$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: V3m3T7hxHQjE5cp6BZJMyOU6GFlzEHFB4QOPC+1m6aQ= Subject key identifier: 74:39:2E:3E:6B:F0:EF:D3:4C:C5:80:E4:28:BA:49:F2:C5:49:F5:5A Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 24FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 24FE Signing time: Sat 10 May 2025 14:31:50 +0000 Manifest this update: Sat 10 May 2025 14:31:50 +0000 Manifest next update: Sat 17 May 2025 14:31:50 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: D9Stto4WQJ3Ba+d3kc78wxvqUm9JvD95x7cunddzOQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9470 (0x24fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: May 10 14:31:50 2025 GMT Not After : May 17 14:31:50 2025 GMT Subject: CN=681f6356-f2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9c:35:23:3f:14:17:56:7e:47:e4:de:fc:5f: 2c:3e:63:1a:f2:52:01:8e:73:b6:3b:54:a0:1f:3d: 03:6a:8d:c2:c6:d5:f9:05:14:43:31:36:2b:2d:6e: 79:c8:8f:d9:3b:bd:52:65:ef:3a:db:42:29:b6:7f: 22:f5:c8:27:8a:e6:a0:e8:8e:8f:87:20:40:8c:e7: b4:14:3a:95:f6:85:ad:b6:9c:34:92:56:0b:45:a5: 99:25:fa:c8:49:d4:a6:7d:93:62:ff:80:07:51:70: 67:78:f8:66:02:f9:e2:a5:87:52:1c:93:2a:d0:d5: 77:f5:af:06:97:16:c4:7f:76:6d:ff:99:25:09:25: 15:e8:ef:a5:18:2d:6a:2d:03:ef:bd:e3:b2:c0:04: 94:51:f1:c4:6f:a9:8b:40:2c:ce:a7:0b:30:c5:42: 5c:e6:ab:ec:65:fe:31:87:38:ab:29:03:78:73:39: a6:56:49:ac:36:f0:3b:9e:9c:89:37:85:f1:4b:4c: 4f:e4:16:6e:ad:48:dd:0d:30:59:71:10:fb:49:c5: cc:41:7c:6c:c0:a9:d9:b8:ef:ee:83:4b:61:06:3c: 97:95:88:34:e7:19:13:e6:91:82:06:b1:40:c6:3e: 71:7e:04:f2:f5:b9:1b:bb:eb:b5:cc:e3:ee:7d:e2: 46:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:39:2E:3E:6B:F0:EF:D3:4C:C5:80:E4:28:BA:49:F2:C5:49:F5:5A X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:4c:0e:43:9f:a4:52:b9:cd:97:95:c5:b9:b4:33:26:6d:e1: 8e:1d:12:25:ea:ce:bc:02:0a:9d:67:39:e4:e6:bd:07:d0:7f: 3a:90:42:1f:dd:05:fd:00:0c:0d:cd:89:50:c5:af:0b:5d:e2: 80:3c:dd:85:9c:5d:2d:b9:75:1a:58:1c:8d:22:94:eb:c8:04: 4e:3f:7e:5d:ab:2f:3a:68:3a:54:67:1f:6e:e7:98:2e:ae:62: 12:10:9d:52:15:9a:23:d0:b1:c2:da:51:ca:7e:ec:ab:d0:f0: b1:36:5c:2d:79:ff:73:70:26:bb:9c:ae:b7:ed:68:d1:43:13: a4:d3:da:39:e6:f4:2b:82:6c:11:7c:8a:45:ed:c2:d4:0e:3a: a4:9e:4f:66:f0:2a:23:6b:c3:20:92:14:3e:f0:c1:a7:f4:06: f8:e2:6e:f9:70:65:74:2c:e9:00:51:2d:db:51:72:d7:2e:a5: 25:5a:1e:80:cb:0c:d9:36:37:ad:36:17:2a:e2:6c:ee:18:cb: 23:ae:0d:f3:ca:39:23:75:4a:2e:8c:fc:8d:05:4b:9d:84:c8: 32:b0:02:0e:22:68:82:a0:35:d7:cc:f6:4d:3a:91:c8:ae:1f: db:cc:0a:af:1e:5a:9e:8b:c0:22:9a:a5:f5:9f:4f:0d:a1:d2: ad:be:46:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNTEwMTQzMTUwWhcNMjUwNTE3MTQzMTUwWjAYMRYwFAYD VQQDEw02ODFmNjM1Ni1mMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Jw1Iz8UF1Z+R+Te/F8sPmMa8lIBjnO2O1SgHz0Dao3CxtX5BRRDMTYrLW55 yI/ZO71SZe8620Iptn8i9cgniuag6I6PhyBAjOe0FDqV9oWttpw0klYLRaWZJfrI SdSmfZNi/4AHUXBnePhmAvnipYdSHJMq0NV39a8GlxbEf3Zt/5klCSUV6O+lGC1q LQPvveOywASUUfHEb6mLQCzOpwswxUJc5qvsZf4xhzirKQN4czmmVkmsNvA7npyJ N4XxS0xP5BZurUjdDTBZcRD7ScXMQXxswKnZuO/ug0thBjyXlYg05xkT5pGCBrFA xj5xfgTy9bkbu+u1zOPufeJGEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQ5Lj5r 8O/TTMWA5Ci6SfLFSfVaMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPTA5Dn6RSuc2XlcW5tDMmbeGOHRIl6s68AgqdZznk5r0H0H86kEIf 3QX9AAwNzYlQxa8LXeKAPN2FnF0tuXUaWByNIpTryAROP35dqy86aDpUZx9u55gu rmISEJ1SFZoj0LHC2lHKfuyr0PCxNlwtef9zcCa7nK637WjRQxOk09o55vQrgmwR fIpF7cLUDjqknk9m8Coja8MgkhQ+8MGn9Ab44m75cGV0LOkAUS3bUXLXLqUlWh6A ywzZNjetNhcq4mzuGMsjrg3zyjkjdUoujPyNBUudhMgysAIOImiCoDXXzPZNOpHI rh/bzAqvHlqei8AimqX1n08NodKtvkZr -----END CERTIFICATE-----Generated at Mon May 12 04:22:31 2025 by rpki-client