$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: 70LRG+jd0HTWIEkOKAlesjmKxwM19veKpyPVwg9Fc84= Subject key identifier: 8C:C1:0F:D1:72:DB:AD:27:E0:2C:51:2B:D2:AF:B7:34:B9:C5:FC:8D Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0130 Signing time: Thu 15 May 2025 03:54:15 +0000 Manifest this update: Thu 15 May 2025 03:54:15 +0000 Manifest next update: Thu 22 May 2025 03:54:15 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: YSVWQik7saXyEGJs9IGgJh1TFKYIcWN5NUhzYPD/xBE=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: May 15 03:54:15 2025 GMT Not After : May 22 03:54:15 2025 GMT Subject: CN=68256567-483e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:83:8c:76:5b:7e:08:79:19:95:57:d1:96: 2a:0a:85:8f:64:82:e4:8c:de:7d:81:ce:d2:a2:7d: 7a:8c:e3:1d:d5:d3:d8:5b:bd:00:de:89:cd:da:5d: c5:37:ca:b5:82:b9:9b:f2:63:3a:bc:fe:7c:b5:c4: 93:15:b4:c8:38:44:47:cf:19:fc:1a:74:2b:b3:fb: 8a:54:82:55:fc:29:19:ea:31:55:2e:d4:61:92:39: 64:cb:c4:5e:37:d5:fd:30:2a:c3:db:2e:b3:ec:15: d2:3f:fe:df:34:49:e9:72:6c:a4:38:04:67:3d:a0: f5:8d:f1:12:77:70:72:4d:b0:8b:1b:92:6e:e4:79: 38:1b:60:ea:61:76:da:c0:06:b0:79:95:71:e0:76: fc:76:f6:e8:41:0e:07:b4:fa:20:02:87:c4:94:2a: 24:16:7e:b1:c7:1b:6d:fe:c6:42:b3:48:b4:87:f0: e0:b4:c3:c9:a4:ae:f7:48:35:71:65:0f:ae:99:a3: f5:20:ac:8a:63:5b:d1:b2:12:60:bc:bb:ad:79:96: 9e:69:c0:29:eb:93:dd:5a:eb:89:05:30:78:9e:42: 04:09:0a:45:2f:f4:28:4c:18:23:9f:cc:35:00:a5: ee:4a:39:08:0d:14:8f:35:76:1d:c8:19:8c:7b:f9: 09:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C1:0F:D1:72:DB:AD:27:E0:2C:51:2B:D2:AF:B7:34:B9:C5:FC:8D X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c9:25:04:16:83:40:9f:e1:5f:ed:65:9f:d4:59:d2:07:b3: 94:24:94:01:91:07:5d:b3:4f:5f:a4:8b:6c:92:ae:e0:18:79: d6:b1:2b:83:fe:8d:c7:4c:df:12:f9:0f:84:36:60:83:83:73: ec:9a:79:58:a4:dd:15:74:92:da:30:aa:91:e5:19:9c:57:50: 27:ef:12:c0:1e:20:fc:b8:e1:a1:45:17:24:a1:7d:70:3e:38: 63:e7:72:ca:c3:ec:37:f2:e1:9b:5c:4b:90:52:e0:69:3e:d3: 57:fd:cf:60:82:fe:6f:67:5e:69:29:b1:b2:ab:5c:6a:77:37: 38:87:3c:1b:bd:57:b1:1c:90:03:27:0f:4e:4e:b0:9d:02:29: f0:a4:58:a9:d1:d1:e1:cb:41:b5:e3:c1:7a:ba:5e:66:b7:33: 70:a2:61:8f:b1:3c:27:21:03:4b:39:d6:6e:1c:2f:73:77:18: c7:d3:66:8d:c6:e0:37:3b:ae:d6:2b:4c:06:46:57:47:83:a5: cd:74:fd:95:ac:c2:f7:0e:90:6d:75:b1:16:c6:f5:af:16:2f: e7:70:7a:6f:f4:62:ba:de:18:09:f5:aa:3b:10:1f:3a:7a:81: d6:1c:2c:20:66:42:fc:8d:37:75:98:ae:27:59:77:be:d7:03: f7:dd:79:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwNTE1MDM1NDE1WhcNMjUwNTIyMDM1NDE1WjAYMRYwFAYD VQQDEw02ODI1NjU2Ny00ODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtu2DjHZbfgh5GZVX0ZYqCoWPZILkjN59gc7Son16jOMd1dPYW70A3onN2l3F N8q1grmb8mM6vP58tcSTFbTIOERHzxn8GnQrs/uKVIJV/CkZ6jFVLtRhkjlky8Re N9X9MCrD2y6z7BXSP/7fNEnpcmykOARnPaD1jfESd3ByTbCLG5Ju5Hk4G2DqYXba wAaweZVx4Hb8dvboQQ4HtPogAofElCokFn6xxxtt/sZCs0i0h/DgtMPJpK73SDVx ZQ+umaP1IKyKY1vRshJgvLuteZaeacAp65PdWuuJBTB4nkIECQpFL/QoTBgjn8w1 AKXuSjkIDRSPNXYdyBmMe/kJKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzBD9Fy 260n4CxRK9KvtzS5xfyNMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPySUEFoNAn+Ff7WWf1FnSB7OUJJQBkQdds09fpItskq7gGHnWsSuD /o3HTN8S+Q+ENmCDg3PsmnlYpN0VdJLaMKqR5RmcV1An7xLAHiD8uOGhRRckoX1w Pjhj53LKw+w38uGbXEuQUuBpPtNX/c9ggv5vZ15pKbGyq1xqdzc4hzwbvVexHJAD Jw9OTrCdAinwpFip0dHhy0G148F6ul5mtzNwomGPsTwnIQNLOdZuHC9zdxjH02aN xuA3O67WK0wGRldHg6XNdP2VrML3DpBtdbEWxvWvFi/ncHpv9GK63hgJ9ao7EB86 eoHWHCwgZkL8jTd1mK4nWXe+1wP33Xn7 -----END CERTIFICATE-----Generated at Fri May 16 11:50:23 2025 by rpki-client