$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: YduXUynJgnoW5ChlFMtKE0QmT0wmrY5wZ+a7KXle520= Subject key identifier: 1C:62:CC:F7:E5:3B:B6:96:D4:A2:08:D7:85:D1:A4:DD:6F:CB:02:50 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01C4 Signing time: Fri 13 Jun 2025 02:04:04 +0000 Manifest this update: Fri 13 Jun 2025 02:04:03 +0000 Manifest next update: Fri 20 Jun 2025 02:04:03 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: XlaBZZQzbu6ynNMLqfIJ/OAPFkRq14v2cDQZq/84uPE=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Jun 13 02:04:03 2025 GMT Not After : Jun 20 02:04:03 2025 GMT Subject: CN=684b8714-486e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:be:94:19:9c:75:e7:bc:f0:f0:74:ad:aa: ac:1b:61:0b:3c:43:47:13:02:d1:34:41:5a:3e:1e: 0e:98:ef:ca:0b:9d:13:cf:2f:25:27:dc:f3:ba:23: 38:11:71:26:19:95:58:3d:54:87:03:da:21:66:d5: 30:28:fc:c0:d2:c9:96:95:52:32:fb:1d:f6:f2:94: dd:ba:a1:15:dd:50:31:8a:38:97:d4:a2:84:aa:8b: 38:5f:c6:9b:a7:eb:68:38:ce:f7:7a:3a:ff:44:70: b7:cb:73:8e:e8:eb:51:37:14:5e:44:9b:be:27:60: fc:ee:29:74:49:9c:e9:98:c5:28:03:45:db:4d:d0: 4e:1b:44:6a:69:ed:39:c1:f7:5e:77:cb:87:80:07: 12:10:35:2e:be:e7:2a:45:7e:c6:d0:68:c6:59:7e: 45:d4:85:af:d0:68:fa:33:2c:48:eb:fa:5f:d7:75: 34:8c:78:a8:1b:8a:2e:15:d7:e0:60:4e:ca:d7:eb: 1d:12:f6:6d:0f:4f:9a:ce:9f:9f:3b:9c:74:66:d6: b7:9d:c0:fc:3f:c8:6d:af:3a:21:b7:88:21:06:7e: ad:34:89:69:68:55:67:55:d7:f8:5f:da:0e:0b:e5: 71:8a:d6:5b:6a:ab:74:b3:6c:dd:f1:1f:99:07:ae: d9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:62:CC:F7:E5:3B:B6:96:D4:A2:08:D7:85:D1:A4:DD:6F:CB:02:50 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:9e:fe:f6:ba:eb:c2:34:5a:88:8b:7c:27:3a:1d:24:e1:d5: 52:c3:87:60:08:79:75:20:c7:9d:ad:1e:e7:f9:12:19:a0:5a: 6b:59:f4:b6:e6:55:49:60:52:62:9f:99:15:59:29:2b:f0:72: c0:df:59:59:ff:ec:45:fd:95:c2:1b:3b:a8:ea:93:5d:8e:a0: 8b:d2:e9:64:e4:49:7a:aa:42:03:9d:20:97:a3:0e:e3:bc:98: ad:f0:67:55:58:ed:8d:dd:57:54:6b:c1:db:44:e0:97:6c:55: 29:ac:47:2d:f2:7d:32:bf:93:e5:09:bd:b5:16:dc:5c:ad:1f: 4b:8a:82:84:7b:a1:a4:50:71:ea:0a:6a:78:fd:ca:ad:07:69: 6f:09:1f:8e:be:65:9f:f4:78:f5:79:4b:55:9c:44:f0:42:bd: 08:24:49:09:46:ff:f0:43:ba:98:77:58:05:d6:d6:8b:0b:5a: 44:38:83:98:48:28:fb:28:70:69:37:1a:56:28:56:0c:1f:17: e2:01:79:ae:90:40:70:6b:c8:21:cf:0c:5a:00:4f:87:54:16: 02:54:bd:cd:0c:5d:c0:02:c3:32:fc:8f:a3:2b:df:a6:09:1c: 61:98:b8:30:da:e6:d1:29:07:5f:16:3b:e1:e7:22:e3:46:64: 95:11:4f:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwNjEzMDIwNDAzWhcNMjUwNjIwMDIwNDAzWjAYMRYwFAYD VQQDEw02ODRiODcxNC00ODZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRG+lBmcdee88PB0raqsG2ELPENHEwLRNEFaPh4OmO/KC50Tzy8lJ9zzuiM4 EXEmGZVYPVSHA9ohZtUwKPzA0smWlVIy+x328pTduqEV3VAxijiX1KKEqos4X8ab p+toOM73ejr/RHC3y3OO6OtRNxReRJu+J2D87il0SZzpmMUoA0XbTdBOG0Rqae05 wfded8uHgAcSEDUuvucqRX7G0GjGWX5F1IWv0Gj6MyxI6/pf13U0jHioG4ouFdfg YE7K1+sdEvZtD0+azp+fO5x0Zta3ncD8P8htrzoht4ghBn6tNIlpaFVnVdf4X9oO C+VxitZbaqt0s2zd8R+ZB67ZAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxizPfl O7aW1KII14XRpN1vywJQMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKnv72uuvCNFqIi3wnOh0k4dVSw4dgCHl1IMedrR7n+RIZoFprWfS2 5lVJYFJin5kVWSkr8HLA31lZ/+xF/ZXCGzuo6pNdjqCL0ulk5El6qkIDnSCXow7j vJit8GdVWO2N3VdUa8HbROCXbFUprEct8n0yv5PlCb21FtxcrR9LioKEe6GkUHHq Cmp4/cqtB2lvCR+OvmWf9Hj1eUtVnETwQr0IJEkJRv/wQ7qYd1gF1taLC1pEOIOY SCj7KHBpNxpWKFYMHxfiAXmukEBwa8ghzwxaAE+HVBYCVL3NDF3AAsMy/I+jK9+m CRxhmLgw2ubRKQdfFjvh5yLjRmSVEU9T -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:58 2025 by rpki-client