$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: 9o+3TZv6qMxcACob2YCyp0yKQ2vzO7OAtykkiJ3ID3c= Subject key identifier: 4B:A8:C0:6F:7F:0E:A5:4D:62:B9:32:4C:7F:BF:A0:D3:CD:42:4A:F7 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 0501 Signing time: Sat 10 May 2025 23:16:18 +0000 Manifest this update: Sat 10 May 2025 23:16:18 +0000 Manifest next update: Sat 17 May 2025 23:16:18 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: nq1wZTpbFXeKpVDeJgGa3Hy9cKSgUxDQdDT0vnUcEqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: May 10 23:16:18 2025 GMT Not After : May 17 23:16:18 2025 GMT Subject: CN=681fde42-9b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d7:14:c6:0a:8c:d1:49:9a:25:e3:a9:d5:be: 55:b9:da:19:71:1e:53:9a:0c:3a:75:66:f9:ab:38: f3:81:9d:8b:17:ec:42:4c:8c:4a:67:12:0e:92:da: 14:2c:d5:54:00:37:66:11:5b:d4:d8:22:ba:4b:e2: 3b:48:a3:6d:90:d2:03:19:89:56:dd:47:03:f4:04: 84:fe:ba:14:e1:ac:7d:21:3d:bd:e5:ca:ab:ff:f5: 73:24:bf:b7:7b:c2:ed:de:a2:4f:4c:17:ef:da:28: df:c5:5c:5d:18:be:40:eb:b7:13:cd:40:a8:36:ab: b5:89:b9:40:b4:48:52:f0:bd:f7:ed:f1:91:fa:b3: 14:72:5d:76:c0:38:84:f3:bb:25:ea:a7:1c:ba:e1: 1a:32:0a:82:bd:dd:15:2f:6f:05:d2:cd:97:86:2b: cb:32:ac:03:54:68:48:c2:42:20:f6:6a:2c:14:e5: 17:14:e2:55:f2:f2:54:94:4e:35:05:a5:f7:ab:7a: b3:82:8f:76:ca:bc:65:2a:2d:94:14:0f:7d:f0:d2: 23:c3:bf:a1:76:66:ba:92:a6:53:18:91:f8:49:24: 53:07:27:04:28:ae:76:21:93:01:95:d5:a2:b2:09: ad:96:36:b5:79:40:bf:4d:9e:e6:59:00:41:6a:fa: ac:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A8:C0:6F:7F:0E:A5:4D:62:B9:32:4C:7F:BF:A0:D3:CD:42:4A:F7 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:0f:ad:a3:19:a6:9e:82:d4:63:83:cf:67:c7:e6:b0:55:2e: fb:08:aa:19:95:55:95:d3:4e:88:6b:06:60:c0:a4:94:fd:62: c9:ec:d8:1c:a5:80:82:b4:07:18:fe:65:da:c0:08:14:44:7b: 18:ea:c6:5e:0e:0a:d3:f6:a7:67:8a:c9:30:11:b0:58:98:ce: 8f:62:0c:ae:2f:c2:84:c7:23:ef:d2:ff:7e:68:20:f0:74:29: 9a:cb:78:1d:04:0f:33:dc:6c:ce:aa:49:21:ac:b0:0d:9b:af: 21:32:ad:c7:84:38:56:d1:a4:8f:ed:a3:3e:b3:06:34:2c:13: 0c:8e:4d:9f:52:c3:00:28:ef:9b:57:e3:f5:50:a6:22:37:a7: d6:9f:68:d4:a7:56:77:9a:7b:15:8b:8a:76:86:1c:26:51:fc: a2:1f:7c:66:e9:ca:87:c2:5d:24:f6:8e:6f:6d:78:08:cf:ee: f3:c1:98:b1:e5:b8:91:09:0c:aa:82:02:89:fa:5c:40:ad:11: 2f:26:81:d3:2a:d5:ee:b9:97:ee:87:7a:8a:bc:88:ce:f5:fc: 28:9d:5c:34:87:7b:af:f3:47:b0:29:d5:fe:16:b0:db:a5:64: 48:30:5d:e3:9c:26:fe:1b:b3:a9:02:36:6b:18:23:f1:17:ee: 41:f0:b9:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUwNTEwMjMxNjE4WhcNMjUwNTE3MjMxNjE4WjAYMRYwFAYD VQQDEw02ODFmZGU0Mi05YjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NcUxgqM0UmaJeOp1b5VudoZcR5Tmgw6dWb5qzjzgZ2LF+xCTIxKZxIOktoU LNVUADdmEVvU2CK6S+I7SKNtkNIDGYlW3UcD9ASE/roU4ax9IT295cqr//VzJL+3 e8Lt3qJPTBfv2ijfxVxdGL5A67cTzUCoNqu1iblAtEhS8L337fGR+rMUcl12wDiE 87sl6qccuuEaMgqCvd0VL28F0s2XhivLMqwDVGhIwkIg9mosFOUXFOJV8vJUlE41 BaX3q3qzgo92yrxlKi2UFA998NIjw7+hdma6kqZTGJH4SSRTBycEKK52IZMBldWi sgmtlja1eUC/TZ7mWQBBavqsWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuowG9/ DqVNYrkyTH+/oNPNQkr3MB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDiD62jGaaegtRjg89nx+awVS77CKoZlVWV006IawZgwKSU/WLJ7Ngc pYCCtAcY/mXawAgURHsY6sZeDgrT9qdniskwEbBYmM6PYgyuL8KExyPv0v9+aCDw dCmay3gdBA8z3GzOqkkhrLANm68hMq3HhDhW0aSP7aM+swY0LBMMjk2fUsMAKO+b V+P1UKYiN6fWn2jUp1Z3mnsVi4p2hhwmUfyiH3xm6cqHwl0k9o5vbXgIz+7zwZix 5biRCQyqggKJ+lxArREvJoHTKtXuuZfuh3qKvIjO9fwonVw0h3uv80ewKdX+FrDb pWRIMF3jnCb+G7OpAjZrGCPxF+5B8Ln2 -----END CERTIFICATE-----Generated at Sun May 11 22:45:06 2025 by rpki-client