$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: 64X9aJNnbrQHYLl8r+r8sm+28s/3HvHt/guTpCyE3lY= Subject key identifier: 92:C8:67:E3:BE:08:EE:21:C8:90:8F:3E:5E:30:84:D1:B9:58:85:59 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 08EF Signing time: Wed 14 May 2025 20:30:01 +0000 Manifest this update: Wed 14 May 2025 20:30:00 +0000 Manifest next update: Wed 21 May 2025 20:30:00 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: prs1JECmZC2gXSA6iJvXpnCSYLW1OTWQXu7+JtO4RgE=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: May 14 20:30:00 2025 GMT Not After : May 21 20:30:00 2025 GMT Subject: CN=6824fd48-7043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:48:64:0e:5c:33:23:cd:80:56:83:43:31: fc:c3:3f:00:63:d4:f2:28:db:28:20:05:31:27:7a: 52:63:de:da:60:e9:17:bc:11:46:9a:34:c0:fc:66: 3f:c6:58:6f:1c:95:b6:60:ec:9e:1f:f1:da:5c:93: 1c:bc:60:72:93:a9:62:ba:46:c4:e3:cb:e8:7a:8d: ac:6b:ff:cb:03:d2:2d:e9:e9:99:df:51:7a:46:25: 6f:41:8e:f1:f1:5f:ad:51:2f:78:03:99:53:df:21: 0f:44:38:c0:70:29:f6:0a:df:e7:7b:f3:cd:2d:48: 0f:63:02:be:e4:3a:92:1e:1b:45:40:55:ff:c1:8e: 31:45:30:35:8e:d4:06:87:50:0e:99:ec:ab:d8:b1: 3e:56:94:bf:e7:36:68:09:7f:62:e3:85:db:8c:5e: 92:25:17:39:fc:05:7a:94:52:d7:ea:8a:46:2c:ff: 73:60:80:08:bc:7a:99:42:0d:1b:51:16:b8:f2:82: 8b:d6:f7:94:e1:05:ea:06:d6:d9:50:79:71:f0:3a: 82:15:96:ed:70:23:8f:8b:05:d2:4f:65:02:38:29: a0:e0:2b:82:cc:c8:80:40:b5:bf:5a:52:9f:33:55: 0c:fc:f6:f1:19:0a:d7:4d:e2:0d:30:d3:3c:3f:7f: cd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C8:67:E3:BE:08:EE:21:C8:90:8F:3E:5E:30:84:D1:B9:58:85:59 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ca:de:de:8e:64:8f:8e:4c:47:f3:31:2c:10:46:2e:b3:1d: 0e:fb:6d:fc:71:83:b3:b0:06:c4:a6:aa:f2:91:3a:6f:13:6d: 59:80:0f:4f:a0:03:cb:c8:11:14:e7:6a:d6:14:a8:d8:5f:41: a5:53:fe:98:f1:c9:f5:0c:cf:8c:1a:0f:88:d8:be:b1:f9:56: d6:11:3f:a4:d7:b2:66:74:29:77:17:08:04:de:03:2f:c3:c9: 54:bc:46:a8:7b:25:a0:27:7e:c9:26:6e:08:a5:c6:2f:2b:6a: ec:a2:64:e0:2d:89:80:8b:17:59:24:f6:40:a8:22:c8:71:56: 59:85:17:0c:a6:5a:46:b7:7e:43:fa:da:d2:ed:ce:1b:16:1e: 23:64:02:19:eb:f3:ed:cb:48:66:2f:d8:32:74:39:c1:a7:9f: b7:71:2d:36:1e:44:69:0d:ce:1e:ce:ea:fc:49:e4:a1:a8:4a: 74:b4:98:9e:22:16:31:f7:87:3c:34:ad:d6:1b:33:65:b9:71: 46:93:cf:c9:2e:cb:ea:f6:4d:5a:c0:06:ac:69:f4:08:14:7b: f0:0d:6c:29:d7:19:8f:9c:3a:be:29:be:a0:42:ee:5c:6e:2a: ff:4e:05:e8:10:6b:de:55:71:9b:37:4d:d9:f7:3e:71:ce:f4: 1b:2e:69:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUwNTE0MjAzMDAwWhcNMjUwNTIxMjAzMDAwWjAYMRYwFAYD VQQDEw02ODI0ZmQ0OC03MDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sJIZA5cMyPNgFaDQzH8wz8AY9TyKNsoIAUxJ3pSY97aYOkXvBFGmjTA/GY/ xlhvHJW2YOyeH/HaXJMcvGByk6liukbE48voeo2sa//LA9It6emZ31F6RiVvQY7x 8V+tUS94A5lT3yEPRDjAcCn2Ct/ne/PNLUgPYwK+5DqSHhtFQFX/wY4xRTA1jtQG h1AOmeyr2LE+VpS/5zZoCX9i44XbjF6SJRc5/AV6lFLX6opGLP9zYIAIvHqZQg0b URa48oKL1veU4QXqBtbZUHlx8DqCFZbtcCOPiwXST2UCOCmg4CuCzMiAQLW/WlKf M1UM/PbxGQrXTeINMNM8P3/NoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLIZ+O+ CO4hyJCPPl4whNG5WIVZMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJyt7ejmSPjkxH8zEsEEYusx0O+238cYOzsAbEpqrykTpvE21ZgA9P oAPLyBEU52rWFKjYX0GlU/6Y8cn1DM+MGg+I2L6x+VbWET+k17JmdCl3FwgE3gMv w8lUvEaoeyWgJ37JJm4IpcYvK2rsomTgLYmAixdZJPZAqCLIcVZZhRcMplpGt35D +trS7c4bFh4jZAIZ6/Pty0hmL9gydDnBp5+3cS02HkRpDc4ezur8SeShqEp0tJie IhYx94c8NK3WGzNluXFGk8/JLsvq9k1awAasafQIFHvwDWwp1xmPnDq+Kb6gQu5c bir/TgXoEGveVXGbN03Z9z5xzvQbLmkP -----END CERTIFICATE-----Generated at Wed May 14 23:40:52 2025 by rpki-client