$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: 3SWPGSSSwJvtpLLLENcsZdFeAuRdpIxrPFcbfJ+zc/I= Subject key identifier: 15:1D:24:BC:64:94:36:82:B4:6A:BC:16:3C:4E:F8:1C:E3:42:49:53 Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 0113 Signing time: Tue 13 May 2025 04:02:26 +0000 Manifest this update: Tue 13 May 2025 04:02:25 +0000 Manifest next update: Tue 20 May 2025 04:02:25 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: Khzt8RtolCxSVz8GZqbzeCserki4eSXxbXYdT+UAZpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: May 13 04:02:25 2025 GMT Not After : May 20 04:02:25 2025 GMT Subject: CN=6822c452-f766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:7a:01:0d:88:c3:17:22:89:28:89:3e:43: 5a:bc:91:f2:bd:f5:f7:32:5d:85:0b:5f:86:ca:df: 79:58:ea:c0:9c:b4:f7:15:43:0f:bb:1e:1a:58:25: 1e:a3:27:80:1d:5a:8b:80:84:d8:2c:a4:9e:cb:a6: f6:a8:d3:52:06:35:79:dc:54:16:77:76:fc:82:57: 9e:0d:e1:e1:52:93:69:8e:4e:9d:29:85:dd:0f:28: 34:a5:ec:a0:54:c9:3b:8a:a6:d2:d8:6d:b8:8c:39: 74:b1:a0:7b:03:aa:e0:39:c6:92:9f:dc:3c:55:e5: f4:4f:fb:39:42:ae:99:88:76:3a:92:c6:c8:ae:6d: 2d:cc:59:97:d2:6a:4a:08:d5:c1:0b:23:3c:23:3d: 19:ba:ab:b9:f2:bb:34:8a:e3:62:c3:f0:a5:67:d6: 31:23:b2:f4:f8:5f:bf:90:b4:90:ef:01:a0:a8:1c: fa:f3:38:a8:0f:20:81:22:71:ae:9d:7b:12:58:0f: e8:c7:92:ce:dd:3a:60:9c:46:39:60:07:74:4e:7e: ac:64:dd:33:0b:bb:9b:97:93:94:d1:83:23:bc:1c: 92:c8:a4:06:2c:7e:22:e0:7a:a6:0d:01:58:78:73: c5:7c:d9:70:cc:c6:74:42:f6:44:a5:6b:54:df:b3: b2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1D:24:BC:64:94:36:82:B4:6A:BC:16:3C:4E:F8:1C:E3:42:49:53 X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:af:7e:ce:2f:29:74:23:74:22:cf:7c:03:04:2a:99:2c:20: c3:23:20:98:3c:9e:f4:34:d2:d7:a3:41:a7:3e:c8:8a:9f:66: 60:b0:c9:06:3b:34:71:3b:8c:e8:0b:69:b5:23:ff:09:93:e9: 21:54:32:85:d5:60:f7:aa:c4:b3:ef:c2:25:42:4d:e8:ea:0f: c7:76:f4:c0:ff:2b:9e:48:62:3a:1e:60:95:0b:98:8d:57:32: ce:b8:1d:6f:06:0c:d5:0f:d4:47:a8:43:a5:b1:11:a8:81:42: 40:b9:78:01:59:57:4c:93:7d:c7:04:19:1e:ae:1d:d4:f2:39: ac:e5:19:6a:18:4e:70:76:40:58:7c:6f:81:83:dd:2b:93:b3: a0:f3:37:fe:b5:73:21:b3:25:44:59:59:16:1e:5d:d0:9c:9a: dd:42:f2:6f:3e:d9:79:91:b2:bf:3b:8b:71:eb:1d:aa:49:4b: 36:d2:82:6f:b4:1e:b2:2b:4e:84:6a:0a:57:47:95:53:a0:bb: bf:b6:5b:0e:11:60:6b:1a:43:c6:f5:9d:a5:f5:ac:3b:6d:21: 22:d3:47:0c:0f:ed:a1:23:33:7c:cd:90:46:e1:86:08:9e:4a: 30:35:ce:d3:da:7a:c1:6c:68:e3:8d:bc:6e:8e:77:39:b4:a5: cc:87:3d:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjUwNTEzMDQwMjI1WhcNMjUwNTIwMDQwMjI1WjAYMRYwFAYD VQQDEw02ODIyYzQ1Mi1mNzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxF6AQ2IwxciiSiJPkNavJHyvfX3Ml2FC1+Gyt95WOrAnLT3FUMPux4aWCUe oyeAHVqLgITYLKSey6b2qNNSBjV53FQWd3b8gleeDeHhUpNpjk6dKYXdDyg0peyg VMk7iqbS2G24jDl0saB7A6rgOcaSn9w8VeX0T/s5Qq6ZiHY6ksbIrm0tzFmX0mpK CNXBCyM8Iz0Zuqu58rs0iuNiw/ClZ9YxI7L0+F+/kLSQ7wGgqBz68zioDyCBInGu nXsSWA/ox5LO3TpgnEY5YAd0Tn6sZN0zC7ubl5OU0YMjvBySyKQGLH4i4HqmDQFY eHPFfNlwzMZ0QvZEpWtU37OyTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUdJLxk lDaCtGq8FjxO+BzjQklTMB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVr37OLyl0I3Qiz3wDBCqZLCDDIyCYPJ70NNLXo0GnPsiKn2ZgsMkG OzRxO4zoC2m1I/8Jk+khVDKF1WD3qsSz78IlQk3o6g/HdvTA/yueSGI6HmCVC5iN VzLOuB1vBgzVD9RHqEOlsRGogUJAuXgBWVdMk33HBBkerh3U8jms5RlqGE5wdkBY fG+Bg90rk7Og8zf+tXMhsyVEWVkWHl3QnJrdQvJvPtl5kbK/O4tx6x2qSUs20oJv tB6yK06EagpXR5VToLu/tlsOEWBrGkPG9Z2l9aw7bSEi00cMD+2hIzN8zZBG4YYI nkowNc7T2nrBbGjjjbxujnc5tKXMhz0o -----END CERTIFICATE-----Generated at Wed May 14 08:22:22 2025 by rpki-client