$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: kmRfTzWCb6E0P+7vzsVR3tXMgWRROSksf6xevYeeevM= Subject key identifier: 28:D2:E9:1D:CE:7A:91:BE:9F:4C:19:53:C7:C1:16:6D:A7:8D:D9:76 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 05D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 05CE Signing time: Sat 10 May 2025 22:39:33 +0000 Manifest this update: Sat 10 May 2025 22:39:33 +0000 Manifest next update: Sat 17 May 2025 22:39:33 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: vXk6M6IIvDgmWSXWD6BAeXVPue2mnE008FLHyqWCPnA=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: bgQvr2Jdprt2Ja1Usi3GgYGC5SiLxAPy60mdKqHu2RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: May 10 22:39:33 2025 GMT Not After : May 17 22:39:33 2025 GMT Subject: CN=681fd5a5-96e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b5:ed:3c:d3:32:34:0b:7f:d0:e8:84:da:69: 47:96:d1:b0:c6:17:e3:0e:18:6b:62:de:93:67:34: f2:04:cc:92:a7:fd:0a:79:83:d4:98:dd:23:04:57: 44:9d:5c:9c:10:2c:b5:95:66:74:f2:57:09:bb:54: 2c:3c:32:47:a4:34:55:f0:80:7c:83:53:22:c0:d9: 6a:32:36:fb:15:b5:e1:49:c1:e0:5b:3a:63:50:c9: 31:2b:14:26:59:cc:d2:6c:91:45:06:81:80:30:16: a0:ec:9e:b6:bc:a1:ea:d4:d5:bb:56:07:78:5b:e3: 8f:d4:ce:ee:d5:44:d4:34:4f:e3:82:6d:4b:24:57: d8:ee:5a:7b:aa:59:60:26:eb:84:87:b5:8b:25:5a: c3:b8:64:dd:28:f8:8f:6a:56:64:b4:b1:b4:af:de: 88:63:c7:7d:1a:f1:a8:7c:e4:7a:d5:77:53:57:b7: 98:1a:1b:5e:78:6b:d8:7d:28:1f:ab:70:97:35:ff: 2c:eb:7c:39:13:0f:59:47:56:c5:22:91:19:45:69: 6c:2c:e2:8c:c1:0a:0a:10:2e:d3:c8:a3:14:10:f3: 58:87:ce:e1:cf:f9:b2:64:0c:74:97:fd:51:6a:61: 98:32:f3:f2:90:7b:c8:42:cf:1a:40:3b:bd:95:43: 88:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D2:E9:1D:CE:7A:91:BE:9F:4C:19:53:C7:C1:16:6D:A7:8D:D9:76 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:39:6d:8b:97:0c:a7:89:e1:31:40:dd:50:b4:df:16:66:f3: 4a:49:7b:9c:18:7f:26:e9:86:5b:04:3b:f4:b7:a6:15:dd:1e: d0:96:a9:d7:fd:56:5c:3e:15:29:ae:62:67:0c:40:29:9d:3c: 21:1c:aa:f3:1a:1e:e7:48:e4:8c:44:9b:4c:96:bb:a6:7b:1e: 0b:06:6b:96:40:c1:30:e2:71:35:89:cc:e3:14:fa:a0:7b:73: 5e:e7:65:91:80:b3:39:9c:a2:c5:65:88:c4:af:e5:3f:00:4f: ec:43:af:c9:d3:8b:bb:fb:63:5f:42:bb:5a:f7:2f:40:f8:cb: 05:eb:1d:3b:a2:41:55:64:8a:0b:58:af:1b:f6:03:16:f2:87: 6f:09:52:61:9f:78:58:30:21:8e:a9:79:d8:33:60:e1:65:3e: f8:93:12:b1:40:7e:9a:5d:4f:eb:63:22:b7:fb:d8:8c:f5:29: 76:fc:96:63:d8:68:98:4a:f8:a4:d2:23:65:6a:77:6d:85:cc: 62:27:70:2e:ee:3f:19:f7:fd:72:ca:da:6b:bb:10:a8:2b:e0: 7a:6c:eb:8b:6e:50:ee:16:bd:90:82:68:0a:50:e9:3c:11:4e: 42:e3:cc:74:c8:8f:20:34:38:99:1a:60:a1:eb:56:99:17:48: a9:63:9e:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUwNTEwMjIzOTMzWhcNMjUwNTE3MjIzOTMzWjAYMRYwFAYD VQQDEw02ODFmZDVhNS05NmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLXtPNMyNAt/0OiE2mlHltGwxhfjDhhrYt6TZzTyBMySp/0KeYPUmN0jBFdE nVycECy1lWZ08lcJu1QsPDJHpDRV8IB8g1MiwNlqMjb7FbXhScHgWzpjUMkxKxQm WczSbJFFBoGAMBag7J62vKHq1NW7Vgd4W+OP1M7u1UTUNE/jgm1LJFfY7lp7qllg JuuEh7WLJVrDuGTdKPiPalZktLG0r96IY8d9GvGofOR61XdTV7eYGhteeGvYfSgf q3CXNf8s63w5Ew9ZR1bFIpEZRWlsLOKMwQoKEC7TyKMUEPNYh87hz/myZAx0l/1R amGYMvPykHvIQs8aQDu9lUOInwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjS6R3O epG+n0wZU8fBFm2njdl2MB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABOW2LlwynieExQN1QtN8WZvNKSXucGH8m6YZbBDv0t6YV3R7QlqnX /VZcPhUprmJnDEApnTwhHKrzGh7nSOSMRJtMlrumex4LBmuWQMEw4nE1iczjFPqg e3Ne52WRgLM5nKLFZYjEr+U/AE/sQ6/J04u7+2NfQrta9y9A+MsF6x07okFVZIoL WK8b9gMW8odvCVJhn3hYMCGOqXnYM2DhZT74kxKxQH6aXU/rYyK3+9iM9Sl2/JZj 2GiYSvik0iNlandthcxiJ3Au7j8Z9/1yytpruxCoK+B6bOuLblDuFr2QgmgKUOk8 EU5C48x0yI8gNDiZGmCh61aZF0ipY552 -----END CERTIFICATE-----Generated at Sun May 11 19:59:42 2025 by rpki-client