$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: SZxAYGduAAJzQpjA2L5Q7Gett2W9X34ZYE7T80UHCFs= Subject key identifier: 77:75:C6:45:6B:50:A0:93:80:28:53:F1:49:FD:65:E2:36:7B:11:BC Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 22DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 22C1 Signing time: Mon 12 May 2025 15:49:32 +0000 Manifest this update: Mon 12 May 2025 15:49:31 +0000 Manifest next update: Mon 19 May 2025 15:49:31 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: bAl4amC6fmoiyany0/sjLJKDwt7GSKPxWwP3a8BEcVw=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: 0vCf/xwV9KMenpxoQYxOfrnjClEJSXbTz5F/3QVeMUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8922 (0x22da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: May 12 15:49:31 2025 GMT Not After : May 19 15:49:31 2025 GMT Subject: CN=6822188b-76a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6a:34:dd:a5:ca:6d:45:88:ff:23:03:07:b4: eb:7c:e5:07:88:54:9b:d8:9c:de:6a:e4:96:76:c2: 8c:a4:61:85:ec:09:aa:89:25:b3:8f:65:af:3b:bc: d5:94:de:e2:61:1c:6f:dc:8e:18:68:a9:1e:53:0f: 5c:dd:1c:c3:0f:39:fc:f5:ae:6f:5a:72:7c:5f:a2: 28:88:48:dd:f9:7c:54:9e:27:92:67:88:71:5e:a5: 29:83:c6:45:35:76:bf:d2:e0:ea:85:ee:97:71:96: 5e:e7:9e:70:fe:4c:fd:51:e3:a9:8a:7b:44:83:72: ed:93:f1:8c:06:b1:4e:3e:39:f5:ad:00:c4:00:95: 57:3d:ab:36:dc:9c:1b:e3:81:91:8e:7f:46:bf:a7: f8:ad:52:82:43:eb:de:f2:5e:03:23:44:77:95:eb: 8d:5f:74:2e:8d:80:d2:b6:6c:1b:89:ae:17:33:10: dc:bc:36:3b:94:82:99:12:69:01:82:2f:16:6d:56: d0:29:75:b7:1e:28:67:f8:b1:0e:a9:b1:0f:fe:a4: f4:fa:c2:ad:9d:ea:c2:39:a3:3c:c7:48:c5:4d:14: 48:95:df:b3:90:28:2e:e2:12:3e:a4:bd:f8:cf:a8: be:50:d5:bf:22:ca:90:2a:41:e2:4d:48:9e:b3:38: 36:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:75:C6:45:6B:50:A0:93:80:28:53:F1:49:FD:65:E2:36:7B:11:BC X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:f6:72:9f:51:bf:b7:fa:d3:db:50:b1:7b:a2:14:8f:03:fe: c4:a7:e6:01:92:a3:aa:3b:41:8a:b0:69:f3:27:df:9d:88:9a: 72:9c:d7:5c:2a:f1:ed:97:12:e0:a0:d3:b6:96:21:57:46:e5: 57:1c:91:c5:d7:17:40:e2:2b:a8:48:51:b1:14:09:08:1a:f4: ad:d7:2c:47:bb:0c:3a:15:25:52:b5:ff:9f:4d:40:f2:d8:3d: 37:50:cf:90:6c:79:d4:14:95:56:d1:be:ed:78:30:16:46:92: 0c:74:39:29:86:dc:49:bb:9e:07:4a:e9:fb:c8:63:08:6d:d2: 9d:98:a7:a9:80:5c:09:36:a4:12:33:f1:74:97:76:08:c2:d1: 7d:f1:c2:77:f7:14:02:a1:6a:de:10:cb:cd:86:6c:e1:50:61: 90:90:9a:e3:0e:02:1d:a9:31:ea:5d:17:8b:54:fd:1f:8a:1d: 16:e5:51:f2:8b:38:e5:01:7c:b9:65:15:79:cb:3b:b6:6f:3a: 04:ce:b8:91:35:9f:4f:54:1f:5b:c9:99:dc:c2:51:4f:5f:0d: 60:5e:ed:fd:da:de:d8:04:50:6a:10:80:81:40:44:68:39:d4: 42:04:b7:db:95:99:32:f4:63:56:23:47:00:29:93:06:77:b1: 5c:cd:0c:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICItowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwNTEyMTU0OTMxWhcNMjUwNTE5MTU0OTMxWjAYMRYwFAYD VQQDEw02ODIyMTg4Yi03NmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumo03aXKbUWI/yMDB7TrfOUHiFSb2JzeauSWdsKMpGGF7AmqiSWzj2WvO7zV lN7iYRxv3I4YaKkeUw9c3RzDDzn89a5vWnJ8X6IoiEjd+XxUnieSZ4hxXqUpg8ZF NXa/0uDqhe6XcZZe555w/kz9UeOpintEg3Ltk/GMBrFOPjn1rQDEAJVXPas23Jwb 44GRjn9Gv6f4rVKCQ+ve8l4DI0R3leuNX3QujYDStmwbia4XMxDcvDY7lIKZEmkB gi8WbVbQKXW3Hihn+LEOqbEP/qT0+sKtnerCOaM8x0jFTRRIld+zkCgu4hI+pL34 z6i+UNW/IsqQKkHiTUieszg27QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHd1xkVr UKCTgChT8Un9ZeI2exG8MB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA59nKfUb+3+tPbULF7ohSPA/7Ep+YBkqOqO0GKsGnzJ9+diJpynNdc KvHtlxLgoNO2liFXRuVXHJHF1xdA4iuoSFGxFAkIGvSt1yxHuww6FSVStf+fTUDy 2D03UM+QbHnUFJVW0b7teDAWRpIMdDkphtxJu54HSun7yGMIbdKdmKepgFwJNqQS M/F0l3YIwtF98cJ39xQCoWreEMvNhmzhUGGQkJrjDgIdqTHqXReLVP0fih0W5VHy izjlAXy5ZRV5yzu2bzoEzriRNZ9PVB9byZncwlFPXw1gXu392t7YBFBqEICBQERo OdRCBLfblZky9GNWI0cAKZMGd7FczQwx -----END CERTIFICATE-----Generated at Wed May 14 10:32:44 2025 by rpki-client