$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: LlR2ly2otneDZol5HWnPcJUFxClANwI2wF7E/MWz3Ok= Subject key identifier: 7F:D9:10:46:7F:F6:67:9E:57:09:B3:AB:E4:06:6C:95:21:60:18:82 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 09A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0985 Signing time: Sat 10 May 2025 19:52:31 +0000 Manifest this update: Sat 10 May 2025 19:52:30 +0000 Manifest next update: Sat 17 May 2025 19:52:30 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: PzTVvTzP8yu0aHjW0UCeGUlNKicsS01wTDWbdOF/TwA=) 2: 6569BF24997F11ECA6C7F481C4F9AE02.roa (hash: ihZ46zaKKgYFbsQZJpUcfwGNcLq0WYivOzEHAfXlcfs=) 3: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: 2HuzCk6S18IuIuNY88Jnmogc9ez8HXD2AaJ8nr4dsM0=) 4: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2471 (0x9a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: May 10 19:52:30 2025 GMT Not After : May 17 19:52:30 2025 GMT Subject: CN=681fae7f-d2cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:51:f2:dd:87:c5:e6:10:4a:7f:20:6f:db: 1d:5c:ab:30:26:27:34:af:a9:9b:23:a5:83:73:12: 78:dc:23:1d:81:d6:e8:a5:e4:b1:3d:18:64:ca:6d: d4:5e:fd:aa:b7:03:ef:04:43:e4:cd:f5:08:e1:8e: d6:83:28:07:9f:28:5a:39:d0:26:6b:41:3c:6f:e6: 11:e7:8d:de:98:38:3f:e8:68:19:c5:65:1b:28:58: 64:38:43:f8:47:57:f8:cf:65:56:74:a3:7b:63:18: b5:d6:b8:68:77:79:b7:3b:9b:65:51:12:c4:8d:f7: 8b:6e:8a:b2:33:d4:48:30:8f:53:d1:5c:8b:c5:99: b4:52:3d:ca:83:b2:e2:2f:a1:57:5d:4d:3b:b9:cb: e7:e5:65:aa:72:46:f3:34:71:18:55:b8:00:3a:f2: 29:42:66:96:ed:ad:f6:9d:96:61:13:77:66:56:15: 6a:f5:76:61:0b:cc:9c:c2:0d:f7:c8:d1:17:a1:e0: 6d:b1:18:93:08:57:c2:95:0a:b4:04:61:0c:6c:90: f3:3b:2a:dd:88:70:70:55:41:5f:6c:f3:c4:93:e5: 0e:91:2e:ff:64:56:a9:24:e1:8d:0d:84:e3:83:1f: 9b:d6:b7:81:39:29:ad:ef:be:40:f3:d5:32:80:12: 67:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D9:10:46:7F:F6:67:9E:57:09:B3:AB:E4:06:6C:95:21:60:18:82 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:2d:51:54:d8:fa:19:14:62:3e:72:54:9e:33:cd:90:51:3f: 45:e4:68:59:c3:72:95:a2:80:f8:96:ee:40:f5:3e:4c:be:89: 01:3c:15:09:7f:56:a0:d5:bf:8b:36:d4:b3:7f:ff:25:14:3d: cd:53:20:cd:38:bf:12:39:06:8c:bd:9a:bc:0c:75:23:1d:36: 46:f2:2d:e6:58:c0:aa:e1:2d:3e:70:6a:76:e0:7e:2d:24:ae: 17:dc:d3:9f:80:90:4e:04:4a:e8:70:06:6b:6b:9f:bb:ad:38: 46:5a:44:4d:c5:9f:66:f7:a3:47:10:01:db:0b:83:fe:59:15: 10:7e:af:2d:5a:0d:1a:1a:75:38:4d:7f:1d:ac:bd:96:ee:02: 13:30:12:24:c9:d7:da:40:aa:fc:a0:e2:2c:1b:55:84:29:38: de:56:04:ad:df:e7:63:9c:69:ae:bb:01:40:9e:78:20:11:14: 7e:a7:88:2f:76:1b:49:91:d0:72:83:c0:0c:ea:c8:a0:f5:44: fb:89:0a:79:37:48:16:b8:95:65:c0:5f:6e:2c:45:a9:8b:5d: 14:6f:02:53:52:39:61:6d:26:a5:2e:4a:88:b4:c7:d5:26:40: 96:37:39:a8:37:51:ed:71:c8:7a:27:b2:ed:71:ca:6f:d8:50: a5:19:d8:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUwNTEwMTk1MjMwWhcNMjUwNTE3MTk1MjMwWjAYMRYwFAYD VQQDEw02ODFmYWU3Zi1kMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5pR8t2HxeYQSn8gb9sdXKswJic0r6mbI6WDcxJ43CMdgdbopeSxPRhkym3U Xv2qtwPvBEPkzfUI4Y7WgygHnyhaOdAma0E8b+YR543emDg/6GgZxWUbKFhkOEP4 R1f4z2VWdKN7Yxi11rhod3m3O5tlURLEjfeLboqyM9RIMI9T0VyLxZm0Uj3Kg7Li L6FXXU07ucvn5WWqckbzNHEYVbgAOvIpQmaW7a32nZZhE3dmVhVq9XZhC8ycwg33 yNEXoeBtsRiTCFfClQq0BGEMbJDzOyrdiHBwVUFfbPPEk+UOkS7/ZFapJOGNDYTj gx+b1reBOSmt775A89UygBJnCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/ZEEZ/ 9meeVwmzq+QGbJUhYBiCMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvLVFU2PoZFGI+clSeM82QUT9F5GhZw3KVooD4lu5A9T5MvokBPBUJ f1ag1b+LNtSzf/8lFD3NUyDNOL8SOQaMvZq8DHUjHTZG8i3mWMCq4S0+cGp24H4t JK4X3NOfgJBOBErocAZra5+7rThGWkRNxZ9m96NHEAHbC4P+WRUQfq8tWg0aGnU4 TX8drL2W7gITMBIkydfaQKr8oOIsG1WEKTjeVgSt3+djnGmuuwFAnnggERR+p4gv dhtJkdByg8AM6sig9UT7iQp5N0gWuJVlwF9uLEWpi10UbwJTUjlhbSalLkqItMfV JkCWNzmoN1Htcch6J7Ltccpv2FClGdgj -----END CERTIFICATE-----Generated at Mon May 12 12:33:02 2025 by rpki-client