$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: 8UYdtaMOTPziFAqtWHCj/pPdiytswdEhIQ8TqTKvKlA= Subject key identifier: 20:FB:BE:7F:54:32:A1:A2:9E:62:BE:64:26:DF:24:63:B2:73:E9:64 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E31 Signing time: Sat 10 May 2025 17:39:07 +0000 Manifest this update: Sat 10 May 2025 17:39:06 +0000 Manifest next update: Sat 17 May 2025 17:39:06 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: FcElfLO+2aZfN+1bt0e8ehh4bTXjG8sjRNRPDnj6uuE=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3646 (0xe3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: May 10 17:39:06 2025 GMT Not After : May 17 17:39:06 2025 GMT Subject: CN=681f8f3b-3456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:83:5b:c2:f6:21:e3:ad:ce:ee:29:74:c5:cd: 36:dd:26:6f:71:4e:bb:8f:a1:40:60:f3:15:1c:51: 76:9a:cd:02:8f:40:ac:19:79:bd:c8:fc:4d:d1:e4: d8:6d:4e:28:bc:7d:d8:2d:c7:14:12:94:d7:72:39: 95:10:fe:bf:7d:22:d4:77:ba:7d:48:70:9f:fc:af: 44:e9:db:26:b3:b8:d1:be:7f:ae:8b:c5:ca:05:03: ff:90:b2:2f:dc:dd:67:a7:d7:3f:40:10:6d:6d:12: 25:03:1c:9c:89:14:04:7e:08:ef:d7:70:15:63:04: 1f:a3:58:35:75:7a:67:c1:6c:0b:c0:08:d7:14:49: fb:8a:ff:4a:03:c0:fa:f9:64:9c:0f:f7:a0:95:92: 58:8b:2d:6f:f3:fb:2f:2b:f5:dd:56:53:73:17:96: 4b:fd:be:4b:38:9b:34:f6:37:69:7d:b9:98:98:d5: eb:4a:e8:ae:a3:1c:29:c2:92:13:dd:94:d7:60:be: b2:3c:23:81:54:ab:40:b4:5f:2c:0e:d8:bd:8f:44: 2f:0f:f2:62:f5:bf:39:19:7f:fb:52:11:9a:2b:49: 1d:ac:c5:85:b6:fd:ae:f8:2d:6b:ce:ac:27:fb:7d: 47:b9:5f:94:c8:ec:53:dc:ee:7b:cc:27:1f:a8:b5: b6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FB:BE:7F:54:32:A1:A2:9E:62:BE:64:26:DF:24:63:B2:73:E9:64 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ba:86:87:dc:e9:ba:d6:92:65:04:a3:01:67:91:88:78:58: 35:8e:04:02:0b:17:db:a2:be:f0:c9:1f:a9:91:bd:56:74:7d: 6d:3b:1c:5b:be:31:b6:c4:0d:00:07:dd:3c:55:7e:15:bc:06: 1e:bb:20:95:20:24:df:03:05:df:80:de:aa:93:44:12:c1:08: d8:c8:09:9c:b5:fd:17:98:d8:00:fe:02:24:b2:a8:d8:c2:7c: 65:ba:a8:a8:b3:03:d8:88:14:09:ec:76:b5:37:51:5f:f6:84: 20:72:58:5c:02:35:44:9d:5c:53:d8:93:bf:d5:b7:52:e6:30: 3f:1e:9d:d8:e6:45:2d:84:d1:15:78:40:30:4d:af:54:df:73: 1a:d0:5e:b9:cd:32:0e:32:bf:db:ab:21:61:76:dd:fc:4b:b1: 49:fb:86:59:4c:c4:36:2c:c5:e6:62:07:0d:63:79:88:70:e7: f9:f2:30:7a:d7:8b:22:1c:a3:4b:89:d4:e9:d0:8a:44:14:7c: 07:3c:df:a7:7e:ee:6a:93:50:7b:f9:1b:45:f3:18:05:8a:70: 26:f0:2c:f0:7d:ba:dc:bc:07:92:82:6e:21:d1:70:95:da:bd: 35:bd:4c:a5:4c:64:db:a0:dc:18:04:f0:3e:14:76:ee:83:3f: d3:64:be:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUwNTEwMTczOTA2WhcNMjUwNTE3MTczOTA2WjAYMRYwFAYD VQQDEw02ODFmOGYzYi0zNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oNbwvYh463O7il0xc023SZvcU67j6FAYPMVHFF2ms0Cj0CsGXm9yPxN0eTY bU4ovH3YLccUEpTXcjmVEP6/fSLUd7p9SHCf/K9E6dsms7jRvn+ui8XKBQP/kLIv 3N1np9c/QBBtbRIlAxyciRQEfgjv13AVYwQfo1g1dXpnwWwLwAjXFEn7iv9KA8D6 +WScD/eglZJYiy1v8/svK/XdVlNzF5ZL/b5LOJs09jdpfbmYmNXrSuiuoxwpwpIT 3ZTXYL6yPCOBVKtAtF8sDti9j0QvD/Ji9b85GX/7UhGaK0kdrMWFtv2u+C1rzqwn +31HuV+UyOxT3O57zCcfqLW2EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCD7vn9U MqGinmK+ZCbfJGOyc+lkMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeuoaH3Om61pJlBKMBZ5GIeFg1jgQCCxfbor7wyR+pkb1WdH1tOxxb vjG2xA0AB908VX4VvAYeuyCVICTfAwXfgN6qk0QSwQjYyAmctf0XmNgA/gIksqjY wnxluqioswPYiBQJ7Ha1N1Ff9oQgclhcAjVEnVxT2JO/1bdS5jA/Hp3Y5kUthNEV eEAwTa9U33Ma0F65zTIOMr/bqyFhdt38S7FJ+4ZZTMQ2LMXmYgcNY3mIcOf58jB6 14siHKNLidTp0IpEFHwHPN+nfu5qk1B7+RtF8xgFinAm8CzwfbrcvAeSgm4h0XCV 2r01vUylTGTboNwYBPA+FHbugz/TZL76 -----END CERTIFICATE-----Generated at Sat May 10 19:29:46 2025 by rpki-client