$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: 22Hol77BYoAlsXmVyevYX1X/Mhyn6pXexaAsnK/xceo= Subject key identifier: 3E:65:E2:B7:DA:51:16:F2:23:17:5B:EF:F9:3B:01:AA:F1:AA:8F:D0 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 07DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 07A6 Signing time: Wed 14 May 2025 21:31:58 +0000 Manifest this update: Wed 14 May 2025 21:31:57 +0000 Manifest next update: Wed 21 May 2025 21:31:57 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: mdefRYJUWQhd6fcR2PY4+i3EezJ8lu/xhxyps9lSYfw=) 2: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: Z0HHcyxz7rmGLBYwcIWDSL9D03AdZbtYiS469aOTikg=) 3: B512A570109211ECA693D74EC4F9AE02.roa (hash: AOyufc93Chw9bEWHvFa0LDI+LOdW3FqSZFo43ILQvd0=) 4: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: ZpHbYhB9ExSCJ+11c8ap/OdAIsKxszdOCjimKJQDTek=) 5: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: ftDRlCPQKF+Ib5B7VJZrq540hqlVUdTm8Q2C4Ih+cM8=) 6: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: HxA8u7nmZWUr6BPYIZAwMw8J3pQQtwxfZZvWeTi7tWI=) 7: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: YABaqUWE/JPdcjinbFv0PWoHHYymCq6aO+ylU5Xzjo0=) 8: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: XhE6x9E/aZ957HcPZHgLlj7Fv56GEXE7hy1IWMNgX6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2012 (0x7dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: May 14 21:31:57 2025 GMT Not After : May 21 21:31:57 2025 GMT Subject: CN=68250bce-58eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:18:9d:07:9b:aa:b7:30:77:ca:1b:f6:52: ae:32:90:28:41:2a:26:4d:6e:1e:27:67:17:af:da: b7:33:e2:80:be:e2:94:0d:df:de:0d:bb:40:b3:09: a0:84:fe:09:b4:79:31:fe:a4:e7:92:4c:37:fa:78: d6:3a:91:68:4d:cf:1e:ee:48:f1:6c:04:73:9b:ea: 85:67:c7:28:99:ec:1e:05:20:65:eb:8b:03:61:ce: 53:d0:05:b1:6f:e2:4a:4a:1b:6a:2a:d2:3b:f4:fc: c6:71:d6:6d:d8:c8:61:f8:af:cb:d8:00:fb:d7:93: 63:ec:e9:a3:92:9e:35:30:13:b1:2a:10:57:39:90: af:b2:a3:13:27:e8:cf:7e:a5:08:2f:e3:95:36:44: a1:c9:af:ca:d8:59:79:d0:c7:fa:db:c3:a5:d0:8c: a7:7a:91:6c:2d:f6:bf:b7:57:b2:2d:78:c1:66:98: a6:75:be:64:5a:1d:65:71:26:a9:90:10:f6:e3:ed: 5e:fa:5b:ae:76:75:e3:b6:c3:5a:12:b9:67:33:af: 72:b5:f6:43:cb:e6:ff:87:bc:94:a4:e6:1d:e7:1a: 5f:73:3b:a7:2b:c8:bc:96:fc:09:8f:c8:7a:b7:ce: d8:2c:ba:6b:b0:f8:f4:8b:8e:4c:b4:0a:ae:1b:03: 42:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:65:E2:B7:DA:51:16:F2:23:17:5B:EF:F9:3B:01:AA:F1:AA:8F:D0 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6d:72:a5:1d:22:9c:e4:0d:71:af:87:1a:4d:bb:bc:19:49: fd:f2:be:d2:ac:ef:d0:76:94:e6:11:a3:46:d0:fc:99:72:82: 26:b9:f5:2b:85:c8:03:5a:19:6f:90:95:b9:6d:9e:8b:5a:2b: 28:da:e8:99:f9:34:4a:da:35:6e:55:7c:2e:28:ee:2e:d9:46: 6d:89:6b:fd:54:43:75:03:8d:18:b0:2a:92:75:81:0d:ef:9c: fe:d6:30:42:f6:e6:1f:8e:3b:78:53:1b:81:7c:7d:5d:52:c1: 0b:67:f5:70:57:f3:8a:73:a6:65:06:06:82:ea:a6:dc:2d:cc: 18:49:35:c8:a9:1c:cb:ad:ca:e7:59:8a:ca:fb:b4:8b:4f:c2: e3:90:81:26:e4:30:55:b9:d1:01:c8:36:8d:46:2d:18:81:2b: 71:75:5f:e8:6b:cd:06:c1:5e:30:6e:1e:86:c2:b9:e7:bf:c7: eb:38:7d:da:45:37:98:d1:5d:32:90:ad:41:8e:61:8c:ed:0f: 9f:1f:b9:3e:54:2a:1c:f5:d0:46:06:6f:f0:cb:5b:0d:1d:80: 53:0d:fb:8a:46:07:22:de:06:28:43:bf:40:e5:35:26:68:72: 1c:86:0b:50:1b:4f:16:df:c7:3d:31:3c:50:e3:ee:c5:0c:91: 94:d7:72:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjUwNTE0MjEzMTU3WhcNMjUwNTIxMjEzMTU3WjAYMRYwFAYD VQQDEw02ODI1MGJjZS01OGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwU0YnQebqrcwd8ob9lKuMpAoQSomTW4eJ2cXr9q3M+KAvuKUDd/eDbtAswmg hP4JtHkx/qTnkkw3+njWOpFoTc8e7kjxbARzm+qFZ8comeweBSBl64sDYc5T0AWx b+JKShtqKtI79PzGcdZt2Mhh+K/L2AD715Nj7Omjkp41MBOxKhBXOZCvsqMTJ+jP fqUIL+OVNkShya/K2Fl50Mf628Ol0IynepFsLfa/t1eyLXjBZpimdb5kWh1lcSap kBD24+1e+luudnXjtsNaErlnM69ytfZDy+b/h7yUpOYd5xpfczunK8i8lvwJj8h6 t87YLLprsPj0i45MtAquGwNC0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5l4rfa URbyIxdb7/k7Aarxqo/QMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBybXKlHSKc5A1xr4caTbu8GUn98r7SrO/QdpTmEaNG0PyZcoImufUr hcgDWhlvkJW5bZ6LWiso2uiZ+TRK2jVuVXwuKO4u2UZtiWv9VEN1A40YsCqSdYEN 75z+1jBC9uYfjjt4UxuBfH1dUsELZ/VwV/OKc6ZlBgaC6qbcLcwYSTXIqRzLrcrn WYrK+7SLT8LjkIEm5DBVudEByDaNRi0YgStxdV/oa80GwV4wbh6Gwrnnv8frOH3a RTeY0V0ykK1BjmGM7Q+fH7k+VCoc9dBGBm/wy1sNHYBTDfuKRgci3gYoQ79A5TUm aHIchgtQG08W38c9MTxQ4+7FDJGU13Io -----END CERTIFICATE-----Generated at Thu May 15 17:59:11 2025 by rpki-client