$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json) Hash identifier: TwRSpiCa+rmu989ObsqMCAGT41nq8KnTmp501q6s+M4= Subject key identifier: 5F:D0:8E:4A:AF:41:6D:4B:D8:E2:92:59:34:08:6A:4D:60:2E:D2:B9 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft Manifest number: 0176 Signing time: Thu 15 May 2025 03:12:42 +0000 Manifest this update: Thu 15 May 2025 03:12:42 +0000 Manifest next update: Thu 22 May 2025 03:12:42 +0000 Files and hashes: 1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: MYD3YfGcOlvHB8XighzeFME/8x0H3S2+jVb3Ihg+IzQ=) 2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: May 15 03:12:42 2025 GMT Not After : May 22 03:12:42 2025 GMT Subject: CN=68255baa-0559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:9d:4a:c3:77:51:3b:9a:26:dc:d5:70:e2: 30:99:71:a0:82:85:5f:ad:11:df:d2:c6:97:02:a8: b2:ea:77:5d:6a:cb:56:81:92:d8:15:cc:5a:3c:de: b5:63:9b:40:b8:a4:49:e2:0f:c6:d9:b7:db:1e:5c: af:37:73:8d:28:b3:8c:e8:e9:bd:1f:b1:00:aa:b3: 59:ab:22:42:df:fd:d4:73:6a:80:d6:58:47:3d:7d: e7:f5:d8:e2:02:11:8d:17:c4:b2:40:95:f6:4e:ac: 52:b5:0b:83:ae:75:b4:4e:61:ad:5b:01:c6:b1:38: 6a:89:48:fa:8e:3e:d9:0e:46:16:42:10:8a:4f:10: 2b:52:53:e0:9e:a6:58:b4:86:18:6c:4e:e9:be:ad: fd:f5:10:aa:b9:86:05:f8:6f:dd:a4:83:95:d6:c9: 5a:2e:74:67:0e:d5:8e:a1:42:6d:47:2c:07:e2:d1: 7e:4b:51:5d:4a:49:43:9e:c1:2e:2f:4c:5c:1d:e3: 17:18:86:db:d7:c9:81:49:68:57:9b:9d:8b:00:4a: e7:f8:56:e5:6c:53:9e:46:eb:58:71:72:f9:83:ca: 28:f8:78:d1:e4:ff:8d:c3:26:1e:dd:af:c0:a9:af: 8e:58:ca:67:04:6a:46:af:5b:2e:d1:e1:5b:08:c9: 54:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D0:8E:4A:AF:41:6D:4B:D8:E2:92:59:34:08:6A:4D:60:2E:D2:B9 X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:89:db:1a:4b:7b:e7:86:e0:f6:c9:9c:f1:6f:0c:33:da:89: ec:40:53:02:25:1f:1f:b6:90:ec:e0:0b:67:77:36:7e:48:a8: bd:bc:56:f2:5c:23:5d:ee:3e:e4:53:f7:3f:d3:fe:fa:c0:72: 85:3b:33:6f:e8:b1:08:53:9a:86:7c:07:c9:62:08:a7:64:f2: c9:d4:e5:d1:78:aa:20:4e:5b:67:b4:99:f9:d5:2c:04:05:e0: 03:f1:e0:6a:19:9a:88:6c:67:45:88:1a:c3:ca:55:45:14:6e: 91:18:31:da:c7:d0:2c:d4:75:ad:6f:41:de:5f:43:24:c4:5b: a5:54:2a:dc:1e:f5:07:2c:f0:7d:ab:f3:82:22:fd:50:0c:e6: dd:76:2f:27:d5:99:80:ee:a2:3e:76:06:15:bc:f1:b1:86:d2: 7d:6a:d7:0a:f2:06:2b:b4:bb:74:81:1e:54:06:de:20:4d:53: f4:d3:68:c9:dd:87:7d:74:3e:51:d4:50:20:64:24:ba:ea:b5: 33:db:37:0f:d3:61:bf:a9:db:ba:e5:f8:b5:0f:1c:7d:70:20: 9c:74:a1:72:7f:69:67:5f:70:64:5f:75:c1:8e:da:ec:4d:5d: 14:43:81:7a:f1:80:72:9d:97:e7:26:e6:9e:15:23:1e:41:a3: 6b:55:7f:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUwNTE1MDMxMjQyWhcNMjUwNTIyMDMxMjQyWjAYMRYwFAYD VQQDEw02ODI1NWJhYS0wNTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsOdSsN3UTuaJtzVcOIwmXGggoVfrRHf0saXAqiy6nddastWgZLYFcxaPN61 Y5tAuKRJ4g/G2bfbHlyvN3ONKLOM6Om9H7EAqrNZqyJC3/3Uc2qA1lhHPX3n9dji AhGNF8SyQJX2TqxStQuDrnW0TmGtWwHGsThqiUj6jj7ZDkYWQhCKTxArUlPgnqZY tIYYbE7pvq399RCquYYF+G/dpIOV1slaLnRnDtWOoUJtRywH4tF+S1FdSklDnsEu L0xcHeMXGIbb18mBSWhXm52LAErn+FblbFOeRutYcXL5g8oo+HjR5P+NwyYe3a/A qa+OWMpnBGpGr1su0eFbCMlUXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/Qjkqv QW1L2OKSWTQIak1gLtK5MB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgidsaS3vnhuD2yZzxbwwz2onsQFMCJR8ftpDs4AtndzZ+SKi9vFby XCNd7j7kU/c/0/76wHKFOzNv6LEIU5qGfAfJYginZPLJ1OXReKogTltntJn51SwE BeAD8eBqGZqIbGdFiBrDylVFFG6RGDHax9As1HWtb0HeX0MkxFulVCrcHvUHLPB9 q/OCIv1QDObddi8n1ZmA7qI+dgYVvPGxhtJ9atcK8gYrtLt0gR5UBt4gTVP002jJ 3Yd9dD5R1FAgZCS66rUz2zcP02G/qdu65fi1Dxx9cCCcdKFyf2lnX3BkX3XBjtrs TV0UQ4F68YBynZfnJuaeFSMeQaNrVX9H -----END CERTIFICATE-----Generated at Sat May 17 01:27:38 2025 by rpki-client