$ rpki-client -vvf rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft File: sxnfFFXYouFJjNxdSRVpgxxa_aE.mft (raw, json) Hash identifier: ojDplE+TPvvEbl6wyR0VcJfl6lIt3jSNHxIDo+Y+nhQ= Subject key identifier: 51:E1:F0:CA:27:E3:C4:16:FB:62:D4:84:0A:8B:D1:C1:3F:B7:90:6B Authority key identifier: B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 Certificate issuer: /CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft Manifest number: 03EE Signing time: Sat 31 May 2025 00:42:49 +0000 Manifest this update: Sat 31 May 2025 00:42:49 +0000 Manifest next update: Sat 07 Jun 2025 00:42:49 +0000 Files and hashes: 1: sxnfFFXYouFJjNxdSRVpgxxa_aE.crl (hash: zjKXdv7lNEElyM8GLN3N5GpdSg/S/hxpUuA67g4+1P0=) 2: 88B3F0026E9F11EEB03D9582C4F9AE02.roa (hash: OnZeTeaYB5z7AJuz8oi6jGvWEckKykDi+qBUmv+U0QM=) 3: DDCB6B02D9D311EEBB3BDF10C4F9AE02.roa (hash: NYRjezFURAIZr5dfzYcgObUcS0k2GZmBPMzd9N07gUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F87BB, serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Validity Not Before: May 31 00:42:49 2025 GMT Not After : Jun 7 00:42:49 2025 GMT Subject: CN=683a5089-be69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:a6:c1:8d:69:0b:9f:4e:44:58:de:57:4e: d0:63:2a:e0:6e:62:6c:f4:bb:ba:ff:b0:e3:76:a2: 80:bb:0c:cc:fa:5f:2a:7e:a6:ba:a7:2f:62:a6:b6: 53:09:21:b8:9b:8a:97:92:8a:bf:12:64:d2:5d:62: bd:cf:17:16:6e:39:c9:36:25:2a:e5:f3:a5:14:74: ff:69:a5:f5:76:3b:00:69:4f:40:a3:46:5f:43:57: ab:25:e5:c5:1a:fc:d4:b6:6c:e5:ca:51:7c:b6:34: 3e:26:ff:c1:2a:3a:15:53:01:7a:f6:ce:1b:65:ba: aa:42:2b:9a:66:d9:27:8d:92:39:21:d9:b5:74:04: 01:cf:ce:86:b9:35:9e:9b:92:48:c6:a1:b4:7b:62: 5f:62:d1:ff:99:f1:35:f2:62:ce:c9:b2:c4:73:7e: 6a:ab:5c:35:be:08:e4:43:44:ff:a0:86:49:dc:19: b1:9e:34:00:a7:03:e7:7c:9e:0b:88:76:50:93:86: bc:15:55:d9:1f:54:f1:97:58:35:7b:2c:a7:1f:07: a0:1e:c4:ed:61:b8:1a:b0:e5:5d:a9:20:65:4a:49: e4:09:47:41:cb:ed:6e:f8:23:4b:b5:4d:10:55:6c: 40:b1:eb:62:6d:88:db:81:9f:fd:d2:2f:7e:a5:2a: 01:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E1:F0:CA:27:E3:C4:16:FB:62:D4:84:0A:8B:D1:C1:3F:B7:90:6B X509v3 Authority Key Identifier: keyid:B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:90:86:38:f3:f5:20:4c:04:cb:49:5b:ab:e5:5b:16:9a:c9: 19:2b:68:81:b4:25:db:0a:c9:9f:74:57:66:2b:fa:3a:00:ce: 6f:27:a2:f6:46:1e:44:0f:9f:68:c5:04:c7:d6:7b:a2:9a:08: 8a:85:af:68:1e:23:5f:15:69:ed:83:d9:21:07:2e:4d:a9:3a: 28:9c:a8:0a:f2:fc:ec:d2:40:ca:72:8d:53:49:c8:d1:bc:7c: 7f:5c:90:ca:14:c1:69:78:f4:58:59:10:c4:01:dc:80:1b:18: eb:ee:44:aa:bd:9f:6f:e8:a6:98:b4:3c:21:3e:5b:70:cf:79: 32:6d:cb:92:13:a1:e2:dd:c7:1f:98:76:42:71:bf:df:5e:3e: 90:76:06:72:a3:99:a4:44:97:e3:31:38:9e:e3:09:93:10:e7: 12:6a:ee:c8:72:ae:65:bf:30:da:58:01:14:9b:1d:e6:d1:05: 90:6f:96:7f:51:1f:ce:38:38:dd:c9:a6:64:6b:13:43:d3:dd: 8d:ff:6e:b2:e8:65:b0:aa:b6:12:0e:86:30:a5:44:63:4f:e2: 54:52:83:f2:b9:1a:50:a2:ea:ad:21:73:03:01:6d:cb:03:9d: 9c:6d:f2:35:4f:9a:06:29:82:b6:fc:34:5d:f1:46:cc:86:f0: 35:ec:a2:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg3QkIxMTAvBgNVBAUTKEIzMTlERjE0NTVEOEEyRTE0OThDREM1RDQ5MTU2OTgz MUM1QUZEQTEwHhcNMjUwNTMxMDA0MjQ5WhcNMjUwNjA3MDA0MjQ5WjAYMRYwFAYD VQQDEw02ODNhNTA4OS1iZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs36mwY1pC59ORFjeV07QYyrgbmJs9Lu6/7DjdqKAuwzM+l8qfqa6py9iprZT CSG4m4qXkoq/EmTSXWK9zxcWbjnJNiUq5fOlFHT/aaX1djsAaU9Ao0ZfQ1erJeXF GvzUtmzlylF8tjQ+Jv/BKjoVUwF69s4bZbqqQiuaZtknjZI5Idm1dAQBz86GuTWe m5JIxqG0e2JfYtH/mfE18mLOybLEc35qq1w1vgjkQ0T/oIZJ3BmxnjQApwPnfJ4L iHZQk4a8FVXZH1Txl1g1eyynHwegHsTtYbgasOVdqSBlSknkCUdBy+1u+CNLtU0Q VWxAsetibYjbgZ/90i9+pSoB+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHh8Mon 48QW+2LUhAqL0cE/t5BrMB8GA1UdIwQYMBaAFLMZ3xRV2KLhSYzcXUkVaYMcWv2h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODdCQi85REYwREZCRTdE RTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91RkpqTnhkU1JWcGd4eGFf YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N4bmZGRlhZb3VGSmpOeGRTUlZwZ3h4YV9hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODdCQi85REYwREZCRTdERTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91 RkpqTnhkU1JWcGd4eGFfYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAkIY48/UgTATLSVur5VsWmskZK2iBtCXbCsmfdFdmK/o6AM5vJ6L2 Rh5ED59oxQTH1nuimgiKha9oHiNfFWntg9khBy5NqToonKgK8vzs0kDKco1TScjR vHx/XJDKFMFpePRYWRDEAdyAGxjr7kSqvZ9v6KaYtDwhPltwz3kybcuSE6Hi3ccf mHZCcb/fXj6QdgZyo5mkRJfjMTie4wmTEOcSau7Icq5lvzDaWAEUmx3m0QWQb5Z/ UR/OODjdyaZkaxND092N/26y6GWwqrYSDoYwpURjT+JUUoPyuRpQouqtIXMDAW3L A52cbfI1T5oGKYK2/DRd8UbMhvA17KKF -----END CERTIFICATE-----Generated at Sat May 31 17:14:40 2025 by rpki-client