$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: HhJHgCxVA8bO9t7hOQA0cH4ssZwe9M4aR7SpgOB990U= Subject key identifier: 9D:F7:F1:A6:7A:EF:FF:8A:68:5C:7A:11:D5:09:3F:67:20:5F:C8:65 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 02BC Signing time: Thu 15 May 2025 01:27:26 +0000 Manifest this update: Thu 15 May 2025 01:27:25 +0000 Manifest next update: Thu 22 May 2025 01:27:25 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: JoVjCmWkgsL26xxE840Xkg9XfvTCFF6pTq5yVQdcgdg=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: cUJGyZcVowcCyXH2QiojzhWnaBYy0l9+HvH8D9IR1zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: May 15 01:27:25 2025 GMT Not After : May 22 01:27:25 2025 GMT Subject: CN=682542fe-8066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:88:2b:18:40:fb:88:24:85:30:c7:bd:ae: af:f4:e0:2e:d8:8c:f7:5f:bf:95:48:f1:ea:f6:51: e0:a4:d9:30:0e:31:45:1a:19:7a:36:fc:bb:6e:f5: 9f:d3:c1:4d:b8:32:62:5c:f9:82:85:ac:67:8c:10: 7b:a7:d9:53:58:53:f0:1f:de:e6:43:e6:37:c1:ea: 55:52:46:c0:90:c9:e0:9f:b7:9a:7a:25:0e:50:9b: 07:69:07:ee:bd:81:3f:b5:53:31:8a:9c:b9:c9:22: e1:34:6d:34:6a:71:77:52:a3:35:9d:ec:40:d5:6d: b7:9e:ce:5f:3d:aa:fc:f2:51:10:a3:7c:64:a4:d7: ec:19:92:34:90:ea:d0:39:3e:60:99:e9:df:3b:1b: c9:5c:d7:aa:66:6e:4d:81:3f:5c:17:51:e6:7a:51: 9b:2f:1d:fa:ec:d3:0e:ea:99:01:93:a3:28:42:75: f1:3b:c7:82:0e:22:7f:07:3f:f2:56:9f:5e:0f:d5: 54:96:dd:b9:94:49:cd:99:c6:a4:29:1b:84:ae:91: 6c:fa:48:a2:d2:31:ec:08:74:7a:fd:2c:66:78:ac: cf:b2:66:7b:ec:6a:7a:1d:5d:10:1f:ca:91:dd:13: cb:2e:6a:2a:c2:03:03:d8:ff:aa:f3:3c:40:a7:8a: 07:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F7:F1:A6:7A:EF:FF:8A:68:5C:7A:11:D5:09:3F:67:20:5F:C8:65 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:34:b1:b7:37:32:f9:ea:41:bb:58:e1:ea:33:ed:4e:69:8c: dc:6e:fc:05:47:57:82:d1:f8:da:07:21:50:c2:bb:b4:b4:8f: 75:a0:1c:c6:27:c3:ce:b2:51:89:1a:f3:b3:75:3f:b0:16:c3: 1c:93:8d:b0:0c:6f:b7:dd:62:74:c3:a2:19:70:27:da:b1:d1: 2b:22:8c:9d:77:62:70:46:30:c3:f7:f9:66:9e:45:c6:f0:4f: 69:a1:2c:a3:07:d3:0b:26:17:e6:8c:f2:bf:95:f0:ce:93:65: c8:db:e0:02:ca:77:b7:ad:52:40:09:51:78:1f:ec:6e:3c:e5: d2:ff:34:c7:33:17:7b:90:0e:f0:b9:5a:78:05:e9:14:b6:9f: 75:34:38:56:10:9f:fa:f2:8f:28:7b:4a:64:03:9e:d8:c2:41: 9a:7a:f1:c8:05:10:88:c3:e4:cd:a2:2f:b9:43:83:f5:d2:e7: da:99:aa:7c:49:ea:0a:a8:f9:32:32:34:86:73:fb:63:1e:75: 12:7a:01:72:85:bb:30:27:75:d6:8c:15:ff:da:77:c9:3c:e6: 59:c7:d6:d9:b9:ee:be:33:f3:60:0c:10:0c:bf:2f:61:5a:c1: fa:61:d0:db:2d:80:4e:79:7a:17:9e:cb:26:55:1e:01:2e:db: 1c:db:97:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwNTE1MDEyNzI1WhcNMjUwNTIyMDEyNzI1WjAYMRYwFAYD VQQDEw02ODI1NDJmZS04MDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/GIKxhA+4gkhTDHva6v9OAu2Iz3X7+VSPHq9lHgpNkwDjFFGhl6Nvy7bvWf 08FNuDJiXPmChaxnjBB7p9lTWFPwH97mQ+Y3wepVUkbAkMngn7eaeiUOUJsHaQfu vYE/tVMxipy5ySLhNG00anF3UqM1nexA1W23ns5fPar88lEQo3xkpNfsGZI0kOrQ OT5gmenfOxvJXNeqZm5NgT9cF1HmelGbLx367NMO6pkBk6MoQnXxO8eCDiJ/Bz/y Vp9eD9VUlt25lEnNmcakKRuErpFs+kii0jHsCHR6/SxmeKzPsmZ77Gp6HV0QH8qR 3RPLLmoqwgMD2P+q8zxAp4oHzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ338aZ6 7/+KaFx6EdUJP2cgX8hlMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCNLG3NzL56kG7WOHqM+1OaYzcbvwFR1eC0fjaByFQwru0tI91oBzG J8POslGJGvOzdT+wFsMck42wDG+33WJ0w6IZcCfasdErIoydd2JwRjDD9/lmnkXG 8E9poSyjB9MLJhfmjPK/lfDOk2XI2+ACyne3rVJACVF4H+xuPOXS/zTHMxd7kA7w uVp4BekUtp91NDhWEJ/68o8oe0pkA57YwkGaevHIBRCIw+TNoi+5Q4P10ufamap8 SeoKqPkyMjSGc/tjHnUSegFyhbswJ3XWjBX/2nfJPOZZx9bZue6+M/NgDBAMvy9h WsH6YdDbLYBOeXoXnssmVR4BLtsc25c4 -----END CERTIFICATE-----Generated at Sat May 17 00:15:46 2025 by rpki-client