$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: rzYsuVeDYM7THz5FE2vIRsFcG+20xQPIrZ4tbOHUgCk= Subject key identifier: DB:13:C4:E2:AA:7A:5D:59:EC:DF:69:60:F5:1E:1B:AE:18:43:06:DD Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 0860 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 085A Signing time: Wed 14 May 2025 20:50:02 +0000 Manifest this update: Wed 14 May 2025 20:50:01 +0000 Manifest next update: Wed 21 May 2025 20:50:01 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: hrbAU9pfx7FMJmfnMNQ0XPswL3oX34ltnP967B6lPa0=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: 04/HwV26/Fx1bZoGuRdSyRLiYV06aFK5mycaJ+/tqsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2144 (0x860) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: May 14 20:50:01 2025 GMT Not After : May 21 20:50:01 2025 GMT Subject: CN=682501f9-7201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5b:a0:4a:83:f9:3b:81:9a:a7:69:61:8c:14: 71:0b:f5:c9:b7:fc:cf:d0:9f:c1:3c:53:60:33:cb: 6c:be:f9:2e:70:51:65:92:1c:44:23:8b:5c:33:41: 25:d1:80:95:66:a7:bb:0b:95:7f:62:95:e7:ad:a4: 82:ff:a8:df:3b:9d:13:d5:52:54:fe:bf:14:c9:f7: 43:f8:0d:6e:58:ed:6c:4d:82:a1:72:31:39:6c:59: 14:90:19:4a:b9:ef:17:70:78:18:fc:ff:0c:49:10: 4d:fd:c3:5a:50:35:9b:12:84:43:3c:2c:a3:ad:16: 49:52:ea:45:63:1c:ac:07:f4:90:4f:67:84:7f:61: 41:3f:a6:73:28:26:b6:4b:54:66:09:89:7d:08:42: 0c:d8:c7:34:3f:47:5e:04:89:e7:f2:58:9c:5e:31: b2:7e:9d:b8:00:bd:2a:b2:5b:f1:b3:e7:04:5e:18: cf:fe:dc:41:d2:47:57:2e:eb:e3:38:77:3f:d6:83: 3e:5b:b5:47:7f:da:6f:81:19:db:71:5f:18:b8:40: ca:88:24:01:56:86:8d:2a:39:04:42:73:42:54:5f: 71:af:ad:36:2f:59:2d:41:91:59:9c:18:a5:a0:f8: e6:36:f1:4d:9a:7b:c1:fe:ef:2a:e3:af:7b:ef:9f: 76:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:13:C4:E2:AA:7A:5D:59:EC:DF:69:60:F5:1E:1B:AE:18:43:06:DD X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b5:35:bd:d2:f7:ed:75:77:88:06:56:b3:72:c5:93:72:0c: d0:bf:a0:f1:31:0b:f8:9c:db:14:20:22:f3:11:5d:3f:ab:3c: 86:cc:2b:dd:83:32:11:74:6e:83:86:fa:88:86:e0:17:b1:51: 18:7c:45:cf:8f:63:41:91:80:7b:85:ae:8e:1d:21:3d:11:45: 58:90:ad:62:c9:f3:f4:48:94:4b:2b:a9:bc:43:10:e4:97:b9: 08:cb:98:1e:37:e0:f9:7f:47:46:11:49:98:a2:d7:bc:08:a2: 77:47:4d:06:3b:8a:69:16:05:f5:be:34:ae:27:a9:e9:f2:7c: 0b:cf:f7:ac:b4:b7:ab:63:d6:be:65:32:c2:df:06:38:66:07: b1:78:00:cd:eb:c5:ca:a8:5f:89:56:47:f8:92:fd:47:c9:90: b3:cd:39:6b:68:e1:c9:01:fd:eb:8b:79:8f:84:3d:2c:0c:5a: 1c:c1:3c:b3:6e:19:2d:56:d4:0a:98:61:72:67:b8:e0:30:1e: e0:f4:85:de:12:74:89:b7:36:d2:0a:32:07:89:49:fb:02:b0: 67:a9:22:17:e4:0a:80:e4:d7:d8:b8:3b:2d:7a:2b:4f:1f:bf: 64:52:32:75:e9:bb:bb:9b:28:35:f6:90:73:26:30:a0:7c:76: 12:54:db:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjUwNTE0MjA1MDAxWhcNMjUwNTIxMjA1MDAxWjAYMRYwFAYD VQQDEw02ODI1MDFmOS03MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFugSoP5O4Gap2lhjBRxC/XJt/zP0J/BPFNgM8tsvvkucFFlkhxEI4tcM0El 0YCVZqe7C5V/YpXnraSC/6jfO50T1VJU/r8UyfdD+A1uWO1sTYKhcjE5bFkUkBlK ue8XcHgY/P8MSRBN/cNaUDWbEoRDPCyjrRZJUupFYxysB/SQT2eEf2FBP6ZzKCa2 S1RmCYl9CEIM2Mc0P0deBInn8licXjGyfp24AL0qslvxs+cEXhjP/txB0kdXLuvj OHc/1oM+W7VHf9pvgRnbcV8YuEDKiCQBVoaNKjkEQnNCVF9xr602L1ktQZFZnBil oPjmNvFNmnvB/u8q46977592DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsTxOKq el1Z7N9pYPUeG64YQwbdMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArtTW90vftdXeIBlazcsWTcgzQv6DxMQv4nNsUICLzEV0/qzyGzCvd gzIRdG6DhvqIhuAXsVEYfEXPj2NBkYB7ha6OHSE9EUVYkK1iyfP0SJRLK6m8QxDk l7kIy5geN+D5f0dGEUmYote8CKJ3R00GO4ppFgX1vjSuJ6np8nwLz/estLerY9a+ ZTLC3wY4ZgexeADN68XKqF+JVkf4kv1HyZCzzTlraOHJAf3ri3mPhD0sDFocwTyz bhktVtQKmGFyZ7jgMB7g9IXeEnSJtzbSCjIHiUn7ArBnqSIX5AqA5NfYuDsteitP H79kUjJ16bu7myg19pBzJjCgfHYSVNtB -----END CERTIFICATE-----Generated at Fri May 16 14:34:46 2025 by rpki-client