$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: VwQRRmF5colYnRbZZ7WHH3mbS6DU5nSzMu9alASu/RI= Subject key identifier: 52:38:6C:D3:E5:5A:45:AD:DC:BC:FC:F7:BF:F6:54:0D:21:3E:30:D4 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: A1 Signing time: Tue 13 May 2025 05:25:35 +0000 Manifest this update: Tue 13 May 2025 05:25:34 +0000 Manifest next update: Tue 20 May 2025 05:25:34 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: N3Y5n4hzQwokZS/ogbwV1oZVps1q7A0t/lHMS6egX5g=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: tpxknLltESXlXvrC8XRzEEbUw6cbAqdQTGW1X5phwoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: May 13 05:25:34 2025 GMT Not After : May 20 05:25:34 2025 GMT Subject: CN=6822d7cf-0e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:a8:b4:45:53:92:e8:5a:36:81:16:f9:29: 30:00:69:49:ab:fc:03:ad:e8:dc:6c:18:ba:83:af: c7:5d:b7:c0:f5:11:23:d8:6b:bc:77:62:37:b0:1e: 4a:7e:27:8d:22:dc:a5:ce:67:1a:34:9c:81:8c:bc: b8:39:aa:3c:87:21:e9:17:f4:e6:22:ba:fa:8d:54: 53:4b:d3:b2:e6:53:6a:60:05:6f:2c:bd:c9:ec:b8: 88:31:15:df:d4:13:38:98:0e:74:f2:7d:09:70:96: a9:01:56:34:71:86:fb:4f:ea:b6:08:c4:75:be:f9: 81:99:32:99:19:0a:66:28:d7:f9:ba:68:86:1c:1b: 3f:f4:d1:a7:07:b7:e1:64:00:1e:6a:4d:2e:f9:e7: 49:2d:45:db:a1:e1:78:ae:1c:3d:51:48:1d:e9:d9: 56:10:86:5b:83:a3:36:de:21:39:3d:48:8d:23:de: 9f:92:96:42:49:08:37:36:df:8d:8e:5b:43:0b:44: 00:8b:02:21:60:d7:bd:5a:01:bd:7e:48:d1:b7:59: 24:05:c9:7e:c8:d8:29:ff:b2:31:fb:25:51:32:21: a7:3d:6f:10:97:a4:4f:91:0d:9a:a1:19:27:67:3c: 22:1d:55:7c:96:ab:55:24:ae:1b:4f:61:30:eb:c4: f0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:38:6C:D3:E5:5A:45:AD:DC:BC:FC:F7:BF:F6:54:0D:21:3E:30:D4 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:81:e9:f7:f9:d4:eb:ce:31:63:1b:e8:b2:d1:6a:4a:cd:af: ed:8a:61:4a:ef:99:42:d8:e6:5f:eb:e5:66:ab:d0:39:85:78: 6b:ac:ae:f2:d4:45:83:dc:d2:90:d5:6d:94:8d:e2:33:c9:38: de:a6:c7:f5:8c:cd:b5:d9:11:e1:61:81:31:a7:9c:54:75:07: a4:cf:ee:6e:75:dd:e4:ed:6d:e0:61:89:e3:87:ba:85:5e:4a: b6:4a:c9:d1:91:45:99:d7:fa:39:2a:dd:9e:da:b0:aa:d8:f8: 25:4a:8c:7b:46:c4:6f:2d:29:d4:97:fc:6d:ad:f6:6a:f9:69: 1c:dc:97:4a:f0:c8:90:f2:7e:05:63:53:c3:d5:6b:90:6b:9e: 79:af:78:ee:ed:e8:1f:20:92:34:e7:f3:63:aa:61:03:9f:5d: 9b:88:f9:be:ba:1b:06:45:20:1d:86:d5:ee:6e:1e:13:a1:d7: 4a:3c:15:ef:a7:ae:b3:d0:47:fc:e2:dd:58:1f:a1:05:b0:82: 0a:bf:11:49:67:80:bc:5f:2b:b7:bb:a5:b4:1f:24:f3:0c:82: 9d:38:fb:e6:52:65:01:dc:c2:82:17:79:c3:0f:52:f6:a0:91: 77:a7:dd:c3:86:6a:83:65:86:84:f7:c1:62:15:15:6e:92:79: 72:be:54:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUwNTEzMDUyNTM0WhcNMjUwNTIwMDUyNTM0WjAYMRYwFAYD VQQDEw02ODIyZDdjZi0wZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPCotEVTkuhaNoEW+SkwAGlJq/wDrejcbBi6g6/HXbfA9REj2Gu8d2I3sB5K fieNItylzmcaNJyBjLy4Oao8hyHpF/TmIrr6jVRTS9Oy5lNqYAVvLL3J7LiIMRXf 1BM4mA508n0JcJapAVY0cYb7T+q2CMR1vvmBmTKZGQpmKNf5umiGHBs/9NGnB7fh ZAAeak0u+edJLUXboeF4rhw9UUgd6dlWEIZbg6M23iE5PUiNI96fkpZCSQg3Nt+N jltDC0QAiwIhYNe9WgG9fkjRt1kkBcl+yNgp/7Ix+yVRMiGnPW8Ql6RPkQ2aoRkn ZzwiHVV8lqtVJK4bT2Ew68Tw1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFI4bNPl WkWt3Lz897/2VA0hPjDUMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArgen3+dTrzjFjG+iy0WpKza/timFK75lC2OZf6+Vmq9A5hXhrrK7y 1EWD3NKQ1W2UjeIzyTjepsf1jM212RHhYYExp5xUdQekz+5udd3k7W3gYYnjh7qF Xkq2SsnRkUWZ1/o5Kt2e2rCq2PglSox7RsRvLSnUl/xtrfZq+Wkc3JdK8MiQ8n4F Y1PD1WuQa555r3ju7egfIJI05/NjqmEDn12biPm+uhsGRSAdhtXubh4ToddKPBXv p66z0Ef84t1YH6EFsIIKvxFJZ4C8Xyu3u6W0HyTzDIKdOPvmUmUB3MKCF3nDD1L2 oJF3p93DhmqDZYaE98FiFRVuknlyvlRa -----END CERTIFICATE-----Generated at Tue May 13 15:18:07 2025 by rpki-client