$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: qiwRaesZZEJeaBtCxq5njO7u1CAC5wUAagc3VwhCPY0= Subject key identifier: 7D:01:66:B7:B4:D4:7C:69:E7:D5:C7:E5:67:B6:F7:E2:0A:71:23:C7 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 347A Signing time: Sat 10 May 2025 14:36:30 +0000 Manifest this update: Sat 10 May 2025 14:36:30 +0000 Manifest next update: Sat 17 May 2025 14:36:30 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: ct3wwkPIZKLSQjDWqBQq449Q273xrPiECqe/oQixXvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: May 10 14:36:30 2025 GMT Not After : May 17 14:36:30 2025 GMT Subject: CN=681f646e-0b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9d:42:88:cb:62:b7:80:2b:68:b2:7e:66:f5: e9:3f:c1:14:39:e2:5b:6e:34:5a:72:87:07:e4:ce: 3f:b4:4b:1f:81:25:2c:8d:31:93:9c:de:b5:2c:db: d7:f2:84:f4:9d:ff:6f:87:d1:c4:43:1d:cc:ba:c4: aa:f5:3b:a1:c6:ef:f2:5d:28:e7:9d:5d:06:48:80: 6e:d0:d0:53:7b:43:9a:77:2c:0c:b7:0a:b6:e0:54: e3:ce:e1:63:89:39:d6:c9:1f:54:d8:aa:3b:5d:48: 1b:84:26:cc:79:92:fd:eb:83:6d:b6:ff:f9:bc:fc: f3:69:3d:44:52:a4:e8:e6:84:58:11:2d:83:30:4c: ab:7c:47:25:da:a2:e2:8b:7f:05:cc:d1:10:a4:72: 78:7c:8d:ca:8f:e1:30:7d:ba:5b:58:d3:b5:09:0e: 0a:19:f2:a5:de:fa:03:5d:b9:ed:41:dd:96:18:47: b1:d4:46:2b:6f:a0:5d:25:a7:b0:10:b3:f8:ff:db: 7c:e2:ba:92:fb:9d:e1:5b:b6:f1:6a:9c:8a:89:23: b2:ec:3d:80:67:da:8c:c4:30:fc:f9:82:0f:49:98: 78:fe:b2:99:8d:0f:66:1f:09:80:2b:fb:c7:df:a0: 41:65:57:4f:c3:d5:fa:d4:a4:70:42:71:26:ab:ef: 06:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:01:66:B7:B4:D4:7C:69:E7:D5:C7:E5:67:B6:F7:E2:0A:71:23:C7 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:03:f0:50:ad:71:5c:6b:0a:99:92:d2:52:32:57:ef:3b:4f: bd:37:29:93:e7:a3:4e:6a:9d:2c:00:79:dd:88:c8:d1:a7:b6: b9:ef:57:28:9f:05:9e:62:9d:5f:8e:1a:00:b1:ea:e9:47:8b: e6:3f:22:49:fe:d5:05:cc:db:3c:ba:c7:d8:4f:c8:16:98:c2: 59:34:0e:a1:13:3a:f1:44:2b:b9:1e:37:f9:0e:b4:12:4c:a0: 89:fc:33:80:3c:37:50:b9:62:e2:d1:37:19:05:f3:b1:91:11: 93:c3:2b:e3:34:fe:11:a9:69:28:81:d3:d5:24:3b:ca:98:ad: 0f:56:09:ec:c8:04:31:06:b3:36:de:ea:76:01:bd:8c:1a:69: d9:59:b4:5d:51:23:a3:01:79:8a:90:63:3d:cb:8c:ba:62:d4: 20:5b:da:fe:36:ad:42:d3:d5:49:6c:ac:81:e4:34:50:19:3d: 17:39:dc:3f:d2:13:9b:15:1b:c9:b3:2f:b6:04:13:43:b1:cf: a1:bd:6b:d5:a3:55:21:6c:8f:38:29:33:f7:a3:fe:3d:6b:6a: 16:40:86:26:2f:58:f0:c2:84:1d:45:a8:0b:c3:49:ff:a1:b7: 54:c6:64:93:b2:e0:c8:f3:25:61:35:4a:f5:58:02:bf:aa:39: dc:9f:81:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwNTEwMTQzNjMwWhcNMjUwNTE3MTQzNjMwWjAYMRYwFAYD VQQDEw02ODFmNjQ2ZS0wYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZ1CiMtit4AraLJ+ZvXpP8EUOeJbbjRacocH5M4/tEsfgSUsjTGTnN61LNvX 8oT0nf9vh9HEQx3MusSq9Tuhxu/yXSjnnV0GSIBu0NBTe0OadywMtwq24FTjzuFj iTnWyR9U2Ko7XUgbhCbMeZL964Nttv/5vPzzaT1EUqTo5oRYES2DMEyrfEcl2qLi i38FzNEQpHJ4fI3Kj+EwfbpbWNO1CQ4KGfKl3voDXbntQd2WGEex1EYrb6BdJaew ELP4/9t84rqS+53hW7bxapyKiSOy7D2AZ9qMxDD8+YIPSZh4/rKZjQ9mHwmAK/vH 36BBZVdPw9X61KRwQnEmq+8G9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0BZre0 1Hxp59XH5We29+IKcSPHMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRA/BQrXFcawqZktJSMlfvO0+9NymT56NOap0sAHndiMjRp7a571co nwWeYp1fjhoAserpR4vmPyJJ/tUFzNs8usfYT8gWmMJZNA6hEzrxRCu5Hjf5DrQS TKCJ/DOAPDdQuWLi0TcZBfOxkRGTwyvjNP4RqWkogdPVJDvKmK0PVgnsyAQxBrM2 3up2Ab2MGmnZWbRdUSOjAXmKkGM9y4y6YtQgW9r+Nq1C09VJbKyB5DRQGT0XOdw/ 0hObFRvJsy+2BBNDsc+hvWvVo1UhbI84KTP3o/49a2oWQIYmL1jwwoQdRagLw0n/ obdUxmSTsuDI8yVhNUr1WAK/qjncn4Fw -----END CERTIFICATE-----Generated at Sun May 11 09:22:13 2025 by rpki-client