$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: Cz6nzztvx/+scjoTkS5Hb1eWvNFtvwND9WJtfpFEi4Y= Subject key identifier: C0:BA:26:20:1B:3D:12:39:5B:AA:6B:86:5D:3E:CA:6E:99:BD:9C:75 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0AE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0AC5 Signing time: Fri 30 May 2025 19:40:59 +0000 Manifest this update: Fri 30 May 2025 19:40:58 +0000 Manifest next update: Fri 06 Jun 2025 19:40:58 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: ENdbkVKIYAzR3MWN/gQju4q4zdJJB8nXKpoHzEU4A/I=) 2: E3BA5BC629C411F0B7BC5B32C4F9AE02.roa (hash: 5G76QrxV9fckMMwL2Z7gwLl+Gfb46qKRQLob4M+pm5k=) 3: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: May 30 19:40:58 2025 GMT Not After : Jun 6 19:40:58 2025 GMT Subject: CN=683a09cb-dae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a6:c0:4e:38:c2:60:81:51:2c:93:61:72:fc: 4f:c3:9a:f8:a7:f6:22:ac:46:3c:88:f0:db:dd:cc: e5:dd:91:80:99:92:cb:ad:ad:b2:43:3d:1c:0c:6c: de:40:59:0b:aa:41:a6:e2:94:1b:d1:d8:fe:58:f1: 88:82:eb:89:3f:7c:53:fb:4c:ba:16:77:63:82:64: 7c:18:f8:8f:b1:e7:67:79:be:76:8c:12:47:6f:16: 86:d1:d6:2c:ab:17:b2:9f:99:3c:5e:3c:36:83:ba: af:66:4b:e6:bf:83:40:73:3e:42:c6:12:cd:bc:b2: 74:22:e4:ef:63:7f:66:ef:77:fa:9a:b5:f8:56:8a: ee:39:51:45:9e:e3:63:ab:03:9e:7c:56:14:a1:52: 46:9d:49:57:04:14:fc:26:c5:3a:79:13:3f:72:07: 04:cd:c6:a5:e6:9e:df:05:e1:2e:ec:8c:1e:ad:52: 11:3f:f7:6c:0b:54:0b:01:7c:d9:5e:a2:a9:7b:5f: 9c:47:56:51:01:77:77:99:e5:b4:03:5a:18:95:d5: ab:89:cc:82:d9:fc:86:e6:ee:cb:7f:05:22:b4:bf: 49:cc:ea:3e:82:96:5c:46:f0:25:8e:04:ee:c0:d3: d7:dd:9c:22:11:cf:5d:6c:43:90:85:58:5f:6d:9c: 95:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:BA:26:20:1B:3D:12:39:5B:AA:6B:86:5D:3E:CA:6E:99:BD:9C:75 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:b2:ec:27:99:37:d3:be:47:0f:41:db:9b:a8:61:11:6b:01: bb:ee:63:bc:0c:83:85:d7:ac:f7:15:93:bb:d2:b5:6c:45:7b: 06:a8:7d:d2:8e:da:de:e5:92:48:af:45:be:11:42:0a:33:a4: 2e:68:f4:2b:6d:f2:29:e9:fe:71:6d:dd:34:88:80:46:d9:e3: ea:43:6e:12:0a:77:1f:cc:53:ac:b9:9e:40:7e:03:a7:65:c2: 17:5f:0c:4a:36:35:fb:f4:d5:09:71:5f:72:e3:b6:00:53:51: ba:e3:7c:b8:63:05:41:a6:4d:e1:eb:e4:e5:0e:d1:33:2a:23: c8:42:d8:9f:d7:11:7d:46:10:40:1b:82:d6:99:ab:e1:c7:64: 3d:89:20:c8:78:ca:f5:0a:59:0c:fe:3e:36:c8:76:92:d3:5b: 1e:74:d7:21:a0:b5:07:9f:f2:cc:42:ec:54:e0:35:26:e6:19: bc:bf:ed:41:60:4a:c5:cf:b0:4e:00:33:d6:f7:48:15:25:ea: ef:23:82:43:a1:f4:49:a0:98:6d:61:6e:36:4c:5d:66:18:44: 33:fa:0c:3a:6a:39:40:d5:8e:67:5d:e0:ef:35:8c:04:f0:7f: 54:ab:a8:c8:28:a8:19:a5:aa:ae:ba:28:a3:71:9c:75:9b:36: b7:ff:78:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwNTMwMTk0MDU4WhcNMjUwNjA2MTk0MDU4WjAYMRYwFAYD VQQDEw02ODNhMDljYi1kYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6bATjjCYIFRLJNhcvxPw5r4p/YirEY8iPDb3czl3ZGAmZLLra2yQz0cDGze QFkLqkGm4pQb0dj+WPGIguuJP3xT+0y6FndjgmR8GPiPsedneb52jBJHbxaG0dYs qxeyn5k8Xjw2g7qvZkvmv4NAcz5CxhLNvLJ0IuTvY39m73f6mrX4VoruOVFFnuNj qwOefFYUoVJGnUlXBBT8JsU6eRM/cgcEzcal5p7fBeEu7IwerVIRP/dsC1QLAXzZ XqKpe1+cR1ZRAXd3meW0A1oYldWricyC2fyG5u7LfwUitL9JzOo+gpZcRvAljgTu wNPX3ZwiEc9dbEOQhVhfbZyVZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMC6JiAb PRI5W6prhl0+ym6ZvZx1MB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXsuwnmTfTvkcPQdubqGERawG77mO8DIOF16z3FZO70rVsRXsGqH3S jtre5ZJIr0W+EUIKM6QuaPQrbfIp6f5xbd00iIBG2ePqQ24SCncfzFOsuZ5AfgOn ZcIXXwxKNjX79NUJcV9y47YAU1G643y4YwVBpk3h6+TlDtEzKiPIQtif1xF9RhBA G4LWmavhx2Q9iSDIeMr1ClkM/j42yHaS01sedNchoLUHn/LMQuxU4DUm5hm8v+1B YErFz7BOADPW90gVJervI4JDofRJoJhtYW42TF1mGEQz+gw6ajlA1Y5nXeDvNYwE 8H9Uq6jIKKgZpaquuiijcZx1mza3/3ik -----END CERTIFICATE-----Generated at Sat May 31 14:55:06 2025 by rpki-client