$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: P0oWCWxcYU8kXYeqrDR7AUhubOv7FkZ9xlRY7EvaD84= Subject key identifier: A0:C7:97:2E:BF:6F:FC:CE:9C:F6:53:A7:41:0F:D1:59:FE:CB:11:5B Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 0481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 046A Signing time: Sat 10 May 2025 23:47:34 +0000 Manifest this update: Sat 10 May 2025 23:47:34 +0000 Manifest next update: Sat 17 May 2025 23:47:34 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: 0ZHF4hCGXG3nX/UjZgD182+KuKzVqp7RoieSovRd5Ac=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: May 10 23:47:34 2025 GMT Not After : May 17 23:47:34 2025 GMT Subject: CN=681fe596-4ee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b3:14:7e:43:49:3b:dc:bf:1a:00:d6:26:0b: da:0c:c1:aa:25:d1:d0:95:d1:92:48:fd:e6:03:f9: 91:9b:70:91:c9:63:9f:f0:c6:93:00:be:49:8f:30: bb:fb:38:06:f2:ac:03:78:dd:62:25:8a:01:f6:05: 08:69:ad:a5:85:0b:81:2e:fa:21:94:9c:10:c4:b9: 91:9a:40:9c:eb:db:57:f4:cc:1d:05:14:7c:f4:37: 17:56:fa:39:9d:8d:e0:b4:d5:ad:59:22:fd:e0:4f: 4a:f8:1d:1c:9d:52:85:9f:62:34:06:a6:56:f0:80: e8:98:38:ef:99:7d:e1:06:02:57:ad:50:52:75:a6: ed:67:19:05:a7:86:80:25:02:ea:67:ea:6b:5a:2a: 25:de:09:e1:6c:be:24:21:e6:10:03:bd:f1:16:23: 3a:4a:1f:60:02:bb:48:3c:7e:16:e9:03:77:aa:2a: f2:77:7c:5d:b0:88:d4:de:6b:60:44:7f:40:9d:3a: 32:bf:2b:0f:2c:4e:8a:e0:f8:ee:79:c0:89:16:39: 43:23:56:80:19:a7:a5:5b:88:a6:1c:be:f0:77:46: 38:14:b7:34:2a:8f:e4:e5:22:a9:7d:3e:b5:ef:30: 02:e6:77:1b:7e:29:56:41:3c:5a:89:6a:18:7b:71: da:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C7:97:2E:BF:6F:FC:CE:9C:F6:53:A7:41:0F:D1:59:FE:CB:11:5B X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0d:dd:82:35:1b:05:95:75:11:03:a6:9b:e5:55:7e:1a:75: 5a:c7:59:f5:93:ba:da:ef:43:7b:b2:6e:79:51:24:43:b9:b8: 2c:4b:27:c7:66:fe:5a:76:87:23:bd:8d:a6:b0:44:7a:5f:95: 38:e6:8f:65:01:53:b9:be:e0:fd:ef:75:92:d7:b9:05:00:b3: 6d:03:c8:e4:57:93:ee:fa:02:d4:52:74:5d:7b:30:ed:c1:99: 5b:e4:b8:01:50:57:f6:38:8f:31:94:6c:51:d5:47:bf:cc:da: 3f:9b:75:47:f8:5a:28:49:e9:77:19:bc:93:03:ce:5f:7d:19: b0:6f:91:29:d3:0f:58:26:29:1f:e8:42:ce:c1:5c:93:ba:66: cb:47:e9:25:8c:44:96:04:94:3c:d5:9a:f6:be:01:58:31:62: ea:50:d5:66:e4:43:e0:dc:85:d9:9a:61:71:71:02:eb:42:d5: 80:a8:ce:69:ae:43:05:03:4f:3a:be:f3:c6:4a:66:a2:96:de: ca:d2:bc:fd:36:a9:05:fe:3d:1f:93:2d:e4:da:be:b1:ee:bd: 43:f0:1b:e8:ee:31:f3:45:c7:6c:53:ff:86:46:11:b5:57:3f: ca:16:31:c2:27:29:b1:0e:a2:9d:f1:6c:e7:86:9a:f7:3c:d8: 15:24:bf:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwNTEwMjM0NzM0WhcNMjUwNTE3MjM0NzM0WjAYMRYwFAYD VQQDEw02ODFmZTU5Ni00ZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkrMUfkNJO9y/GgDWJgvaDMGqJdHQldGSSP3mA/mRm3CRyWOf8MaTAL5JjzC7 +zgG8qwDeN1iJYoB9gUIaa2lhQuBLvohlJwQxLmRmkCc69tX9MwdBRR89DcXVvo5 nY3gtNWtWSL94E9K+B0cnVKFn2I0BqZW8IDomDjvmX3hBgJXrVBSdabtZxkFp4aA JQLqZ+prWiol3gnhbL4kIeYQA73xFiM6Sh9gArtIPH4W6QN3qiryd3xdsIjU3mtg RH9AnToyvysPLE6K4PjuecCJFjlDI1aAGaelW4imHL7wd0Y4FLc0Ko/k5SKpfT61 7zAC5ncbfilWQTxaiWoYe3HaowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDHly6/ b/zOnPZTp0EP0Vn+yxFbMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzDd2CNRsFlXURA6ab5VV+GnVax1n1k7ra70N7sm55USRDubgsSyfH Zv5adocjvY2msER6X5U45o9lAVO5vuD973WS17kFALNtA8jkV5Pu+gLUUnRdezDt wZlb5LgBUFf2OI8xlGxR1Ue/zNo/m3VH+FooSel3GbyTA85ffRmwb5Ep0w9YJikf 6ELOwVyTumbLR+kljESWBJQ81Zr2vgFYMWLqUNVm5EPg3IXZmmFxcQLrQtWAqM5p rkMFA086vvPGSmailt7K0rz9NqkF/j0fky3k2r6x7r1D8Bvo7jHzRcdsU/+GRhG1 Vz/KFjHCJymxDqKd8Wznhpr3PNgVJL8Z -----END CERTIFICATE-----Generated at Sun May 11 18:57:02 2025 by rpki-client