7y/rZPmZqFfk9/8k9uEj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:43:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: May 30 22:43:32 2025 GMT Not After : Jun 6 22:43:32 2025 GMT Subject: CN=683a3494-97c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:01:8c:23:c8:82:99:a1:17:e2:68:e9:78:84: f6:2e:8b:a4:b6:36:00:ed:96:ea:2b:2f:95:c5:b8: ab:60:40:04:5e:58:18:08:07:c0:c7:e8:84:33:8b: 21:03:75:02:e6:4b:79:6f:a9:fa:b8:44:5b:79:1c: 29:66:e5:33:c3:69:2a:fe:a7:93:21:10:4d:99:6a: f5:60:15:13:01:69:bf:be:27:ad:d6:4d:7e:75:e9: 27:cf:85:a2:a2:26:e3:f7:f8:da:29:ed:a1:8d:b1: 9d:8e:a8:79:b9:72:19:57:38:a3:ca:09:c9:13:10: ff:c5:dc:25:6d:87:b3:be:bc:e7:57:cd:4e:d3:60: 4e:0e:f6:2a:0a:fb:11:0f:9e:f6:a9:18:28:53:1d: f0:82:4d:90:15:02:f6:6e:d8:ac:a6:c2:a5:00:05: 86:3d:08:22:2b:a0:f6:a8:57:33:c3:d1:b3:84:fd: d9:6f:c3:49:09:8f:90:31:37:7c:8a:9a:ce:28:a0: d8:f9:aa:90:fb:8f:63:ac:8a:b7:3a:53:7a:1f:48: 2d:72:f9:75:e4:76:63:9b:20:5b:ec:a3:c8:85:90: e7:b4:68:1e:e2:76:b3:5e:f9:17:02:2d:64:b4:58: db:d7:31:37:11:92:16:92:86:04:89:e9:53:f6:a2: 1f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CA:F9:D3:93:CA:43:F9:ED:8C:58:A8:EB:D8:50:AA:89:34:90:41 X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:74:81:ea:2e:a3:f5:42:10:a4:7a:39:bf:47:7d:28:e2:0d: 83:43:b7:74:17:6d:de:d5:8b:c5:37:d3:88:3b:36:00:29:95: a8:87:14:4f:3b:2b:92:1d:a1:ac:87:f9:87:e7:0a:bb:09:cf: 83:f1:a9:96:51:1d:5d:d0:54:92:67:74:b8:a3:17:2a:a7:3c: 25:3b:eb:5e:09:d3:8e:3b:a6:72:7a:d4:bc:e5:fc:8b:77:c3: 85:f4:3e:42:e6:10:ea:3a:25:f8:ff:40:dd:2c:65:f7:74:fc: d7:0b:c7:a0:fe:54:68:04:f4:60:7c:d7:94:cc:be:76:b7:cf: 38:7c:b9:54:c5:1c:7b:10:39:06:10:4c:b9:25:31:21:d6:b8: 9b:86:20:c8:bd:b1:4a:f2:e2:0d:75:82:a9:d2:ff:a5:83:d2: df:d9:00:04:c9:ce:eb:86:f7:01:74:36:7c:99:50:7e:02:d0: 1a:59:23:64:a7:34:69:f8:09:d3:9d:97:ae:f4:5f:e6:6d:40: 53:9c:02:c6:63:f9:38:0f:a8:3d:c1:4d:68:8b:22:0a:a6:11: e0:03:97:9e:17:f2:2b:97:34:ed:13:02:9c:7c:c2:2c:22:08: 04:10:90:45:71:8e:66:90:18:0b:db:9c:62:bb:64:b8:f6:01: b8:60:7b:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUwNTMwMjI0MzMyWhcNMjUwNjA2MjI0MzMyWjAYMRYwFAYD VQQDEw02ODNhMzQ5NC05N2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswGMI8iCmaEX4mjpeIT2LouktjYA7ZbqKy+VxbirYEAEXlgYCAfAx+iEM4sh A3UC5kt5b6n6uERbeRwpZuUzw2kq/qeTIRBNmWr1YBUTAWm/viet1k1+deknz4Wi oibj9/jaKe2hjbGdjqh5uXIZVzijygnJExD/xdwlbYezvrznV81O02BODvYqCvsR D572qRgoUx3wgk2QFQL2btispsKlAAWGPQgiK6D2qFczw9GzhP3Zb8NJCY+QMTd8 iprOKKDY+aqQ+49jrIq3OlN6H0gtcvl15HZjmyBb7KPIhZDntGge4nazXvkXAi1k tFjb1zE3EZIWkoYEielT9qIfowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLK+dOT ykP57YxYqOvYUKqJNJBBMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAldIHqLqP1QhCkejm/R30o4g2DQ7d0F23e1YvFN9OIOzYAKZWohxRP OyuSHaGsh/mH5wq7Cc+D8amWUR1d0FSSZ3S4oxcqpzwlO+teCdOOO6ZyetS85fyL d8OF9D5C5hDqOiX4/0DdLGX3dPzXC8eg/lRoBPRgfNeUzL52t884fLlUxRx7EDkG EEy5JTEh1ribhiDIvbFK8uINdYKp0v+lg9Lf2QAEyc7rhvcBdDZ8mVB+AtAaWSNk pzRp+AnTnZeu9F/mbUBTnALGY/k4D6g9wU1oiyIKphHgA5eeF/IrlzTtEwKcfMIs IggEEJBFcY5mkBgL25xiu2S49gG4YHtc -----END CERTIFICATE-----Generated at Sat May 31 17:01:20 2025 by rpki-client