$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: 7WUiYaNKq2OcYRtbVaQEJnLg9kg7k7cE7hrderOTLWg= Subject key identifier: AA:A4:EF:69:DC:92:9B:82:F3:F6:F3:63:7A:B0:FA:81:C3:2F:96:A4 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 250A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 250A Signing time: Mon 02 Jun 2025 14:33:09 +0000 Manifest this update: Mon 02 Jun 2025 14:33:08 +0000 Manifest next update: Mon 09 Jun 2025 14:33:08 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: 8QFlLe0aWTulehWeTVEBF+3DQX4afgSk99LVcvEhzBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9482 (0x250a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jun 2 14:33:08 2025 GMT Not After : Jun 9 14:33:08 2025 GMT Subject: CN=683db624-2f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:82:34:f8:6c:71:9a:e9:67:ae:30:3a:ce:8c: f6:0c:83:b7:91:b6:76:a8:42:f2:73:1d:b1:79:4e: 25:1d:f2:26:c8:e0:30:c1:bf:3b:c7:d1:3c:f0:24: 0b:6e:12:91:87:e9:15:6c:df:63:8e:03:2a:d5:e5: bc:44:d5:6a:3c:cc:ff:a0:85:d1:b1:ae:7c:44:75: 9d:51:5c:c2:9d:30:07:18:9f:9b:a4:3e:5e:3f:db: 74:87:4d:10:05:84:8c:8b:87:b2:ca:32:c2:65:b8: 01:1d:cf:c6:3c:7d:5c:9c:8d:25:ff:b6:4d:b4:2c: f6:f6:5e:2b:17:45:ff:1d:ba:10:99:61:a7:32:52: 74:ae:f5:4e:77:ad:69:33:f3:c8:88:d6:3e:d3:ec: d8:58:fa:ea:23:de:3c:42:db:a4:1a:10:60:12:90: a3:ea:58:eb:17:fd:d0:01:8c:f4:37:42:8f:22:6d: ca:f1:9d:a0:fb:1a:65:68:4b:d1:ab:ed:f7:bc:23: 1c:e7:54:9e:aa:6e:7c:d1:4f:f0:61:d5:e5:7d:6a: 92:90:43:af:f1:31:b3:3c:ab:3f:ce:09:0c:45:6c: 64:8c:53:90:23:ce:2c:1f:b4:2e:3d:fe:8a:c3:6c: 69:e4:c6:a6:7b:62:b9:e2:bf:e9:4c:88:1c:39:64: 99:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A4:EF:69:DC:92:9B:82:F3:F6:F3:63:7A:B0:FA:81:C3:2F:96:A4 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:7b:ee:f9:c5:76:97:61:08:0a:2f:bf:29:9c:2f:ca:f7:70: 11:af:e3:6c:fa:04:bf:8d:b1:44:e5:2d:f3:91:1e:b1:f6:1f: d9:c2:21:c7:77:e9:a7:3f:34:75:5e:32:34:9f:d4:fd:d0:b5: e7:9d:d0:7f:74:3f:db:62:b5:a0:b3:24:02:a7:18:ad:62:bc: a3:92:65:c5:c8:36:f3:78:28:eb:cf:eb:13:f6:d7:b0:b3:ef: e4:6f:38:13:17:89:32:f5:c2:99:ee:90:c0:0a:9f:e7:1b:56: 42:7a:d5:78:41:82:b6:3b:e6:80:59:3f:ad:d5:e8:90:1c:b9: 56:2b:94:2c:17:5a:f7:6b:5d:3d:1d:04:00:f7:17:02:13:b9: c0:98:38:1c:71:5c:1b:3f:bf:da:4d:57:a9:78:cb:81:c5:53: 2d:77:a0:76:70:e0:17:b9:3b:2e:bd:5e:90:9d:9d:b5:b7:bd: 5f:b9:9a:12:cb:99:22:f4:09:ea:6d:58:9f:4b:b8:d9:0d:4e: 76:1b:df:72:6b:b9:d9:a9:90:28:ee:6f:03:97:5d:71:4b:75: 33:6b:b6:a8:9a:da:b0:0d:3b:a1:c2:e9:f2:45:40:e7:55:0d: 62:4b:ca:56:23:ab:5e:57:62:03:2b:2b:92:c6:1e:aa:87:77: ea:70:d0:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNjAyMTQzMzA4WhcNMjUwNjA5MTQzMzA4WjAYMRYwFAYD VQQDEw02ODNkYjYyNC0yZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoI0+GxxmulnrjA6zoz2DIO3kbZ2qELycx2xeU4lHfImyOAwwb87x9E88CQL bhKRh+kVbN9jjgMq1eW8RNVqPMz/oIXRsa58RHWdUVzCnTAHGJ+bpD5eP9t0h00Q BYSMi4eyyjLCZbgBHc/GPH1cnI0l/7ZNtCz29l4rF0X/HboQmWGnMlJ0rvVOd61p M/PIiNY+0+zYWPrqI948QtukGhBgEpCj6ljrF/3QAYz0N0KPIm3K8Z2g+xplaEvR q+33vCMc51Seqm580U/wYdXlfWqSkEOv8TGzPKs/zgkMRWxkjFOQI84sH7QuPf6K w2xp5Mame2K54r/pTIgcOWSZMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqk72nc kpuC8/bzY3qw+oHDL5akMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHe+75xXaXYQgKL78pnC/K93ARr+Ns+gS/jbFE5S3zkR6x9h/ZwiHH d+mnPzR1XjI0n9T90LXnndB/dD/bYrWgsyQCpxitYryjkmXFyDbzeCjrz+sT9tew s+/kbzgTF4ky9cKZ7pDACp/nG1ZCetV4QYK2O+aAWT+t1eiQHLlWK5QsF1r3a109 HQQA9xcCE7nAmDgccVwbP7/aTVepeMuBxVMtd6B2cOAXuTsuvV6QnZ21t71fuZoS y5ki9AnqbVifS7jZDU52G99ya7nZqZAo7m8Dl11xS3Uza7aomtqwDTuhwunyRUDn VQ1iS8pWI6teV2IDKyuSxh6qh3fqcNDF -----END CERTIFICATE-----Generated at Mon Jun 2 19:52:33 2025 by rpki-client