$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: AjewG9TbVpiyMpe9PnTduppAOC3G6u+NtDUcOF2RmzQ= Subject key identifier: 4E:BF:9B:A1:F9:1B:82:92:C1:75:FA:B5:F1:B6:D4:BA:DB:F8:F4:42 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 66 Signing time: Sat 17 May 2025 06:31:00 +0000 Manifest this update: Sat 17 May 2025 06:31:00 +0000 Manifest next update: Sat 24 May 2025 06:31:00 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: 7R6cEYLJoXiqXN+TNQ8n/Z25Q21vo5UC1CLGuZM24kI=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: G7IWl5XTyAgfWE48sRsXaPS6r+SeXaYM6TeXGgT/8zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 06:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: May 17 06:31:00 2025 GMT Not After : May 24 06:31:00 2025 GMT Subject: CN=68282d24-3d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e9:93:d8:91:9e:cd:e1:44:1d:03:3d:c6:7d: f3:e5:40:21:e9:5f:12:d3:01:ec:08:01:56:fe:17: 78:c8:21:f9:6c:e3:25:3e:7c:c4:7d:99:51:52:82: 52:f7:48:26:1d:3b:c6:20:66:f4:c0:0a:43:fd:45: b9:cc:00:dc:e7:54:52:23:04:61:8d:78:ea:35:03: 29:b7:67:fa:a4:d5:94:aa:4f:7d:3c:b9:0b:0f:ee: 67:5e:34:bf:52:8d:ea:9b:64:ea:16:a8:7d:d1:19: c3:83:ab:a2:8b:f0:ef:cb:38:27:a8:e1:b3:bb:d2: 98:ff:f2:2c:64:74:84:d9:63:ef:f2:c0:99:4a:74: 51:eb:7a:a2:73:95:bf:53:83:1b:0e:87:e1:49:a4: f5:f2:11:14:2e:2e:ee:39:7c:5d:8f:63:ef:ee:58: ba:47:d7:3a:48:e3:7d:ce:b4:6b:e3:21:c5:2c:49: b8:a5:a8:49:be:29:a5:22:e8:12:53:3c:e5:9b:cc: 51:16:32:9d:46:fa:d7:a3:af:94:fa:60:6f:aa:c6: 61:84:57:e5:9d:07:96:f3:6c:7b:b0:7d:53:a5:dd: 6c:02:ec:30:45:04:b5:fa:4d:c9:57:b5:7f:9b:1e: e7:a6:7f:53:05:fe:e9:8c:54:22:37:3d:10:52:ae: 54:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:BF:9B:A1:F9:1B:82:92:C1:75:FA:B5:F1:B6:D4:BA:DB:F8:F4:42 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c1:b3:94:1f:59:4b:4e:bf:93:0f:26:b2:ca:29:65:b9:85: b4:47:ad:f7:6d:45:19:da:7a:bd:8b:aa:e7:b5:bb:7a:f7:39: 0d:5a:cc:c0:04:a6:35:62:fe:73:f8:98:81:5a:a5:10:74:94: 9b:24:f2:2b:76:21:13:06:98:f4:09:27:15:d8:cd:a0:59:8b: b8:39:09:cc:6b:94:2c:8e:48:6c:2a:be:46:c8:64:9b:88:64: 40:4a:c4:ad:93:2f:3e:ab:db:ba:1a:a4:6f:16:86:ac:df:bf: 5b:53:33:65:1a:47:01:6a:1c:bd:db:46:cd:38:c3:ce:28:60: bd:7d:7d:68:90:05:33:a3:65:aa:1c:49:4b:7c:61:79:5a:2d: 53:69:e8:0a:7e:0d:fc:d8:8e:99:10:ad:1c:9a:19:29:2f:1a: 30:ea:c6:7e:55:06:0d:45:b1:67:c2:19:2a:3d:03:09:bb:21: ee:40:9f:72:ba:e2:a8:e9:76:e9:ae:63:3e:c2:15:6f:a8:e5: 9a:75:fb:0c:6b:7d:de:3b:f4:1f:89:07:95:d0:10:89:d0:99: af:9c:99:22:8c:bc:c6:a1:5c:64:4f:09:83:76:ae:ca:fb:b8: 3c:3a:97:72:77:f1:41:a4:18:8d:7a:bc:ab:dd:a7:02:1e:26: 26:a4:84:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoNUYwMDRENTdFQjM2RjQyNjcyRTY2RjMwMDVGNjQ2OUI2 Mjg5MTcxQjAeFw0yNTA1MTcwNjMxMDBaFw0yNTA1MjQwNjMxMDBaMBgxFjAUBgNV BAMTDTY4MjgyZDI0LTNkMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc6ZPYkZ7N4UQdAz3GffPlQCHpXxLTAewIAVb+F3jIIfls4yU+fMR9mVFSglL3 SCYdO8YgZvTACkP9RbnMANznVFIjBGGNeOo1Aym3Z/qk1ZSqT308uQsP7mdeNL9S jeqbZOoWqH3RGcODq6KL8O/LOCeo4bO70pj/8ixkdITZY+/ywJlKdFHreqJzlb9T gxsOh+FJpPXyERQuLu45fF2PY+/uWLpH1zpI433OtGvjIcUsSbilqEm+KaUi6BJT POWbzFEWMp1G+tejr5T6YG+qxmGEV+WdB5bzbHuwfVOl3WwC7DBFBLX6TclXtX+b Huemf1MF/umMVCI3PRBSrlQBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTr+bofkb gpLBdfq18bbUutv49EIwHwYDVR0jBBgwFoAUXwBNV+s29CZy5m8wBfZGm2KJFxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1Lzk1NkY2NjJDOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHdCTlYtczI5Q1p5NW04d0JmWkdtMktKRnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx MDI1Lzk1NkY2NjJDOUQ4NDExRUY4MTdFMTQyMEM0RjlBRTAyL1h3Qk5WLXMyOUNa eTVtOHdCZlpHbTJLSkZ4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABzBs5QfWUtOv5MPJrLKKWW5hbRHrfdtRRnaer2Lque1u3r3OQ1azMAE pjVi/nP4mIFapRB0lJsk8it2IRMGmPQJJxXYzaBZi7g5CcxrlCyOSGwqvkbIZJuI ZEBKxK2TLz6r27oapG8Whqzfv1tTM2UaRwFqHL3bRs04w84oYL19fWiQBTOjZaoc SUt8YXlaLVNp6Ap+DfzYjpkQrRyaGSkvGjDqxn5VBg1FsWfCGSo9Awm7Ie5An3K6 4qjpdumuYz7CFW+o5Zp1+wxrfd479B+JB5XQEInQma+cmSKMvMahXGRPCYN2rsr7 uDw6l3J38UGkGI16vKvdpwIeJiakhIs= -----END CERTIFICATE-----Generated at Sat May 17 13:01:15 2025 by rpki-client