$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: OHHshNHpcbirz/r091aEyHe0AkpAzYP3PaHdJGa0nxY= Subject key identifier: 4D:57:A5:6E:14:09:40:F2:3A:90:CA:4B:F0:AB:68:38:1F:7C:B8:02 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 22E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 22CB Signing time: Sat 31 May 2025 15:49:27 +0000 Manifest this update: Sat 31 May 2025 15:49:27 +0000 Manifest next update: Sat 07 Jun 2025 15:49:27 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: 4nXC8eCFT5GiiZugT9sQ1AhIr+6qPpR/rSjt1xOFVbs=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: 0vCf/xwV9KMenpxoQYxOfrnjClEJSXbTz5F/3QVeMUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8932 (0x22e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: May 31 15:49:27 2025 GMT Not After : Jun 7 15:49:27 2025 GMT Subject: CN=683b2507-9827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:9a:c9:51:8f:74:32:7c:e2:a7:5e:a4:01: 4b:5a:f8:a5:36:47:46:f7:be:15:54:4f:66:1f:f7: 76:01:c1:ea:df:dd:6e:4d:38:ab:72:6a:f2:17:c9: a3:8d:17:79:bd:b6:1a:8f:4c:6a:4d:3d:dd:28:a5: 04:56:f5:15:a1:2f:1c:e7:4f:bf:3e:1a:fb:30:75: d9:84:d4:20:5d:8c:a3:31:62:71:a7:32:c7:a1:b1: f1:41:f6:a0:85:f3:cb:2a:ee:68:cb:f6:fb:26:09: 49:b7:d3:0f:4c:48:d7:3c:46:36:88:40:a7:cf:72: 59:30:ed:b3:94:c7:eb:10:25:4e:25:6b:a9:e2:f9: 41:af:23:34:bf:f3:51:f5:cb:3d:14:f5:74:11:de: 6c:5a:89:b6:3b:e9:90:9d:39:22:7e:11:b7:3d:67: cf:ca:ca:11:1d:67:4a:2a:3e:cc:22:bc:69:fd:df: f6:8c:60:11:a2:9e:7d:03:ad:40:b7:0f:ca:62:c9: c4:1c:c9:d0:a9:63:f5:62:49:b2:dd:e1:35:a2:12: 9a:1e:8f:a7:39:50:33:cf:09:d2:19:f8:e2:79:f6: ac:c8:bb:16:c0:a5:dc:eb:5f:d0:d8:11:d6:16:3e: bf:a2:7c:26:7e:86:34:64:e1:a6:7c:ed:5b:d3:1e: 4c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:57:A5:6E:14:09:40:F2:3A:90:CA:4B:F0:AB:68:38:1F:7C:B8:02 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:8e:8c:82:15:ae:0f:c5:2f:6c:ca:c3:f1:8f:98:8b:f8:fa: 15:7e:b9:f7:45:e4:ca:e2:c0:3f:ef:f7:ab:d1:78:78:6f:e4: 19:e8:67:d3:92:2e:fb:5c:c1:a0:b6:23:b5:2c:b2:9e:d1:be: d9:27:db:b1:91:05:45:aa:0e:bb:93:8f:3b:88:d7:4a:7a:17: 9f:ca:25:6e:ea:1d:1f:88:0d:6c:db:5a:dd:6f:d3:5b:67:f0: 25:55:54:54:d9:11:10:6e:e2:14:da:53:6d:d5:62:53:c9:0d: e0:2a:1c:b7:30:e9:88:48:2d:1e:95:23:24:52:5d:16:74:f0: ad:03:e7:01:20:a1:cf:ef:6c:30:68:ed:9b:f5:db:e1:ca:f4: 66:5c:19:57:34:e6:07:27:7a:99:4a:9f:e0:e4:82:38:0b:c5: 1a:02:f0:81:7d:ff:fa:fc:39:15:b4:40:da:e1:58:fa:9f:5c: 20:8d:84:91:1b:c7:2d:66:59:e4:dc:75:c0:92:e5:dc:65:e3: 15:cd:77:ed:36:61:74:5c:bb:d6:93:94:e7:ca:eb:a6:0a:30: 3b:cd:23:3e:8f:a5:99:c1:b6:dd:34:07:71:df:dc:2b:25:60: cc:45:fc:85:a2:d2:99:ab:41:c1:71:3e:61:33:83:09:05:16: 9b:af:45:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwNTMxMTU0OTI3WhcNMjUwNjA3MTU0OTI3WjAYMRYwFAYD VQQDEw02ODNiMjUwNy05ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSiayVGPdDJ84qdepAFLWvilNkdG974VVE9mH/d2AcHq391uTTircmryF8mj jRd5vbYaj0xqTT3dKKUEVvUVoS8c50+/Phr7MHXZhNQgXYyjMWJxpzLHobHxQfag hfPLKu5oy/b7JglJt9MPTEjXPEY2iECnz3JZMO2zlMfrECVOJWup4vlBryM0v/NR 9cs9FPV0Ed5sWom2O+mQnTkifhG3PWfPysoRHWdKKj7MIrxp/d/2jGARop59A61A tw/KYsnEHMnQqWP1Ykmy3eE1ohKaHo+nOVAzzwnSGfjiefasyLsWwKXc61/Q2BHW Fj6/onwmfoY0ZOGmfO1b0x5MpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1XpW4U CUDyOpDKS/CraDgffLgCMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAjoyCFa4PxS9sysPxj5iL+PoVfrn3ReTK4sA/7/er0Xh4b+QZ6GfT ki77XMGgtiO1LLKe0b7ZJ9uxkQVFqg67k487iNdKehefyiVu6h0fiA1s21rdb9Nb Z/AlVVRU2REQbuIU2lNt1WJTyQ3gKhy3MOmISC0elSMkUl0WdPCtA+cBIKHP72ww aO2b9dvhyvRmXBlXNOYHJ3qZSp/g5II4C8UaAvCBff/6/DkVtEDa4Vj6n1wgjYSR G8ctZlnk3HXAkuXcZeMVzXftNmF0XLvWk5TnyuumCjA7zSM+j6WZwbbdNAdx39wr JWDMRfyFotKZq0HBcT5hM4MJBRabr0Xp -----END CERTIFICATE-----Generated at Sat May 31 17:22:12 2025 by rpki-client