$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: xKbBwZm9fkXLPSCY6mRL9XQe18gBvkUSSYi/DYiqf68= Subject key identifier: 63:47:05:EA:E1:2B:73:24:4B:8B:CA:C1:7F:40:99:2A:3A:A5:0D:B7 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 02E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 02E1 Signing time: Tue 13 May 2025 01:28:54 +0000 Manifest this update: Tue 13 May 2025 01:28:53 +0000 Manifest next update: Tue 20 May 2025 01:28:53 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: p3fiyQuG/Ck4xoU3geNdJShCvPQA7QEFYeCs2AMYDRY=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 741 (0x2e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: May 13 01:28:53 2025 GMT Not After : May 20 01:28:53 2025 GMT Subject: CN=6822a055-6969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:77:dd:38:4c:a1:2a:65:cf:d3:08:fb:1c:2a: 0b:41:97:fe:70:c2:f8:82:8c:ef:35:63:7c:b1:98: 57:35:7d:8c:46:64:14:7f:e8:ab:20:b4:c7:9a:05: ed:32:22:e2:dc:bd:35:91:cb:3b:a7:80:9a:a2:08: ad:09:e1:dc:87:31:3b:6c:67:3b:f3:8d:de:cb:50: 21:6b:7b:c3:a8:00:cb:8c:30:2f:16:b2:cd:5b:e5: 73:0f:50:35:c0:93:de:d6:b5:a2:cd:79:c9:83:da: d9:4f:2d:0f:f6:e1:7d:25:fd:5a:aa:60:a8:d2:71: 36:d5:70:ae:0c:f2:0b:5a:40:2c:0d:10:36:26:be: 27:79:73:ae:a0:19:3d:30:5d:df:be:08:7b:31:ca: 9a:0c:71:26:13:dc:4d:89:a0:b0:54:ee:3a:7f:96: a0:b7:aa:35:11:49:16:6b:47:96:17:d6:a5:d1:e5: 76:1b:94:de:ef:17:a6:25:d3:62:51:57:2e:78:e2: f3:cc:c2:97:2e:41:13:06:1b:8f:ea:93:9c:3f:50: 71:47:2a:88:5e:e3:3e:77:a3:03:6c:b8:d6:6b:c2: 95:f4:a5:08:88:14:94:71:29:96:c3:08:fa:a2:eb: 2f:3b:c8:94:6c:30:a7:7b:fa:9b:d0:b7:bd:49:b1: 4e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:47:05:EA:E1:2B:73:24:4B:8B:CA:C1:7F:40:99:2A:3A:A5:0D:B7 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:9f:18:6a:94:18:fe:ea:1c:45:39:91:53:9f:29:b8:b9:83: fa:da:f5:d4:0f:2b:d9:71:b6:67:e4:1a:7a:8a:8c:41:7c:e9: 24:82:6b:01:f5:fb:86:a5:0b:17:67:0f:47:ed:ab:36:7f:6e: d4:66:6a:6c:c8:c3:2f:fc:08:e5:e9:79:2d:9a:4c:e5:49:85: 45:c7:4b:85:77:21:15:50:30:40:79:17:90:89:27:ae:76:32: 6f:48:a3:b2:ae:0e:78:03:a3:87:25:62:c0:b4:af:04:dc:d1: bb:e9:2a:77:42:47:bd:ef:4e:f4:56:6c:38:02:a6:3a:fc:5e: ba:26:63:76:17:db:60:e6:51:9f:8b:ab:89:9a:6d:df:15:39: 67:ee:35:89:34:a5:ea:e2:c6:1d:a7:a8:0b:8d:3a:83:e8:3b: a8:5a:a2:3a:cc:96:40:d1:91:2d:d7:58:17:55:c0:a4:80:a9: 7d:21:32:9f:5a:8f:80:13:57:07:bf:bd:27:7f:38:ed:e8:9b: f4:52:7c:98:91:5a:1c:64:41:3d:80:23:0d:84:51:42:fa:90: 2d:00:a5:08:8a:26:db:8d:93:90:b4:63:cd:8f:ba:bc:bd:e6: f5:ec:c5:ba:93:a7:87:db:8c:62:ae:51:7e:37:67:a1:52:36: 09:16:d7:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwNTEzMDEyODUzWhcNMjUwNTIwMDEyODUzWjAYMRYwFAYD VQQDEw02ODIyYTA1NS02OTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3fdOEyhKmXP0wj7HCoLQZf+cML4gozvNWN8sZhXNX2MRmQUf+irILTHmgXt MiLi3L01kcs7p4CaogitCeHchzE7bGc7843ey1Aha3vDqADLjDAvFrLNW+VzD1A1 wJPe1rWizXnJg9rZTy0P9uF9Jf1aqmCo0nE21XCuDPILWkAsDRA2Jr4neXOuoBk9 MF3fvgh7McqaDHEmE9xNiaCwVO46f5agt6o1EUkWa0eWF9al0eV2G5Te7xemJdNi UVcueOLzzMKXLkETBhuP6pOcP1BxRyqIXuM+d6MDbLjWa8KV9KUIiBSUcSmWwwj6 ousvO8iUbDCne/qb0Le9SbFOewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNHBerh K3MkS4vKwX9AmSo6pQ23MB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBonxhqlBj+6hxFOZFTnym4uYP62vXUDyvZcbZn5Bp6ioxBfOkkgmsB 9fuGpQsXZw9H7as2f27UZmpsyMMv/Ajl6XktmkzlSYVFx0uFdyEVUDBAeReQiSeu djJvSKOyrg54A6OHJWLAtK8E3NG76Sp3Qke97070Vmw4AqY6/F66JmN2F9tg5lGf i6uJmm3fFTln7jWJNKXq4sYdp6gLjTqD6DuoWqI6zJZA0ZEt11gXVcCkgKl9ITKf Wo+AE1cHv70nfzjt6Jv0UnyYkVocZEE9gCMNhFFC+pAtAKUIiibbjZOQtGPNj7q8 veb17MW6k6eH24xirlF+N2ehUjYJFtfY -----END CERTIFICATE-----Generated at Wed May 14 01:22:34 2025 by rpki-client