$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: re31FIhFLA9homrNboHm2qswtFcXpnquCS/w56fl7K0= Subject key identifier: A8:66:A0:02:64:E1:0F:3C:CF:D1:A7:57:9E:5D:79:6C:A1:93:49:DD Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: 58 Signing time: Thu 03 Jul 2025 07:24:10 +0000 Manifest this update: Thu 03 Jul 2025 07:24:09 +0000 Manifest next update: Thu 10 Jul 2025 07:24:09 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: oNBwZ3pVTTtp4cmiHaH4rIUl/CzA4DeRC8Pt3LBp7rQ=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: 8Wzv5veel/E+M5qspAlwBsfA0pAvjm21LyceiyRo5cA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Jul 3 07:24:09 2025 GMT Not After : Jul 10 07:24:09 2025 GMT Subject: CN=6866301a-c7c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:4d:e0:60:60:88:e7:4e:9f:bf:8c:de:07: f6:b1:89:ae:53:09:93:f7:2e:a6:42:7f:8c:20:e9: dc:dc:30:f4:6e:48:f2:a9:28:1d:b2:77:04:ce:e1: bf:86:e3:ab:00:5b:50:78:7c:9f:48:74:5a:ea:ac: a7:0a:88:26:24:45:48:1d:d5:02:ea:d5:04:0a:26: 64:5c:a6:c1:f9:29:fa:c3:14:c2:e9:5a:03:c1:ed: 39:46:03:ed:48:1f:da:6f:16:07:33:b7:54:16:09: 06:52:b0:18:ed:1a:4e:cd:13:be:31:11:10:8f:d7: 4b:57:88:58:6d:92:2c:0a:eb:0c:d1:82:3b:01:71: cf:1c:e9:b5:99:d4:c9:32:da:c7:25:61:4c:66:38: f4:34:82:89:6e:bf:3d:18:b5:ce:78:75:9f:78:82: 86:7b:41:35:db:34:b8:f3:83:9e:ae:01:5f:26:a0: f1:31:76:c8:81:8e:0b:e1:4c:c9:ac:5c:70:5c:5d: 00:8e:03:5d:93:c4:f4:10:d7:e3:3a:b1:52:54:c9: e1:fc:13:28:be:fb:6c:66:00:0a:b9:a5:cd:db:ca: 4f:27:30:89:87:e2:ff:31:d5:b7:84:c1:6d:77:68: 17:44:91:87:0e:26:b4:cd:56:37:9b:33:51:fb:7b: 58:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:66:A0:02:64:E1:0F:3C:CF:D1:A7:57:9E:5D:79:6C:A1:93:49:DD X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:95:d9:17:16:e8:e0:31:8d:79:a1:84:2d:b9:a8:f1:38:e3: 8f:5f:57:41:3f:02:95:32:70:be:6f:cf:2e:38:c0:b2:a1:2b: 7f:72:24:0b:c4:81:db:d0:e8:36:5e:ab:99:32:ae:8d:cf:73: f9:31:13:29:94:5e:8a:23:55:83:81:0f:d1:80:ac:36:65:52: 10:89:ff:21:73:0c:96:51:c4:a9:31:2a:b1:f3:dc:56:2f:b9: 09:b0:bf:ca:f8:fd:15:55:0e:ad:16:85:9d:2c:06:61:ac:50: bd:2b:62:c1:51:a4:4b:e1:72:e4:65:d3:e3:65:d6:4f:be:27: 93:77:41:46:e5:ee:01:53:13:46:df:24:14:51:98:1d:5c:ed: 37:fa:5d:42:73:1e:13:bc:68:98:43:8a:61:9f:1f:7d:50:86: 0a:e2:a2:9b:65:5f:31:b1:9c:2a:d4:6c:8c:80:f1:4c:83:ba: f1:fe:bd:b1:fd:49:e0:f5:33:1c:2d:3e:50:5f:7f:6a:b8:0c: 50:8b:80:6f:3e:d1:b7:5d:77:e9:db:3a:95:e2:59:1b:d6:a0: 42:84:4f:aa:97:5c:e5:53:23:ed:68:ca:f5:33:2d:bc:bd:b5: 6c:9a:9e:9f:3a:a6:cd:10:00:21:36:e6:e0:4f:c2:28:a8:0c: 4c:51:d4:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoQzYyNjU4MzI5ODU3OEQxRDRBRjcyNzNFQkQ3OTFDNzIz MEEzNzQ0OTAeFw0yNTA3MDMwNzI0MDlaFw0yNTA3MTAwNzI0MDlaMBgxFjAUBgNV BAMTDTY4NjYzMDFhLWM3YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6a03gYGCI506fv4zeB/axia5TCZP3LqZCf4wg6dzcMPRuSPKpKB2ydwTO4b+G 46sAW1B4fJ9IdFrqrKcKiCYkRUgd1QLq1QQKJmRcpsH5KfrDFMLpWgPB7TlGA+1I H9pvFgczt1QWCQZSsBjtGk7NE74xERCP10tXiFhtkiwK6wzRgjsBcc8c6bWZ1Mky 2sclYUxmOPQ0goluvz0Ytc54dZ94goZ7QTXbNLjzg56uAV8moPExdsiBjgvhTMms XHBcXQCOA12TxPQQ1+M6sVJUyeH8Eyi++2xmAAq5pc3byk8nMImH4v8x1beEwW13 aBdEkYcOJrTNVjebM1H7e1jTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqGagAmTh DzzP0adXnl15bKGTSd0wHwYDVR0jBBgwFoAUxiZYMphXjR1K9yc+vXkccjCjdEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzFEMkYwNzI0RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGlaWU1waFhqUjFLOXljLXZYa2NjakNqZEVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NkMyLzFEMkYwNzI0RDE3RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIx Szl5Yy12WGtjY2pDamRFay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACqV2RcW6OAxjXmhhC25qPE4449fV0E/ApUycL5vzy44wLKhK39yJAvE gdvQ6DZeq5kyro3Pc/kxEymUXoojVYOBD9GArDZlUhCJ/yFzDJZRxKkxKrHz3FYv uQmwv8r4/RVVDq0WhZ0sBmGsUL0rYsFRpEvhcuRl0+Nl1k++J5N3QUbl7gFTE0bf JBRRmB1c7Tf6XUJzHhO8aJhDimGfH31QhgrioptlXzGxnCrUbIyA8UyDuvH+vbH9 SeD1MxwtPlBff2q4DFCLgG8+0bddd+nbOpXiWRvWoEKET6qXXOVTI+1oyvUzLby9 tWyanp86ps0QACE25uBPwiioDExR1Ng= -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:00 2025 by rpki-client