$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: rv8lWtwlVt5Fg7gL2NwV3GPz9qn/NoFS8RZkMqad5CQ= Subject key identifier: A1:42:D1:54:9C:E2:13:3F:CB:EB:2B:26:FF:A3:80:D2:73:CC:46:7C Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: C4 Signing time: Thu 15 May 2025 05:06:17 +0000 Manifest this update: Thu 15 May 2025 05:06:16 +0000 Manifest next update: Thu 22 May 2025 05:06:16 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: aTp+9umrPyfWTnbQPg6i8Gy+OhI9QJxgXwkegnzCc2s=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: LMERtpQp+DLty4Wivq0OeREYwOOHlqWpDYnqAURaibM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: May 15 05:06:16 2025 GMT Not After : May 22 05:06:16 2025 GMT Subject: CN=68257649-87d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:f6:28:e2:41:b7:e4:4a:03:e1:b9:af:7e: 56:07:cb:10:76:b9:2a:c7:03:55:98:f2:70:1a:da: 31:06:32:af:b2:87:8b:e1:25:db:6b:07:d4:a9:a5: f8:0e:38:8d:5c:1c:a9:47:de:5f:a2:04:fc:6f:8d: 76:06:a7:1f:b6:94:20:4a:51:6d:40:68:dc:3f:5d: 3e:5e:ed:40:8e:f4:cc:63:4f:e4:95:9a:28:3c:ab: 0c:61:f1:f1:50:12:6f:6b:32:fa:cf:71:0e:ae:51: 43:0f:19:b9:57:f9:86:4e:80:d1:56:75:2f:12:f7: f6:1a:eb:74:c1:9b:98:3e:4d:6d:b1:87:b9:78:9b: b7:3e:b9:57:52:69:5a:16:ef:7d:1e:a0:f0:13:eb: 30:6e:6d:af:33:0e:26:ea:19:d4:ae:7f:4d:c7:c6: c3:78:45:d7:bc:79:94:64:4c:f4:1c:f8:3a:e3:94: 3e:4b:99:f7:e1:bf:59:77:b6:9f:d5:cd:a7:11:c9: be:47:e4:87:d3:f8:70:c5:d1:da:47:c0:9f:1d:96: b5:c3:2d:7b:6f:a1:d5:4e:d0:e9:a8:d0:cb:7e:18: 52:fb:4a:b9:dd:26:52:57:3d:0f:e2:96:5f:a4:75: 48:48:f1:bd:6f:7d:9d:71:9d:77:47:5b:83:a6:10: 44:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:42:D1:54:9C:E2:13:3F:CB:EB:2B:26:FF:A3:80:D2:73:CC:46:7C X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:f7:8b:e7:c2:fb:56:99:58:a8:25:a9:83:40:bc:c4:91:cb: 34:ec:19:f5:ca:9c:ba:34:5a:eb:ad:e9:ab:e6:b8:d5:cf:fc: c1:71:5c:ae:d6:ea:3a:31:c1:b8:d2:5c:e3:e8:1a:c0:a1:a2: 17:10:cf:65:be:63:52:6c:bd:ae:66:91:83:bf:0e:ce:eb:93: 7b:46:a7:4d:b9:04:e1:7c:ff:2e:22:1f:83:70:dc:8a:e0:1d: 04:9e:ed:b5:68:c5:3c:ac:e3:98:fa:24:5f:77:da:b8:4c:b3: 6c:80:49:6a:74:69:64:f0:01:ba:89:33:d5:57:32:da:39:d5: 22:47:cb:ee:e3:f2:cd:a8:77:4c:33:9c:f9:cb:37:eb:0f:85: 35:ee:b7:45:24:5f:d3:2b:c6:1f:79:fa:8f:ff:60:14:59:35: 1e:4c:e9:2c:37:03:0e:68:38:6d:95:9f:bd:9c:4a:6c:e9:66: 1b:e2:b3:f6:67:4f:d5:53:64:83:f8:c6:60:cb:d4:f4:ec:e0: 29:46:52:c2:67:29:49:ec:eb:28:8a:08:17:67:7c:f1:16:70: 3e:59:71:40:f3:9f:8a:6e:87:b7:22:6d:70:6b:bd:2f:5f:af: 63:62:88:de:38:67:27:cb:ff:6e:3f:eb:7f:2b:be:24:5e:a4: a4:ea:90:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUwNTE1MDUwNjE2WhcNMjUwNTIyMDUwNjE2WjAYMRYwFAYD VQQDEw02ODI1NzY0OS04N2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZr2KOJBt+RKA+G5r35WB8sQdrkqxwNVmPJwGtoxBjKvsoeL4SXbawfUqaX4 DjiNXBypR95fogT8b412BqcftpQgSlFtQGjcP10+Xu1AjvTMY0/klZooPKsMYfHx UBJvazL6z3EOrlFDDxm5V/mGToDRVnUvEvf2Gut0wZuYPk1tsYe5eJu3PrlXUmla Fu99HqDwE+swbm2vMw4m6hnUrn9Nx8bDeEXXvHmUZEz0HPg645Q+S5n34b9Zd7af 1c2nEcm+R+SH0/hwxdHaR8CfHZa1wy17b6HVTtDpqNDLfhhS+0q53SZSVz0P4pZf pHVISPG9b32dcZ13R1uDphBELQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFC0VSc 4hM/y+srJv+jgNJzzEZ8MB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl94vnwvtWmVioJamDQLzEkcs07Bn1ypy6NFrrremr5rjVz/zBcVyu 1uo6McG40lzj6BrAoaIXEM9lvmNSbL2uZpGDvw7O65N7RqdNuQThfP8uIh+DcNyK 4B0Enu21aMU8rOOY+iRfd9q4TLNsgElqdGlk8AG6iTPVVzLaOdUiR8vu4/LNqHdM M5z5yzfrD4U17rdFJF/TK8YfefqP/2AUWTUeTOksNwMOaDhtlZ+9nEps6WYb4rP2 Z0/VU2SD+MZgy9T07OApRlLCZylJ7OsoiggXZ3zxFnA+WXFA85+Kboe3Im1wa70v X69jYojeOGcny/9uP+t/K74kXqSk6pAe -----END CERTIFICATE-----Generated at Fri May 16 12:07:31 2025 by rpki-client