$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: DH7CpRctt42aDsEwbnKgQ+sIJ1pwf21em4D4ushasI0= Subject key identifier: 97:15:DE:2F:9F:40:ED:D0:2E:34:CF:B5:C4:1B:68:39:0E:8A:86:A4 Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: 87 Signing time: Thu 15 May 2025 08:56:05 +0000 Manifest this update: Thu 15 May 2025 08:56:04 +0000 Manifest next update: Thu 22 May 2025 08:56:04 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: OFKREcpIQqorPcldiY3efwI/UvLPC82dQgPRad6ZklQ=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: DgEucoR97Y9+a6MdEE8/uaZNnvtkSjr5/qYttwnSpcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 08:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: May 15 08:56:04 2025 GMT Not After : May 22 08:56:04 2025 GMT Subject: CN=6825ac25-2df1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:b5:d0:ef:cf:5c:8a:6f:22:54:3f:8b:64: a8:4e:58:03:6d:8b:9d:ff:56:79:a6:1e:e1:45:b3: e5:ef:0a:4d:fa:f0:d0:19:9c:ac:5f:8a:be:3a:68: 52:8a:d2:21:40:a7:60:45:1d:d7:16:31:53:92:e0: 45:0e:e8:0f:2e:07:03:50:d5:9c:71:6d:65:2d:22: e6:14:0a:03:c1:d7:ae:19:0a:ba:59:c8:45:3d:4b: e0:53:01:dd:0d:a4:ee:52:0c:51:79:fe:b9:24:2f: a4:c0:02:c0:3e:a6:63:5e:d5:51:7e:70:10:73:97: f5:31:a0:bb:f5:8c:9b:40:28:89:2a:e2:13:6e:64: d1:e9:f2:e4:bb:8c:85:87:11:bb:45:7a:55:43:a5: 2f:94:b1:ab:41:50:cb:9e:ac:c9:7e:ac:74:a4:ea: c0:24:93:d4:bc:0c:03:1c:ae:87:2a:bd:1c:5a:9a: 1e:af:01:5b:40:8b:bc:61:25:84:63:cb:8d:7b:1b: 2e:fb:32:24:e9:39:0d:08:07:5d:25:a0:0c:f5:be: a5:a3:1f:35:b1:40:20:9c:a0:a0:36:96:32:b7:f5: c1:cb:57:b0:b7:a7:6a:dd:be:e1:55:55:c4:a4:93: 15:c3:c8:aa:eb:06:20:54:5a:a9:70:74:42:27:9e: c8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:15:DE:2F:9F:40:ED:D0:2E:34:CF:B5:C4:1B:68:39:0E:8A:86:A4 X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:61:06:5a:af:27:49:6c:74:2d:4c:cf:9d:0d:79:72:6c:f5: df:a8:de:6e:dd:9b:83:96:95:b7:c6:fe:6b:7b:a0:31:14:3e: 5c:c8:22:4b:ce:1d:8d:77:59:b9:fe:1a:48:a4:5c:51:0d:ff: 16:d5:b9:db:9c:68:d7:da:14:3b:e6:60:86:e0:90:a9:59:80: 06:57:62:bf:5f:5a:01:17:4c:11:dd:6e:0b:17:0c:79:e3:ec: 7f:4b:f8:1d:4b:a6:c5:c6:28:2e:9a:5d:7d:a8:76:12:af:6a: 9d:60:4c:f7:38:43:15:81:5a:b5:09:86:1f:c8:3c:32:8b:1d: 2c:08:c4:64:01:41:e9:62:c3:39:bf:8d:1c:e1:9c:6e:f5:e8: 31:a5:73:32:eb:98:dd:4a:32:8a:2d:ae:52:a0:09:3a:c2:14: 91:c3:ca:df:12:6d:99:20:a8:47:4d:ff:2b:7b:16:36:4b:a3: ce:e7:dd:89:f6:e4:3b:78:bd:a7:2c:22:ce:dc:8d:51:52:57: 4b:6b:3d:44:67:3f:b8:0f:3b:f0:f5:db:79:e9:55:6b:a7:81: eb:52:6f:5c:ec:d9:4f:94:4f:95:02:e2:1b:71:be:35:de:3c: 1f:bc:74:06:98:d0:bc:52:5f:10:89:51:df:05:37:fd:9a:1c: c4:99:a4:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjUwNTE1MDg1NjA0WhcNMjUwNTIyMDg1NjA0WjAYMRYwFAYD VQQDEw02ODI1YWMyNS0yZGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTC10O/PXIpvIlQ/i2SoTlgDbYud/1Z5ph7hRbPl7wpN+vDQGZysX4q+OmhS itIhQKdgRR3XFjFTkuBFDugPLgcDUNWccW1lLSLmFAoDwdeuGQq6WchFPUvgUwHd DaTuUgxRef65JC+kwALAPqZjXtVRfnAQc5f1MaC79YybQCiJKuITbmTR6fLku4yF hxG7RXpVQ6UvlLGrQVDLnqzJfqx0pOrAJJPUvAwDHK6HKr0cWpoerwFbQIu8YSWE Y8uNexsu+zIk6TkNCAddJaAM9b6lox81sUAgnKCgNpYyt/XBy1ewt6dq3b7hVVXE pJMVw8iq6wYgVFqpcHRCJ57IGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcV3i+f QO3QLjTPtcQbaDkOioakMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmYQZarydJbHQtTM+dDXlybPXfqN5u3ZuDlpW3xv5re6AxFD5cyCJL zh2Nd1m5/hpIpFxRDf8W1bnbnGjX2hQ75mCG4JCpWYAGV2K/X1oBF0wR3W4LFwx5 4+x/S/gdS6bFxiguml19qHYSr2qdYEz3OEMVgVq1CYYfyDwyix0sCMRkAUHpYsM5 v40c4Zxu9egxpXMy65jdSjKKLa5SoAk6whSRw8rfEm2ZIKhHTf8rexY2S6PO592J 9uQ7eL2nLCLO3I1RUldLaz1EZz+4Dzvw9dt56VVrp4HrUm9c7NlPlE+VAuIbcb41 3jwfvHQGmNC8Ul8QiVHfBTf9mhzEmaSi -----END CERTIFICATE-----Generated at Sat May 17 00:51:22 2025 by rpki-client