$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: 6efeBzur57obaguukRVCFh3E2P4n2TfTGNi9i1DGL7M= Subject key identifier: DE:51:F0:5E:00:78:D1:F5:61:E3:3D:0A:B6:B7:A7:A7:87:EB:7A:F3 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 8E Signing time: Sun 11 May 2025 05:14:42 +0000 Manifest this update: Sun 11 May 2025 05:14:42 +0000 Manifest next update: Sun 18 May 2025 05:14:42 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: RPJwbZvI4aeO9pRTJKz3mo4FVfXJQkSiTLoCfyXBOp0=) 2: AA5F20585B9A11EFBB8CB141C4F9AE02.roa (hash: xwJyyBO1pg9qb2VE0/6cn7we8wuOMnw/nqF3R5gu+VU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: May 11 05:14:42 2025 GMT Not After : May 18 05:14:42 2025 GMT Subject: CN=68203242-734f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:dd:5e:8a:e6:0a:0a:f1:9e:34:e2:13:ad:7a: ac:19:4b:c5:87:ae:59:dd:06:b0:71:01:98:d5:54: f1:42:0f:80:9e:ee:24:1b:d7:80:59:8a:55:8a:74: 06:50:f9:76:4c:dc:e3:f6:23:7a:63:c6:14:f8:49: c0:61:78:09:42:d6:3e:7b:c7:2b:df:e0:6a:62:13: f0:df:cf:d8:b8:c4:18:d0:4f:17:e3:34:99:3d:96: f5:d9:11:4c:8c:8a:6a:74:da:0c:37:2b:23:13:96: b3:db:7a:df:3e:d7:ad:20:a5:e1:b2:a5:3a:9e:e8: 57:41:0b:50:7a:6b:57:53:40:d6:b9:94:28:75:c7: 32:6d:03:1c:b6:3a:e8:d9:03:0f:4f:24:72:4d:6a: 79:1d:6a:df:32:00:f0:24:8c:1e:50:b9:6c:91:1c: 19:f6:86:d2:55:6a:a8:62:ed:c2:35:e2:e7:85:f1: 44:db:46:09:38:21:c1:72:b0:7f:ac:d2:9c:0c:0b: 16:7f:23:13:fb:0c:00:b8:85:f1:ce:70:a1:df:26: 5a:7f:0c:28:50:ad:f7:e6:a9:b3:87:0f:b7:95:a5: 62:69:ac:35:36:27:68:50:a4:95:08:ab:f8:e4:62: ac:b1:ae:dd:d5:0e:ad:0a:b4:2a:bf:fc:71:71:f0: 4d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:51:F0:5E:00:78:D1:F5:61:E3:3D:0A:B6:B7:A7:A7:87:EB:7A:F3 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f6:99:7d:62:7b:d6:ab:14:b3:a9:50:d0:53:60:ee:14:94: 0c:93:9b:16:8b:c8:18:40:08:f0:1e:2a:16:dd:be:54:36:9e: 11:e5:55:45:ad:99:5d:7b:6b:b2:ae:97:80:43:7f:d0:bc:5f: a4:1c:9b:8c:a1:cb:d9:b7:8d:56:fa:8f:f2:dd:dd:97:f8:81: b0:16:08:65:66:8e:69:bd:9d:68:a1:bf:44:95:39:b8:56:d7: 84:a8:a8:45:27:89:96:72:67:5f:96:f6:9a:7c:b9:8b:ee:b5: 44:dd:6a:46:bf:8e:df:3d:d5:16:40:48:90:b4:0b:a7:eb:00: 64:9b:85:f8:dc:13:71:ce:b7:cc:22:0b:c6:c0:b5:02:75:91: b6:59:f2:56:a7:66:2f:07:69:9d:19:86:b2:64:ba:68:df:e6: a9:4f:5c:ed:88:73:41:e5:59:f4:f2:4e:d4:9b:f2:75:ac:83: 1a:0b:bc:86:db:f7:8a:65:a8:9e:49:d3:67:f5:b2:8d:92:71: 04:bc:dc:bd:b3:cc:c8:c9:65:4d:a5:31:f7:0b:5e:ec:00:27: fa:46:2f:e5:a5:3c:19:c4:62:eb:01:9a:21:a3:f1:8d:29:c9: 7e:54:8c:15:91:b6:fd:79:41:ec:7c:6a:1b:6f:f8:62:ca:49: 05:33:0f:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwNTExMDUxNDQyWhcNMjUwNTE4MDUxNDQyWjAYMRYwFAYD VQQDEw02ODIwMzI0Mi03MzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6d1eiuYKCvGeNOITrXqsGUvFh65Z3QawcQGY1VTxQg+Anu4kG9eAWYpVinQG UPl2TNzj9iN6Y8YU+EnAYXgJQtY+e8cr3+BqYhPw38/YuMQY0E8X4zSZPZb12RFM jIpqdNoMNysjE5az23rfPtetIKXhsqU6nuhXQQtQemtXU0DWuZQodccybQMctjro 2QMPTyRyTWp5HWrfMgDwJIweULlskRwZ9obSVWqoYu3CNeLnhfFE20YJOCHBcrB/ rNKcDAsWfyMT+wwAuIXxznCh3yZafwwoUK335qmzhw+3laViaaw1NidoUKSVCKv4 5GKssa7d1Q6tCrQqv/xxcfBNLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5R8F4A eNH1YeM9Cra3p6eH63rzMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH9pl9YnvWqxSzqVDQU2DuFJQMk5sWi8gYQAjwHioW3b5UNp4R5VVF rZlde2uyrpeAQ3/QvF+kHJuMocvZt41W+o/y3d2X+IGwFghlZo5pvZ1oob9ElTm4 VteEqKhFJ4mWcmdflvaafLmL7rVE3WpGv47fPdUWQEiQtAun6wBkm4X43BNxzrfM IgvGwLUCdZG2WfJWp2YvB2mdGYayZLpo3+apT1ztiHNB5Vn08k7Um/J1rIMaC7yG 2/eKZaieSdNn9bKNknEEvNy9s8zIyWVNpTH3C17sACf6Ri/lpTwZxGLrAZoho/GN Kcl+VIwVkbb9eUHsfGobb/hiykkFMw95 -----END CERTIFICATE-----Generated at Mon May 12 18:52:56 2025 by rpki-client