$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: 4UB0vAw3usiIcHcCo9tOuSxKF4etsnRpoc2e/s97rn4= Subject key identifier: 14:13:C8:13:82:69:9B:C7:A3:34:3E:94:D6:05:37:56:F3:78:19:75 Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: 0175 Signing time: Wed 07 May 2025 03:02:36 +0000 Manifest this update: Wed 07 May 2025 03:02:36 +0000 Manifest next update: Wed 14 May 2025 03:02:36 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: gbjHW2u+ttYTE4+4zNCeWXsSU5V977ESIHdZQfWcLJE=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: 6NUoQsi6MufbTG0wg5lLW6EPmg3seRvoOTXJysh5OoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C, serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: May 7 03:02:36 2025 GMT Not After : May 14 03:02:36 2025 GMT Subject: CN=681acd4c-e6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:65:1c:6f:e8:87:b7:cb:b6:e4:70:1d:03:ea: 2f:b9:23:58:86:e9:3b:7e:ff:57:19:7c:23:27:b5: 70:d7:f4:c7:ac:0b:87:0c:93:5c:71:56:7a:90:0c: fa:59:00:11:76:2e:81:ed:8f:ed:a9:44:ff:02:72: c6:78:90:67:63:26:ad:52:d4:9d:ad:9f:8a:9d:d2: 8f:9e:89:e3:e9:52:7b:4f:da:f4:33:2c:a1:93:ae: a7:54:a4:50:d4:59:bf:13:f0:c1:01:86:f3:ea:78: 6b:1a:23:48:8d:16:58:a7:06:4a:24:b6:7d:56:80: 12:f5:bb:32:22:ad:e7:14:f4:de:df:5b:74:8b:8c: 02:d9:16:8d:a6:7d:cc:7e:88:1b:15:cc:df:d8:3f: e0:b8:ab:61:84:26:af:c5:6d:b5:60:08:4f:13:1f: 1d:6b:d8:40:b7:85:9e:df:fc:e3:30:61:37:a2:aa: f5:4f:8e:12:db:c3:49:8a:aa:dd:81:07:e9:97:ee: 33:fa:15:69:da:fb:07:d2:00:e3:5d:d1:8b:ba:69: 5f:df:8c:1b:a7:f4:32:98:71:40:80:e4:29:85:90: b5:0f:bf:d7:73:f5:f5:1d:89:3e:ea:90:3b:f0:17: 83:63:65:18:20:be:ff:7a:12:10:94:f4:39:8c:d1: df:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:13:C8:13:82:69:9B:C7:A3:34:3E:94:D6:05:37:56:F3:78:19:75 X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:58:6a:42:7b:22:c4:30:72:c1:8f:7b:5b:af:71:4e:dc:11: 4f:6d:3f:91:49:7e:f0:54:a9:60:d5:0c:ca:a9:a1:f7:7b:c4: a4:d2:23:bd:26:28:ea:35:cb:0d:82:5d:5f:4c:e3:5a:3c:b5: 34:aa:d1:03:65:95:d9:b4:4d:1f:2e:91:ad:fb:40:58:eb:1c: 67:e9:fd:e1:10:3d:99:25:dc:fe:11:d2:65:a2:df:b9:22:c9: b6:58:cd:72:b8:08:37:7f:01:d5:e8:02:5a:08:e1:c7:b6:17: 2d:a8:1d:71:41:57:7d:e2:bb:f7:c7:cb:7e:57:b9:05:0e:71: 51:02:fc:89:fb:a3:7e:e1:da:7e:42:c0:db:d4:8a:30:90:ba: 04:3d:79:7a:e4:07:04:a0:68:47:ed:3b:77:1a:9e:f5:39:ec: 38:62:0d:6e:db:79:f2:39:c9:a4:f8:69:8f:a5:05:19:42:24: 47:eb:07:aa:93:9c:5f:01:ab:9e:c9:82:7a:26:58:d9:33:07: 24:ec:ef:bb:ff:3b:8a:a9:01:84:d1:b9:1f:f2:f1:54:2c:2a: a0:ac:e5:f8:f7:78:26:2d:64:d9:03:5c:cf:b2:3f:75:5d:74: a9:b7:47:0c:f8:00:6c:fc:25:e0:ce:ae:29:88:44:0a:eb:c2: 50:e1:6d:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjUwNTA3MDMwMjM2WhcNMjUwNTE0MDMwMjM2WjAYMRYwFAYD VQQDEw02ODFhY2Q0Yy1lNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9mUcb+iHt8u25HAdA+ovuSNYhuk7fv9XGXwjJ7Vw1/THrAuHDJNccVZ6kAz6 WQARdi6B7Y/tqUT/AnLGeJBnYyatUtSdrZ+KndKPnonj6VJ7T9r0Myyhk66nVKRQ 1Fm/E/DBAYbz6nhrGiNIjRZYpwZKJLZ9VoAS9bsyIq3nFPTe31t0i4wC2RaNpn3M fogbFczf2D/guKthhCavxW21YAhPEx8da9hAt4We3/zjMGE3oqr1T44S28NJiqrd gQfpl+4z+hVp2vsH0gDjXdGLumlf34wbp/QymHFAgOQphZC1D7/Xc/X1HYk+6pA7 8BeDY2UYIL7/ehIQlPQ5jNHfYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQTyBOC aZvHozQ+lNYFN1bzeBl1MB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeWGpCeyLEMHLBj3tbr3FO3BFPbT+RSX7wVKlg1QzKqaH3e8Sk0iO9 JijqNcsNgl1fTONaPLU0qtEDZZXZtE0fLpGt+0BY6xxn6f3hED2ZJdz+EdJlot+5 Ism2WM1yuAg3fwHV6AJaCOHHthctqB1xQVd94rv3x8t+V7kFDnFRAvyJ+6N+4dp+ QsDb1IowkLoEPXl65AcEoGhH7Tt3Gp71Oew4Yg1u23nyOcmk+GmPpQUZQiRH6weq k5xfAaueyYJ6JljZMwck7O+7/zuKqQGE0bkf8vFULCqgrOX493gmLWTZA1zPsj91 XXSpt0cM+ABs/CXgzq4piEQK68JQ4W25 -----END CERTIFICATE-----Generated at Wed May 7 23:47:50 2025 by rpki-client