$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: LZpozttEDYcYUWGVV+PZOWR5STIldriVENKpcBGv488= Subject key identifier: F8:8A:EA:71:00:06:85:15:57:56:22:54:51:71:99:88:74:B0:5F:BA Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 0130 Signing time: Sat 31 May 2025 04:10:56 +0000 Manifest this update: Sat 31 May 2025 04:10:56 +0000 Manifest next update: Sat 07 Jun 2025 04:10:56 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: /8+i6/YqkZG38EDuqg8XZxX/n3BdfbFbubB0M9gdTyg=) 2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: 1i4x5btwBoyVs/bOkBs3utfiU+YxigrlqpfcPAr0jaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: May 31 04:10:56 2025 GMT Not After : Jun 7 04:10:56 2025 GMT Subject: CN=683a8150-df00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:a2:71:cc:96:06:d8:f1:b2:c6:ae:11:7d: 01:da:55:ba:69:ed:51:f9:fd:1a:ef:8b:28:07:ac: 73:d4:5e:2a:7c:1f:8d:1e:39:8e:28:20:4d:56:be: 72:c8:18:af:c2:5a:64:9d:da:91:8f:49:14:9c:35: 64:6c:e2:4e:dc:36:78:bb:08:29:b8:1a:9b:3b:b2: 98:59:ec:b1:8c:6b:e9:18:ef:16:17:93:81:92:92: 68:2d:c8:7b:03:ed:31:ed:b5:da:fd:d4:e9:1c:13: e7:4f:19:2e:c4:ad:c9:c8:e8:72:83:60:55:5b:dc: c8:d7:58:c3:e8:94:4a:2a:70:fa:57:84:e5:4e:a0: c1:0a:02:ee:39:ef:42:c2:d0:64:37:3d:5c:a2:d4: be:92:1c:f1:8f:32:4e:05:c9:5b:9d:e8:eb:00:a9: fa:28:3d:1e:ea:17:b4:0e:bb:93:c5:3a:20:6b:49: 45:d4:b7:bf:5e:9c:dd:12:97:89:c3:63:74:ba:f9: 5a:50:71:e6:88:ca:6c:6e:6d:5b:da:a6:a1:17:b2: 1a:2b:a8:51:bf:de:9b:87:a0:83:f0:f1:cb:71:b4: a0:4a:e6:34:46:18:cb:4d:6a:c8:a7:e6:b6:7c:6b: 69:1e:33:4a:10:28:7c:5d:2b:ca:77:7e:ed:ad:56: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8A:EA:71:00:06:85:15:57:56:22:54:51:71:99:88:74:B0:5F:BA X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:a3:ba:9c:f0:97:4c:17:30:a2:50:ff:24:1f:3c:83:75:c2: 49:2e:9c:0f:0d:7f:c5:54:e2:77:95:94:22:54:90:91:fe:5b: 28:56:4b:2f:ef:3b:00:9a:dc:ea:ba:e3:c3:87:e8:0f:3b:f6: f7:81:ba:31:3a:1b:ef:87:53:21:a1:1d:68:a5:34:c1:41:fb: 3e:66:94:45:ac:e7:15:68:96:17:fe:4e:e2:e6:cc:38:bc:b5: e4:71:c5:6a:7a:4f:87:6e:e2:38:9b:3a:21:2d:6e:e9:b1:f9: 13:2b:00:77:eb:29:06:b2:63:eb:62:f9:2f:3f:87:b5:3e:79: f1:62:9a:e0:ab:92:1c:a0:be:b1:02:97:4d:ff:fe:02:ad:69: 4b:f0:d1:bc:fa:e7:22:d3:e7:95:57:94:91:d5:71:e7:7c:d5: 61:56:fa:83:18:9c:08:d1:46:75:be:de:19:8f:b9:69:53:30: a3:4b:f2:53:b9:32:31:30:5a:b3:62:b3:bd:53:4b:94:b2:4a: 8a:08:d4:2f:99:51:e4:23:82:a8:62:36:37:e7:3b:32:75:26: 89:07:d6:29:1f:8d:1d:da:85:be:cd:c6:e9:ba:be:4f:86:b5: bf:26:cc:87:06:d8:94:63:6e:81:70:52:a8:4d:5e:1c:f9:9b: 79:a4:0e:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwNTMxMDQxMDU2WhcNMjUwNjA3MDQxMDU2WjAYMRYwFAYD VQQDEw02ODNhODE1MC1kZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxmiccyWBtjxssauEX0B2lW6ae1R+f0a74soB6xz1F4qfB+NHjmOKCBNVr5y yBivwlpkndqRj0kUnDVkbOJO3DZ4uwgpuBqbO7KYWeyxjGvpGO8WF5OBkpJoLch7 A+0x7bXa/dTpHBPnTxkuxK3JyOhyg2BVW9zI11jD6JRKKnD6V4TlTqDBCgLuOe9C wtBkNz1cotS+khzxjzJOBclbnejrAKn6KD0e6he0DruTxToga0lF1Le/XpzdEpeJ w2N0uvlaUHHmiMpsbm1b2qahF7IaK6hRv96bh6CD8PHLcbSgSuY0RhjLTWrIp+a2 fGtpHjNKECh8XSvKd37trVa+SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiK6nEA BoUVV1YiVFFxmYh0sF+6MB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwo7qc8JdMFzCiUP8kHzyDdcJJLpwPDX/FVOJ3lZQiVJCR/lsoVksv 7zsAmtzquuPDh+gPO/b3gboxOhvvh1MhoR1opTTBQfs+ZpRFrOcVaJYX/k7i5sw4 vLXkccVqek+HbuI4mzohLW7psfkTKwB36ykGsmPrYvkvP4e1PnnxYprgq5IcoL6x ApdN//4CrWlL8NG8+uci0+eVV5SR1XHnfNVhVvqDGJwI0UZ1vt4Zj7lpUzCjS/JT uTIxMFqzYrO9U0uUskqKCNQvmVHkI4KoYjY35zsydSaJB9YpH40d2oW+zcbpur5P hrW/JsyHBtiUY26BcFKoTV4c+Zt5pA7n -----END CERTIFICATE-----Generated at Sat May 31 16:45:42 2025 by rpki-client