$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: N+UpiA0+CBBCcgFsjg2ta4PpwhdJMjAONFnjAYNoMDw= Subject key identifier: 65:A1:78:7A:76:ED:0A:25:E7:67:50:61:04:7E:23:22:5A:4F:7D:92 Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 0739 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 0733 Signing time: Fri 30 May 2025 21:59:39 +0000 Manifest this update: Fri 30 May 2025 21:59:39 +0000 Manifest next update: Fri 06 Jun 2025 21:59:39 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: OeBzvvo86aNI4riaubcZzasvfQhVOJ3i4opWUqBXNsc=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: YBEc7X7y2zLa5OdEGOrRlwoEuxYs7fU2wrxzm81YklQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA, serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: May 30 21:59:39 2025 GMT Not After : Jun 6 21:59:39 2025 GMT Subject: CN=683a2a4b-d256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3c:40:5b:42:77:21:74:25:ae:e7:cd:eb:8f: 93:fc:98:70:04:5e:2e:62:04:ca:cd:eb:fe:6b:34: c9:17:69:e3:a9:3b:b3:3d:97:0a:b6:87:96:80:b4: 39:48:51:a2:8a:4d:5d:a7:50:55:15:b0:dd:42:29: 13:c7:4e:2d:57:98:22:70:4f:db:82:8f:e9:98:ef: 90:34:63:62:13:5f:9c:2f:64:8f:8e:de:32:a0:af: c2:70:90:8b:1e:c3:57:f7:3e:62:7e:76:8e:18:a0: 52:61:ad:d3:4c:96:22:99:e5:fa:43:e3:a5:f9:7e: d3:c8:20:eb:bd:ff:cd:81:98:13:f1:ac:c4:da:59: b6:35:c2:92:2b:ac:88:03:c4:4c:2f:e3:5b:a0:fc: 3b:c1:92:1f:06:61:95:33:1a:24:e0:e5:4a:31:48: 78:50:93:be:8c:d1:d3:da:5f:75:8b:51:f1:be:af: 46:4a:a4:68:ae:9e:c2:34:92:9c:f1:4f:ee:27:75: ff:f6:76:6c:ba:1a:f6:d2:78:9b:1c:92:61:ae:f6: 08:f0:9d:ce:c5:00:48:b7:ba:6d:b8:bb:ca:b4:30: aa:b4:46:c2:8e:a8:d3:5e:79:00:c3:38:da:fe:8f: 98:c7:63:85:07:a2:d2:5d:c6:e9:d8:bc:5b:87:fa: 10:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A1:78:7A:76:ED:0A:25:E7:67:50:61:04:7E:23:22:5A:4F:7D:92 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:05:5a:4a:1b:83:de:1c:81:aa:33:4b:3c:33:58:1d:4c:25: 19:9f:92:e8:91:bd:ed:1f:8d:2f:b8:f0:d7:18:3e:d2:95:4e: 28:2c:97:85:86:22:49:4e:22:16:06:73:ab:7d:8b:b6:63:7e: 9b:74:84:1b:fa:69:60:5a:68:0a:e1:a4:5f:b2:35:45:26:24: 1d:55:35:29:b4:ec:9d:04:b9:52:7d:e5:6e:88:f6:ff:e9:88: 66:e7:41:58:95:96:d6:4f:9f:c4:1d:c0:6b:a1:63:81:b8:10: 81:df:a2:f1:5c:44:5e:48:be:cd:38:e3:ea:b0:0d:9b:d4:01: e5:ca:56:e6:32:45:f2:71:fc:3a:c5:b9:ca:aa:86:3a:7a:15: 85:1e:e9:63:c6:31:f8:62:b0:f1:54:e7:a6:32:12:54:48:01: 7e:c4:c0:62:e7:9e:48:3a:c7:73:d3:6d:3b:77:ed:74:a1:ab: ff:0e:4e:4c:56:bb:5a:be:d2:ed:a6:83:88:37:d7:f5:12:bd: ae:21:e0:95:6a:76:5c:df:43:d1:b6:5c:f8:51:ad:fc:00:02: a4:11:a1:ba:12:cc:61:75:b8:18:a5:39:f1:ae:0f:26:ec:32: ce:c0:c7:39:44:4a:57:ab:7d:1d:d1:b2:98:db:23:e1:1a:70: 66:4d:90:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjUwNTMwMjE1OTM5WhcNMjUwNjA2MjE1OTM5WjAYMRYwFAYD VQQDEw02ODNhMmE0Yi1kMjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDxAW0J3IXQlrufN64+T/JhwBF4uYgTKzev+azTJF2njqTuzPZcKtoeWgLQ5 SFGiik1dp1BVFbDdQikTx04tV5gicE/bgo/pmO+QNGNiE1+cL2SPjt4yoK/CcJCL HsNX9z5ifnaOGKBSYa3TTJYimeX6Q+Ol+X7TyCDrvf/NgZgT8azE2lm2NcKSK6yI A8RML+NboPw7wZIfBmGVMxok4OVKMUh4UJO+jNHT2l91i1Hxvq9GSqRorp7CNJKc 8U/uJ3X/9nZsuhr20nibHJJhrvYI8J3OxQBIt7ptuLvKtDCqtEbCjqjTXnkAwzja /o+Yx2OFB6LSXcbp2Lxbh/oQzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWheHp2 7Qol52dQYQR+IyJaT32SMB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsBVpKG4PeHIGqM0s8M1gdTCUZn5Lokb3tH40vuPDXGD7SlU4oLJeF hiJJTiIWBnOrfYu2Y36bdIQb+mlgWmgK4aRfsjVFJiQdVTUptOydBLlSfeVuiPb/ 6Yhm50FYlZbWT5/EHcBroWOBuBCB36LxXEReSL7NOOPqsA2b1AHlylbmMkXycfw6 xbnKqoY6ehWFHuljxjH4YrDxVOemMhJUSAF+xMBi555IOsdz0207d+10oav/Dk5M VrtavtLtpoOIN9f1Er2uIeCVanZc30PRtlz4Ua38AAKkEaG6EsxhdbgYpTnxrg8m 7DLOwMc5REpXq30d0bKY2yPhGnBmTZAB -----END CERTIFICATE-----Generated at Sat May 31 17:56:27 2025 by rpki-client