$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: /VW68SDpQMgz1WzsH/a5UZqfkPA6OaNlhbLuew4p22M= Subject key identifier: E3:E2:12:BD:9A:4F:74:48:8D:FA:CC:48:E4:97:BB:05:F3:70:37:C4 Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 13D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 13CD Signing time: Wed 14 May 2025 17:01:35 +0000 Manifest this update: Wed 14 May 2025 17:01:34 +0000 Manifest next update: Wed 21 May 2025 17:01:34 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: q6kOdoDKBNKRMXOPFHguix3jf67HsLwDnP+ALro0NcY=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: dlJ7zH1d3oXPs3S0YirZQi1hSZzUrfDhpzP6MZkDSDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5080 (0x13d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: May 14 17:01:34 2025 GMT Not After : May 21 17:01:34 2025 GMT Subject: CN=6824cc6f-9ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:c1:34:a9:7e:a4:ce:4d:7b:11:94:60:5b: 0e:57:c8:46:aa:a5:61:6d:89:02:5d:5c:eb:09:28: 5c:9a:9f:e2:e3:35:5c:8e:6e:0e:a1:9b:76:1b:93: f4:bc:13:6f:e0:97:2b:e7:4d:38:5a:c7:48:d8:96: 5a:55:4c:8e:05:25:32:6a:a6:a0:f6:c2:60:21:1d: 50:7b:ff:a4:77:c6:0b:95:79:19:5c:cb:81:02:c1: bf:1b:9e:fc:26:ca:b1:f8:be:6b:01:0c:18:6d:75: 9d:69:79:b1:17:e7:f1:b7:1b:57:0c:a1:a9:f5:59: 9a:1d:dd:b6:92:c5:50:13:71:c9:c4:9f:21:e7:5b: ad:1f:24:76:e4:0c:36:94:ab:fc:b9:a9:23:9e:14: 59:08:95:3c:89:9f:1d:7c:27:c1:51:7a:1b:b8:23: ee:4d:26:89:f0:f0:f1:f2:72:c5:2c:ef:b6:e8:65: 1f:28:ba:3e:89:df:85:c1:62:29:4b:8b:3a:ae:95: c9:b6:09:e9:6f:ad:43:64:cb:8e:50:e5:c2:21:ee: ff:4b:a7:c7:b5:f1:25:f1:2c:c0:10:46:ea:da:79: d1:17:4d:44:85:c3:72:57:9f:16:9d:8f:8f:51:41: 82:cb:76:9a:fd:04:8f:6e:2e:d7:1e:18:36:97:22: 0a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E2:12:BD:9A:4F:74:48:8D:FA:CC:48:E4:97:BB:05:F3:70:37:C4 X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:03:9b:88:10:22:bb:f9:c8:f1:40:b9:7a:15:55:c5:c2:3b: dd:5f:aa:9b:ce:e6:da:df:ae:5e:b3:d8:d7:08:4f:60:2f:30: b3:34:b7:49:da:1a:48:1e:a0:40:ba:42:30:4c:e1:64:9c:79: 74:06:b7:2d:36:3f:c5:63:77:b2:55:63:aa:25:c1:79:2b:de: 1d:07:d3:15:8d:d3:31:dd:a4:5e:66:41:7d:40:ce:d8:3e:5d: f5:2f:3b:88:33:d2:45:b6:94:b7:8e:2e:2d:74:0a:d6:20:9e: d0:4e:a5:75:ab:94:12:f0:d2:4a:97:f5:fe:67:09:c0:57:d5: 07:2e:d9:cf:f5:bc:9c:d6:23:31:38:3a:58:2a:6b:eb:ba:39: c5:42:7c:7b:ef:2c:32:22:03:a5:c9:c8:3e:6c:e4:c5:08:b8: 1b:67:28:83:c4:58:d7:a3:08:8a:c3:33:d1:b0:89:52:03:4a: fb:72:8e:60:8b:c3:d0:30:e7:52:20:29:6d:e7:5b:26:5a:4a: d8:32:34:ca:61:98:78:95:18:91:85:50:b6:13:6e:28:7a:48: 3f:4c:3b:21:bb:c3:ff:df:89:2c:5b:9e:79:b8:d7:5c:b5:40: 66:e0:06:34:f1:50:f8:ef:c6:26:b8:76:a8:b2:49:76:15:01: f7:7e:80:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUwNTE0MTcwMTM0WhcNMjUwNTIxMTcwMTM0WjAYMRYwFAYD VQQDEw02ODI0Y2M2Zi05ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKPBNKl+pM5NexGUYFsOV8hGqqVhbYkCXVzrCShcmp/i4zVcjm4OoZt2G5P0 vBNv4Jcr5004WsdI2JZaVUyOBSUyaqag9sJgIR1Qe/+kd8YLlXkZXMuBAsG/G578 Jsqx+L5rAQwYbXWdaXmxF+fxtxtXDKGp9VmaHd22ksVQE3HJxJ8h51utHyR25Aw2 lKv8uakjnhRZCJU8iZ8dfCfBUXobuCPuTSaJ8PDx8nLFLO+26GUfKLo+id+FwWIp S4s6rpXJtgnpb61DZMuOUOXCIe7/S6fHtfEl8SzAEEbq2nnRF01EhcNyV58WnY+P UUGCy3aa/QSPbi7XHhg2lyIKxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPiEr2a T3RIjfrMSOSXuwXzcDfEMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTA5uIECK7+cjxQLl6FVXFwjvdX6qbzuba365es9jXCE9gLzCzNLdJ 2hpIHqBAukIwTOFknHl0BrctNj/FY3eyVWOqJcF5K94dB9MVjdMx3aReZkF9QM7Y Pl31LzuIM9JFtpS3ji4tdArWIJ7QTqV1q5QS8NJKl/X+ZwnAV9UHLtnP9byc1iMx ODpYKmvrujnFQnx77ywyIgOlycg+bOTFCLgbZyiDxFjXowiKwzPRsIlSA0r7co5g i8PQMOdSIClt51smWkrYMjTKYZh4lRiRhVC2E24oekg/TDshu8P/34ksW555uNdc tUBm4AY08VD478YmuHaoskl2FQH3foAN -----END CERTIFICATE-----Generated at Thu May 15 20:41:55 2025 by rpki-client