$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: wPLJnGjJFOHdWYrDUClb+LsmXkVK+3y7st6jHvBh/b8= Subject key identifier: 6F:3E:7D:DE:C1:C4:88:AA:05:AD:DF:2B:A3:1B:72:85:77:35:FF:08 Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 0867 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 0861 Signing time: Fri 30 May 2025 20:55:17 +0000 Manifest this update: Fri 30 May 2025 20:55:17 +0000 Manifest next update: Fri 06 Jun 2025 20:55:17 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: jwHfJWRBVupWkUxABuyepIrKVLjhAd+QB1i9so9wkVE=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: 04/HwV26/Fx1bZoGuRdSyRLiYV06aFK5mycaJ+/tqsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: May 30 20:55:17 2025 GMT Not After : Jun 6 20:55:17 2025 GMT Subject: CN=683a1b35-719d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:36:bb:8a:91:98:8a:26:ea:2f:df:1a:0f:11: a4:74:54:7b:46:02:a2:f3:3c:eb:16:4d:eb:04:ca: da:49:f8:84:b4:89:d5:e0:df:db:8d:cf:15:28:73: 71:d1:eb:f1:d8:3f:1b:25:e3:fe:82:46:aa:fd:96: dd:8c:7c:28:b1:99:ab:82:83:c3:30:00:35:2a:a2: 2b:87:59:1f:61:0d:88:6c:56:53:3f:df:80:ea:d8: 4a:18:76:a6:02:9c:fb:38:92:da:8b:ee:13:a9:b2: 86:bc:3f:f4:d8:7e:26:d7:1e:99:66:3f:9b:d5:f0: 7f:40:71:20:3f:53:fa:57:a7:40:df:cb:9c:42:b8: a5:b4:4e:eb:fa:40:c0:ac:e9:e7:57:70:52:81:a4: 49:09:0f:27:91:8c:aa:84:a7:1f:01:9b:3c:1b:e0: 61:3c:23:70:db:df:6c:20:de:c9:99:52:bb:29:f2: 02:c9:40:b5:ef:89:0b:e6:74:21:4e:03:e5:ae:19: c6:98:b4:d6:8b:e5:97:23:87:83:fb:87:31:37:4a: ba:b7:05:c8:a8:c4:76:7e:8b:eb:76:b2:c0:d3:16: c7:d1:c6:35:42:58:d4:74:cd:ee:a5:84:1b:61:e6: a4:92:4b:3d:c2:fd:77:7e:b2:4a:fd:3f:76:50:93: 49:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3E:7D:DE:C1:C4:88:AA:05:AD:DF:2B:A3:1B:72:85:77:35:FF:08 X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:83:4e:d8:0c:8e:40:86:9e:ca:89:ab:84:d7:e5:95:86:ac: 81:2a:3a:e8:57:57:6b:a7:8a:dd:91:97:80:9f:9b:b0:42:86: 00:ec:27:3e:aa:6d:90:72:d4:94:1e:50:40:3d:e1:e8:17:ea: e3:e7:78:0b:09:10:65:6f:73:29:8a:53:92:bd:2f:3b:0c:24: d7:fe:62:11:32:90:46:2a:cc:8f:df:5c:de:97:fd:99:25:a7: 4f:e1:d0:c4:09:8b:2d:16:da:90:b2:4d:0e:4d:dc:ca:4b:c7: 01:9e:e9:53:88:8e:1c:d4:8d:51:c2:da:88:3b:0c:d0:e7:32: 13:e3:20:6c:f8:16:63:cd:4e:83:73:35:d7:5f:9b:89:92:7b: 55:d0:d2:13:5a:3b:22:cd:c9:3d:75:2e:ce:62:0c:62:df:2e: 3e:00:6a:35:b8:45:d4:eb:fe:71:de:3c:40:30:8a:32:7c:1e: de:fa:16:3d:36:d5:cd:8c:1e:54:d1:fd:9a:cd:87:b2:b0:b3: f7:c5:f2:99:c9:c6:b0:d9:fe:2a:68:04:1a:e3:e8:05:ba:37: 35:55:8f:df:75:1b:0a:95:00:15:43:42:39:38:49:9e:76:c0: 2a:ac:1f:85:8a:37:39:30:b1:55:14:8d:7b:e3:11:9f:1e:54: 21:f5:4b:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjUwNTMwMjA1NTE3WhcNMjUwNjA2MjA1NTE3WjAYMRYwFAYD VQQDEw02ODNhMWIzNS03MTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzja7ipGYiibqL98aDxGkdFR7RgKi8zzrFk3rBMraSfiEtInV4N/bjc8VKHNx 0evx2D8bJeP+gkaq/ZbdjHwosZmrgoPDMAA1KqIrh1kfYQ2IbFZTP9+A6thKGHam Apz7OJLai+4TqbKGvD/02H4m1x6ZZj+b1fB/QHEgP1P6V6dA38ucQriltE7r+kDA rOnnV3BSgaRJCQ8nkYyqhKcfAZs8G+BhPCNw299sIN7JmVK7KfICyUC174kL5nQh TgPlrhnGmLTWi+WXI4eD+4cxN0q6twXIqMR2fovrdrLA0xbH0cY1QljUdM3upYQb Yeakkks9wv13frJK/T92UJNJUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8+fd7B xIiqBa3fK6MbcoV3Nf8IMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxg07YDI5Ahp7KiauE1+WVhqyBKjroV1drp4rdkZeAn5uwQoYA7Cc+ qm2QctSUHlBAPeHoF+rj53gLCRBlb3MpilOSvS87DCTX/mIRMpBGKsyP31zel/2Z JadP4dDECYstFtqQsk0OTdzKS8cBnulTiI4c1I1RwtqIOwzQ5zIT4yBs+BZjzU6D czXXX5uJkntV0NITWjsizck9dS7OYgxi3y4+AGo1uEXU6/5x3jxAMIoyfB7e+hY9 NtXNjB5U0f2azYeysLP3xfKZycaw2f4qaAQa4+gFujc1VY/fdRsKlQAVQ0I5OEme dsAqrB+Fijc5MLFVFI174xGfHlQh9Uty -----END CERTIFICATE-----Generated at Sat May 31 17:42:42 2025 by rpki-client