$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: 2/p1POI3pWI488X2hZA0X8z0Xxx0cdjbyXDm3pzZ5MI= Subject key identifier: 86:C2:6B:15:82:CD:85:C7:1D:AB:CE:D7:EB:AD:B3:1F:17:57:87:69 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 054E Signing time: Sun 04 May 2025 23:04:09 +0000 Manifest this update: Sun 04 May 2025 23:04:08 +0000 Manifest next update: Sun 11 May 2025 23:04:08 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: 9T6wpy5JzwCCXzKFpCVuaOnjuyOhHtRrsHow7ccd8qM=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: QJH4AI00yRGEUDIXxzK7vr00Zj8U+JgNqRc/dr5Ast0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: May 4 23:04:08 2025 GMT Not After : May 11 23:04:08 2025 GMT Subject: CN=6817f268-e87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1b:51:20:1d:be:b5:d4:b3:dc:81:f5:b0:fa: 33:c2:72:9d:5d:dc:8f:43:42:f9:52:e2:e3:51:3f: ba:18:3c:e7:23:3f:b3:9a:f3:66:4c:ba:07:3d:29: 41:ad:93:8c:75:d6:97:51:92:71:0b:5b:99:0a:ef: ec:e7:74:14:c6:8a:7d:5f:9f:6a:5c:57:fa:ac:61: bd:3a:8f:e7:bd:7b:12:64:55:23:08:22:1d:8c:4c: 96:5d:2b:7a:e2:70:3c:b3:84:3b:e7:45:1e:c8:4d: be:76:a9:96:1e:2b:df:95:6e:f4:5c:bc:3f:d3:5e: 71:0e:8c:3c:58:c6:2b:ee:51:e1:92:34:3d:3e:e0: f0:39:c9:fc:1f:9d:4f:b0:3d:d7:58:a1:f1:ac:76: 17:4e:c1:db:11:e0:38:87:f9:15:69:f1:eb:c4:b7: f8:a7:d4:8c:5c:22:74:83:80:9f:5f:79:92:eb:84: 1b:13:d2:61:c4:65:f9:02:fb:70:63:20:92:7b:35: cf:b9:88:d0:c7:21:c6:22:7a:64:bf:1e:8d:f8:a4: 7c:71:e5:2e:04:57:03:c9:82:73:2c:3f:11:fc:48: 6f:01:93:56:75:ea:34:bb:63:4b:e5:ca:cb:43:98: 67:a0:78:7e:1b:d3:35:b8:26:27:82:f7:c2:e6:ba: 29:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C2:6B:15:82:CD:85:C7:1D:AB:CE:D7:EB:AD:B3:1F:17:57:87:69 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:4b:1a:ca:27:e0:47:68:e4:23:29:6c:dd:d1:4f:e2:a7:0e: 0b:2b:ce:a2:76:19:b8:4f:d1:a2:9f:23:25:bd:93:71:a3:b9: 02:a3:b5:5c:13:cf:e0:39:f2:12:55:d9:35:b2:20:27:8f:67: 1d:ea:76:8c:80:fb:f6:2c:49:85:16:f1:44:0f:54:d0:8e:f2: 82:bb:38:43:18:85:0d:9c:23:7e:8c:ae:06:60:da:76:af:d3: ac:27:18:17:91:50:ad:32:86:7e:f3:31:6b:49:e3:9e:03:39: 1c:59:2f:31:1f:46:73:e2:fe:53:ad:ad:fa:e7:2c:b7:92:40: dc:aa:b9:a5:dc:dd:cf:79:45:0e:43:9d:91:8b:6e:b0:47:c4: 7f:6d:d1:e3:a5:56:a8:16:1d:46:cb:29:76:35:6c:e9:93:0d: ce:24:07:0f:49:53:9a:e6:03:f8:9f:68:47:4d:e0:48:69:b8: bb:b3:06:79:10:09:a3:c0:87:89:51:e7:ce:e8:ae:9d:6a:37: dc:08:51:d2:90:72:58:e4:cb:de:b4:32:d3:c7:1b:d9:39:d7: 77:3b:af:26:4a:56:54:6f:a7:3f:75:27:8f:d3:c1:f4:75:bd: 00:e0:5a:fa:17:09:90:99:9b:c4:6f:f4:08:9e:db:76:8c:94: a3:c5:26:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUwNTA0MjMwNDA4WhcNMjUwNTExMjMwNDA4WjAYMRYwFAYD VQQDEw02ODE3ZjI2OC1lODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xtRIB2+tdSz3IH1sPozwnKdXdyPQ0L5UuLjUT+6GDznIz+zmvNmTLoHPSlB rZOMddaXUZJxC1uZCu/s53QUxop9X59qXFf6rGG9Oo/nvXsSZFUjCCIdjEyWXSt6 4nA8s4Q750UeyE2+dqmWHivflW70XLw/015xDow8WMYr7lHhkjQ9PuDwOcn8H51P sD3XWKHxrHYXTsHbEeA4h/kVafHrxLf4p9SMXCJ0g4CfX3mS64QbE9JhxGX5Avtw YyCSezXPuYjQxyHGInpkvx6N+KR8ceUuBFcDyYJzLD8R/EhvAZNWdeo0u2NL5crL Q5hnoHh+G9M1uCYngvfC5ropVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbCaxWC zYXHHavO1+utsx8XV4dpMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxSxrKJ+BHaOQjKWzd0U/ipw4LK86idhm4T9GinyMlvZNxo7kCo7Vc E8/gOfISVdk1siAnj2cd6naMgPv2LEmFFvFED1TQjvKCuzhDGIUNnCN+jK4GYNp2 r9OsJxgXkVCtMoZ+8zFrSeOeAzkcWS8xH0Zz4v5Tra365yy3kkDcqrml3N3PeUUO Q52Ri26wR8R/bdHjpVaoFh1Gyyl2NWzpkw3OJAcPSVOa5gP4n2hHTeBIabi7swZ5 EAmjwIeJUefO6K6dajfcCFHSkHJY5MvetDLTxxvZOdd3O68mSlZUb6c/dSeP08H0 db0A4Fr6FwmQmZvEb/QIntt2jJSjxSaa -----END CERTIFICATE-----Generated at Mon May 5 02:57:34 2025 by rpki-client