$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: 25s8II7rwNPcM/dPb5URZfPdhlBBYclsb0t5xIhwNHc= Subject key identifier: 2E:50:4C:E0:E4:0C:BC:5C:E6:F2:96:46:6C:6B:39:F0:24:6D:D7:8C Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0ADA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0ABB Signing time: Thu 08 May 2025 19:27:12 +0000 Manifest this update: Thu 08 May 2025 19:27:12 +0000 Manifest next update: Thu 15 May 2025 19:27:12 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: 8WxWsAyIjZqQ57KbDTS5z1K5YRmMfjp+yxuFJT+GSqM=) 2: E3BA5BC629C411F0B7BC5B32C4F9AE02.roa (hash: 5G76QrxV9fckMMwL2Z7gwLl+Gfb46qKRQLob4M+pm5k=) 3: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 19:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: May 8 19:27:12 2025 GMT Not After : May 15 19:27:12 2025 GMT Subject: CN=681d0590-ba13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:ad:03:03:67:ba:4d:26:df:86:49:d9:a6: b9:e6:32:ae:01:e2:48:2e:4c:2b:30:c5:84:3b:3a: 48:ba:9a:fc:3f:e7:cf:8c:c4:3d:16:2d:0a:90:b7: 4f:68:4f:89:2e:f9:28:5e:cc:e6:05:01:f3:6e:5e: 9e:45:b4:39:aa:e0:15:28:35:70:90:6e:4b:27:ce: 38:3b:ee:63:8f:ce:78:dc:72:25:ab:34:8b:37:df: 04:f9:e9:8b:36:f7:c9:66:f5:ed:a8:0f:ed:94:a9: b3:b0:da:ee:b3:ed:7c:66:a2:15:d7:cf:f5:8d:54: b4:8f:de:c7:5e:78:de:34:bf:8a:06:cd:fa:33:3a: ec:e9:05:dc:e1:2c:6d:ed:1a:72:61:5e:7b:02:91: fd:90:55:6b:38:77:2d:10:43:24:1b:a8:44:07:a8: 8f:0a:85:cc:56:e8:05:12:76:6c:7c:8a:a9:b0:6c: 6d:82:e2:57:c8:c3:fb:7d:bc:f5:f2:88:0c:20:3d: f6:07:df:bb:4c:9e:27:73:38:c6:25:b7:d2:90:13: 24:89:37:d0:73:42:93:26:da:84:03:d7:2f:6b:66: 59:e8:c3:de:c8:40:95:d1:cb:fc:47:14:00:5f:32: c3:c9:4a:38:09:6a:47:7e:94:7f:d9:de:5e:63:1d: d5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:50:4C:E0:E4:0C:BC:5C:E6:F2:96:46:6C:6B:39:F0:24:6D:D7:8C X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:8f:69:fd:42:17:50:e2:7a:93:12:12:8e:02:1c:c2:48:20: f4:25:68:f9:c3:09:e6:72:df:e0:42:c3:23:dd:44:93:12:53: 42:55:dc:1b:c6:0f:fd:76:97:a3:85:df:bc:d2:ab:89:7e:45: 8b:35:b1:b9:e3:92:49:bc:38:c5:95:0f:18:3e:a5:4e:70:0f: f0:a7:40:e1:f4:13:da:8b:96:c9:e7:ab:c3:e8:bf:b5:d1:a8: db:e8:39:04:26:15:3b:ed:93:0c:e5:4a:1d:ef:46:bf:02:b9: 1f:11:8d:8f:bf:31:62:10:3e:73:ab:07:53:5b:e9:9e:f2:1f: 47:2e:26:2b:1b:9e:0d:24:7a:69:3f:88:29:19:1f:27:17:c8: b4:c8:5e:4c:f6:41:fe:fe:83:e1:ae:6d:e2:d6:fb:c1:c2:d7: 8a:a6:e7:cf:0f:4a:f2:a7:89:fc:02:c7:11:81:b4:27:b0:4a: fa:43:7a:17:4c:c0:d0:95:ea:35:ea:aa:ef:b2:00:48:44:ba: fd:bf:ca:7e:02:5a:29:45:0b:3b:a8:98:f2:32:2c:78:ea:97: bd:3f:5d:83:bb:2d:3a:04:83:7c:d8:94:85:79:f5:e0:5c:a5: bc:b2:5f:26:63:f9:c5:12:6a:ad:c2:22:aa:1a:6e:11:ea:65: 25:35:b1:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwNTA4MTkyNzEyWhcNMjUwNTE1MTkyNzEyWjAYMRYwFAYD VQQDEw02ODFkMDU5MC1iYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnqtAwNnuk0m34ZJ2aa55jKuAeJILkwrMMWEOzpIupr8P+fPjMQ9Fi0KkLdP aE+JLvkoXszmBQHzbl6eRbQ5quAVKDVwkG5LJ844O+5jj8543HIlqzSLN98E+emL NvfJZvXtqA/tlKmzsNrus+18ZqIV18/1jVS0j97HXnjeNL+KBs36Mzrs6QXc4Sxt 7RpyYV57ApH9kFVrOHctEEMkG6hEB6iPCoXMVugFEnZsfIqpsGxtguJXyMP7fbz1 8ogMID32B9+7TJ4nczjGJbfSkBMkiTfQc0KTJtqEA9cva2ZZ6MPeyECV0cv8RxQA XzLDyUo4CWpHfpR/2d5eYx3VTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5QTODk DLxc5vKWRmxrOfAkbdeMMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9j2n9QhdQ4nqTEhKOAhzCSCD0JWj5wwnmct/gQsMj3USTElNCVdwb xg/9dpejhd+80quJfkWLNbG545JJvDjFlQ8YPqVOcA/wp0Dh9BPai5bJ56vD6L+1 0ajb6DkEJhU77ZMM5Uod70a/ArkfEY2PvzFiED5zqwdTW+me8h9HLiYrG54NJHpp P4gpGR8nF8i0yF5M9kH+/oPhrm3i1vvBwteKpufPD0ryp4n8AscRgbQnsEr6Q3oX TMDQleo16qrvsgBIRLr9v8p+AlopRQs7qJjyMix46pe9P12Duy06BIN82JSFefXg XKW8sl8mY/nFEmqtwiKqGm4R6mUlNbGW -----END CERTIFICATE-----Generated at Sat May 10 10:03:45 2025 by rpki-client