$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: PL4pQwEn/Xk6738lroxjJ3sd3H3K6zL7Y6UzjxCo3HY= Subject key identifier: 55:C5:E2:B9:68:B9:DE:19:A0:A2:00:22:D3:6C:A2:17:E4:99:98:84 Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 012C Signing time: Thu 03 Jul 2025 04:39:21 +0000 Manifest this update: Thu 03 Jul 2025 04:39:20 +0000 Manifest next update: Thu 10 Jul 2025 04:39:20 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: TlYE0hJuKZA9+jZwwH6LnZm4f6M3y9ndY+bx6kprvm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: Jul 3 04:39:20 2025 GMT Not After : Jul 10 04:39:20 2025 GMT Subject: CN=68660979-b8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:87:2a:2f:df:09:db:36:4e:1b:4e:7e:88:7d: e9:7f:a6:ef:6e:c5:0e:2e:43:d2:2f:07:bd:47:af: 42:36:df:7a:76:c0:ee:6b:d9:d9:a1:e3:06:bf:fd: 72:9c:74:70:b8:36:81:91:04:c6:c4:7f:5e:ad:7d: 4e:d1:01:51:19:be:88:6c:86:7f:52:0b:3e:e8:5b: a6:d4:85:3d:3f:8a:a3:d9:e2:39:57:9c:6f:a1:5c: da:eb:36:79:06:2c:5d:65:14:48:4e:47:f6:40:b1: b7:f2:da:49:e5:42:5e:47:ee:92:e4:ac:a7:71:f7: a4:a4:d8:a2:7e:9c:ed:c5:40:ca:b6:67:f5:6d:ae: df:5d:1d:86:56:68:ba:d7:e8:05:3b:60:24:70:d2: 49:43:58:ca:20:fd:80:72:c1:2c:6d:6f:e0:73:27: aa:9f:12:63:34:49:d2:50:fe:d2:9e:d0:f6:eb:b6: 6a:41:4d:8d:65:3d:ac:b7:21:d5:65:c8:2b:37:36: 8f:b9:ae:30:0f:16:31:ce:8e:ab:db:da:7f:43:1d: 51:bf:46:d8:96:f3:f2:5e:bf:20:3f:2a:b6:e2:49: 28:56:42:45:00:5f:b8:8c:cf:b1:f5:55:db:43:28: 8c:aa:1f:e8:2f:71:22:d1:0f:3d:1e:96:a6:cc:be: 9d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C5:E2:B9:68:B9:DE:19:A0:A2:00:22:D3:6C:A2:17:E4:99:98:84 X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e0:f3:b9:25:88:ba:9e:24:7d:27:0b:4c:13:3b:27:23:f3: 52:65:54:a6:41:e9:88:dd:c8:bc:f1:72:d5:6f:44:73:24:19: 9f:9a:07:29:7a:2a:42:49:67:82:a1:b0:5e:06:18:07:1b:c2: df:73:e5:64:50:40:fc:68:26:64:da:72:b5:e2:81:60:4d:e9: fc:9a:41:b1:08:40:42:62:d6:79:08:cc:e1:55:df:34:cc:cf: 97:72:7f:67:f8:47:c3:0c:d7:1d:9e:b7:0f:1a:0b:d5:0a:64: c7:ac:e2:83:88:69:f0:b3:64:4b:ee:10:21:0b:e6:b5:48:40: fd:42:5d:40:38:32:f3:cc:01:a0:2e:53:e8:54:bf:33:96:49: f1:22:b7:9f:0a:88:16:b5:cb:6b:ea:cb:61:6c:a6:14:e5:1f: 5f:c3:71:5f:d1:f4:bf:69:aa:00:ef:7c:65:7a:0d:98:3d:b8: 50:d4:2e:94:2a:24:6b:7e:a1:89:3f:1f:ac:50:0b:49:9e:de: 9b:bc:8a:a4:c8:28:5b:bf:68:44:39:95:53:91:3e:b9:1c:c9: 76:22:7c:f4:a5:b7:61:7a:e2:67:44:0f:c1:33:a1:e9:67:7a: 28:88:ae:b8:f7:97:47:98:fc:b8:b9:e1:6f:79:9b:14:5d:ca: c1:80:24:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjUwNzAzMDQzOTIwWhcNMjUwNzEwMDQzOTIwWjAYMRYwFAYD VQQDEw02ODY2MDk3OS1iOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4cqL98J2zZOG05+iH3pf6bvbsUOLkPSLwe9R69CNt96dsDua9nZoeMGv/1y nHRwuDaBkQTGxH9erX1O0QFRGb6IbIZ/Ugs+6Fum1IU9P4qj2eI5V5xvoVza6zZ5 BixdZRRITkf2QLG38tpJ5UJeR+6S5KyncfekpNiifpztxUDKtmf1ba7fXR2GVmi6 1+gFO2AkcNJJQ1jKIP2AcsEsbW/gcyeqnxJjNEnSUP7SntD267ZqQU2NZT2styHV ZcgrNzaPua4wDxYxzo6r29p/Qx1Rv0bYlvPyXr8gPyq24kkoVkJFAF+4jM+x9VXb QyiMqh/oL3Ei0Q89HpamzL6d9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXF4rlo ud4ZoKIAItNsohfkmZiEMB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE4PO5JYi6niR9JwtMEzsnI/NSZVSmQemI3ci88XLVb0RzJBmfmgcp eipCSWeCobBeBhgHG8Lfc+VkUED8aCZk2nK14oFgTen8mkGxCEBCYtZ5CMzhVd80 zM+Xcn9n+EfDDNcdnrcPGgvVCmTHrOKDiGnws2RL7hAhC+a1SED9Ql1AODLzzAGg LlPoVL8zlknxIrefCogWtctr6sthbKYU5R9fw3Ff0fS/aaoA73xleg2YPbhQ1C6U KiRrfqGJPx+sUAtJnt6bvIqkyChbv2hEOZVTkT65HMl2Inz0pbdheuJnRA/BM6Hp Z3ooiK6495dHmPy4ueFveZsUXcrBgCRW -----END CERTIFICATE-----Generated at Thu Jul 3 08:04:44 2025 by rpki-client