$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: 9MF6U/Nxno8jmbUVAig2p9+Grr33JnOFy/0IXPMCcFY= Subject key identifier: DD:CB:0F:03:36:4D:9B:03:81:4F:1F:BC:12:06:86:95:F1:2F:83:EE Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 09B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09AC Signing time: Mon 12 May 2025 19:53:16 +0000 Manifest this update: Mon 12 May 2025 19:53:15 +0000 Manifest next update: Mon 19 May 2025 19:53:15 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: OyeA7hJdkSQ4z48PjW4rElnvx2Z6dam+FS/Oe0NgFYc=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2483 (0x9b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: May 12 19:53:15 2025 GMT Not After : May 19 19:53:15 2025 GMT Subject: CN=682251ac-becc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f5:d5:cf:4a:61:17:f4:a5:2c:22:99:42:85: 39:3d:50:c4:cd:a6:88:32:ff:df:e4:57:6a:52:40: a4:49:44:72:b9:78:c7:ae:a7:6d:1d:09:0c:ca:b8: 77:3b:44:9c:ac:3b:34:74:27:90:1d:d9:da:bd:27: e7:a7:94:ed:b6:72:ba:ec:5d:de:ba:3b:a6:b9:cd: 08:8a:2f:dd:59:56:13:48:71:c6:fd:bf:db:aa:4f: fe:ad:21:3b:42:f8:4e:52:b1:96:b9:4c:da:e8:4a: 0e:70:99:bc:cc:1d:32:c3:09:ce:99:07:29:ec:a5: 06:1c:44:cb:4f:58:8b:28:3f:0b:c9:ad:e2:08:67: c9:43:bf:4d:14:a8:f4:0d:3f:be:67:6e:ea:8a:9d: 97:2a:dc:c5:f0:05:cb:de:b2:3c:77:fc:73:8f:1c: 12:db:58:3d:c3:29:3f:ac:7f:63:56:b4:43:6d:31: df:c4:19:58:1b:54:43:15:04:b2:7b:dc:15:e4:e3: b9:9c:26:d4:4e:70:1e:70:e1:8a:92:c7:0a:ea:bf: ef:93:45:37:7d:f1:35:17:a8:1f:97:75:2d:8a:88: fd:19:51:a9:f4:3b:04:09:29:a1:90:d1:f7:84:0e: 23:ca:54:f4:7b:07:47:9e:a9:13:55:63:3a:e5:10: 83:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CB:0F:03:36:4D:9B:03:81:4F:1F:BC:12:06:86:95:F1:2F:83:EE X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:e8:86:83:3e:dd:38:1a:32:58:87:36:e5:cd:7a:b4:33:36: 42:ce:f9:7a:86:b3:77:43:dc:6d:b8:6c:d5:85:d5:61:9b:49: 56:0a:18:11:5c:6f:33:a0:34:b7:c1:9d:b6:65:b0:ca:41:de: 15:7d:a5:0a:7e:7e:93:11:4e:b3:44:c7:67:e3:4c:e8:26:a8: cc:cc:57:29:d2:01:af:a3:a1:62:bd:4b:d1:5b:ae:f9:75:e9: 6f:e8:8d:55:20:17:a0:88:c7:b4:4e:93:bf:57:da:d9:40:c4: a2:40:4d:b3:d1:85:b3:5c:ce:d6:ee:e0:51:ca:73:07:6b:16: 57:65:ff:11:71:f8:e9:7b:5e:a8:77:d9:b9:25:54:10:0a:49: 6b:69:c2:c8:a4:94:33:99:32:90:ab:7c:f0:79:14:15:af:1a: 09:27:78:60:41:71:6e:c0:87:d2:23:e7:b2:fe:9f:b0:d8:2a: ce:b2:9e:4a:2f:71:60:f4:00:a2:8f:ef:ea:75:64:47:3c:0a: de:35:f0:57:99:81:1f:a7:5d:d9:7e:05:e2:11:a3:1e:5e:64: 12:91:25:d5:00:84:84:88:97:01:93:87:11:f4:8f:a2:2c:7d: 10:9e:0e:56:3b:7f:7e:da:2c:bb:e0:6e:04:b8:64:d7:de:c9: 79:2d:19:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUwNTEyMTk1MzE1WhcNMjUwNTE5MTk1MzE1WjAYMRYwFAYD VQQDEw02ODIyNTFhYy1iZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvXVz0phF/SlLCKZQoU5PVDEzaaIMv/f5FdqUkCkSURyuXjHrqdtHQkMyrh3 O0ScrDs0dCeQHdnavSfnp5TttnK67F3eujumuc0Iii/dWVYTSHHG/b/bqk/+rSE7 QvhOUrGWuUza6EoOcJm8zB0ywwnOmQcp7KUGHETLT1iLKD8Lya3iCGfJQ79NFKj0 DT++Z27qip2XKtzF8AXL3rI8d/xzjxwS21g9wyk/rH9jVrRDbTHfxBlYG1RDFQSy e9wV5OO5nCbUTnAecOGKkscK6r/vk0U3ffE1F6gfl3Utioj9GVGp9DsECSmhkNH3 hA4jylT0ewdHnqkTVWM65RCDCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3LDwM2 TZsDgU8fvBIGhpXxL4PuMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF6IaDPt04GjJYhzblzXq0MzZCzvl6hrN3Q9xtuGzVhdVhm0lWChgR XG8zoDS3wZ22ZbDKQd4VfaUKfn6TEU6zRMdn40zoJqjMzFcp0gGvo6FivUvRW675 delv6I1VIBegiMe0TpO/V9rZQMSiQE2z0YWzXM7W7uBRynMHaxZXZf8Rcfjpe16o d9m5JVQQCklracLIpJQzmTKQq3zweRQVrxoJJ3hgQXFuwIfSI+ey/p+w2CrOsp5K L3Fg9ACij+/qdWRHPAreNfBXmYEfp13ZfgXiEaMeXmQSkSXVAISEiJcBk4cR9I+i LH0Qng5WO39+2iy74G4EuGTX3sl5LRmh -----END CERTIFICATE-----Generated at Tue May 13 11:20:22 2025 by rpki-client