$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: buB50Aimr9mOCOWHE8rz/3+C+kWY2j3z2hOP+pf6WkI= Subject key identifier: 63:F9:3B:C9:B9:57:62:86:86:EC:34:03:23:76:CB:60:1E:D3:7F:0D Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 05DB Signing time: Fri 06 Jun 2025 23:03:39 +0000 Manifest this update: Fri 06 Jun 2025 23:03:39 +0000 Manifest next update: Fri 13 Jun 2025 23:03:39 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: ZJBUKxvKlhx8v9yBSltsL3teRtQoAWOSwOOAxvOCwdA=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: bgQvr2Jdprt2Ja1Usi3GgYGC5SiLxAPy60mdKqHu2RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Jun 6 23:03:39 2025 GMT Not After : Jun 13 23:03:39 2025 GMT Subject: CN=684373cb-656c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:37:cb:23:ca:db:25:3c:19:db:c8:22:05:c4: d9:b3:34:d4:e6:85:b3:5b:b5:a2:4b:65:03:0a:17: 2b:41:3a:1e:ae:b6:0d:74:38:8a:e2:5a:dc:6d:e2: 5e:bb:44:16:4a:0c:a9:05:57:fb:40:f1:11:34:16: e0:aa:8c:cf:6d:7b:3c:b2:b7:fa:de:af:84:e2:f3: ee:9d:80:02:89:17:27:31:3a:49:c8:6e:13:8f:3e: 76:4c:3f:b8:47:c1:96:b2:db:15:dc:ec:d1:99:d1: 67:b0:61:5d:8b:20:f7:92:4a:1b:01:62:c0:ba:57: 23:9c:c9:ee:37:c6:52:df:46:43:74:f9:73:03:99: 00:52:20:02:4f:07:e0:2e:e9:66:05:39:1e:8b:71: 8d:93:b9:71:15:9a:99:fa:32:f6:9b:d5:dd:d2:20: 77:71:43:87:d3:9f:cf:d5:cb:fb:a6:30:14:d6:87: d1:20:b5:33:1d:ed:f0:dd:3c:01:bb:3b:50:d7:c9: c7:50:2f:ba:d3:fd:6c:02:43:5b:d2:e6:43:74:42: 0e:3e:4c:bf:78:c7:ce:cb:b1:34:3a:e6:26:b9:44: 13:c4:94:f8:7f:a5:7d:fb:c4:08:77:37:1e:77:8a: 07:ec:d1:30:1b:2c:ea:55:ba:6d:29:9f:08:e3:98: f2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F9:3B:C9:B9:57:62:86:86:EC:34:03:23:76:CB:60:1E:D3:7F:0D X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:68:ac:24:95:cc:be:e6:44:0c:13:50:67:de:f3:55:7f:32: 4d:d1:0e:ca:f8:29:8e:ba:12:cd:c3:8f:e8:40:19:8f:a8:46: 14:3d:b1:c9:d1:07:83:c0:5d:2c:66:ad:00:36:c6:0a:36:1c: 5b:66:05:91:18:7f:49:9c:b7:0d:ba:93:59:38:b3:a3:52:d2: 49:f5:58:38:30:0d:c5:f6:d2:d4:cd:3c:05:17:76:91:7d:22: 76:e6:86:34:18:07:64:5b:dd:4f:98:01:06:02:81:54:d4:75: 57:97:d5:d3:93:ad:d6:cc:90:78:50:88:a6:fa:3f:00:d2:16: b1:f1:46:49:19:98:2d:c6:5c:bc:39:68:3c:a6:c8:cd:c7:db: 4d:6c:20:c9:80:cf:47:c4:c5:91:3b:f2:44:69:10:71:90:61: 34:ad:73:0e:c3:99:b6:e9:43:da:9c:24:b0:80:4d:85:76:51: 1b:25:52:86:ad:3b:a5:f4:5c:6c:bf:1e:ad:6a:c7:7e:63:64: 89:1f:dd:93:ae:a0:0f:c4:5c:b6:0a:a8:9e:3a:5d:22:69:71: 31:30:00:4c:a1:42:cb:fb:49:45:1a:d5:e6:8d:f5:1b:3b:9f: 4a:ff:4b:70:e4:e2:10:12:d3:31:05:75:85:c9:f5:94:93:bd: 7c:3b:0f:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUwNjA2MjMwMzM5WhcNMjUwNjEzMjMwMzM5WjAYMRYwFAYD VQQDEw02ODQzNzNjYi02NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4TfLI8rbJTwZ28giBcTZszTU5oWzW7WiS2UDChcrQToerrYNdDiK4lrcbeJe u0QWSgypBVf7QPERNBbgqozPbXs8srf63q+E4vPunYACiRcnMTpJyG4Tjz52TD+4 R8GWstsV3OzRmdFnsGFdiyD3kkobAWLAulcjnMnuN8ZS30ZDdPlzA5kAUiACTwfg LulmBTkei3GNk7lxFZqZ+jL2m9Xd0iB3cUOH05/P1cv7pjAU1ofRILUzHe3w3TwB uztQ18nHUC+60/1sAkNb0uZDdEIOPky/eMfOy7E0OuYmuUQTxJT4f6V9+8QIdzce d4oH7NEwGyzqVbptKZ8I45jy7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGP5O8m5 V2KGhuw0AyN2y2Ae038NMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3aKwklcy+5kQME1Bn3vNVfzJN0Q7K+CmOuhLNw4/oQBmPqEYUPbHJ 0QeDwF0sZq0ANsYKNhxbZgWRGH9JnLcNupNZOLOjUtJJ9Vg4MA3F9tLUzTwFF3aR fSJ25oY0GAdkW91PmAEGAoFU1HVXl9XTk63WzJB4UIim+j8A0hax8UZJGZgtxly8 OWg8psjNx9tNbCDJgM9HxMWRO/JEaRBxkGE0rXMOw5m26UPanCSwgE2FdlEbJVKG rTul9Fxsvx6tasd+Y2SJH92TrqAPxFy2CqieOl0iaXExMABMoULL+0lFGtXmjfUb O59K/0tw5OIQEtMxBXWFyfWUk718Ow96 -----END CERTIFICATE-----Generated at Sun Jun 8 17:48:30 2025 by rpki-client