$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: PZ7gJqXgae9r1QqSv1yNkJjM7CfU5GUuJ0h+D8K7jC8= Subject key identifier: A5:01:51:CD:72:96:AB:6B:17:67:01:FE:11:6E:D2:3F:AA:19:04:19 Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 02BF Signing time: Tue 01 Jul 2025 02:05:08 +0000 Manifest this update: Tue 01 Jul 2025 02:05:08 +0000 Manifest next update: Tue 08 Jul 2025 02:05:08 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: S2+CWjG5MwZqTd6hiQy27n2b5gHzvpAGdimY0QiONPc=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: 4DnB0bL3NG78Ric1Q/fKLIMkj23xQICVd02+1wJapuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59, serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: Jul 1 02:05:08 2025 GMT Not After : Jul 8 02:05:08 2025 GMT Subject: CN=68634254-f902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:43:c9:f6:48:58:93:e8:fd:40:22:bf:3d:e8: c2:70:71:bc:38:5e:5b:14:53:05:eb:ce:04:0d:3b: 3c:41:a7:51:56:d2:b4:26:97:58:d5:f8:c8:f8:98: 5f:96:c0:25:5b:81:74:d1:f2:f3:b3:3e:da:86:a1: 7d:38:cd:b5:86:5c:2b:e0:a4:6e:c2:1d:46:13:d7: f2:52:95:7e:65:bd:34:0c:27:c6:5a:89:32:d2:66: d7:0b:c8:f1:69:fa:52:27:5d:c4:ee:cf:41:82:d2: 71:3d:d7:2e:f5:9b:dd:a7:6e:49:94:c8:ee:27:fb: 16:0a:a3:23:ec:66:6a:ef:86:75:05:bb:a4:bf:dd: b8:83:91:34:75:b4:8e:d3:dc:25:10:5f:7c:bd:bb: b4:2a:cd:07:97:d5:76:de:92:a8:5c:f0:5b:8b:60: d7:33:c2:21:b7:78:bf:6a:88:84:90:67:da:4b:e3: 9d:0a:ad:ea:cb:62:80:13:e3:b1:44:78:b7:3e:40: 4c:e3:21:2a:6a:3c:6e:68:5a:09:2b:8f:cd:28:95: e8:12:e5:d7:93:2d:ee:78:9c:86:b1:5c:d5:dd:2d: 18:d7:19:ef:c2:a6:dd:a7:15:17:6e:d0:52:40:95: f1:4a:13:0f:23:a5:ef:51:d2:ec:83:7e:d0:d9:90: 3c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:01:51:CD:72:96:AB:6B:17:67:01:FE:11:6E:D2:3F:AA:19:04:19 X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:93:02:d9:0d:5f:7e:90:25:51:4d:e3:bc:e6:9b:7e:a7:d2: c5:23:69:b6:ff:b7:52:8b:6a:d3:90:5d:10:f3:6b:3b:2e:46: e4:fb:e7:3b:c9:11:a2:22:f5:53:30:ee:58:9b:84:e4:30:b9: b5:31:e3:37:19:49:a4:35:45:bf:46:8c:61:83:40:a9:cf:fe: fe:56:c8:35:e1:19:c2:79:fa:e3:51:d9:ee:70:0a:7d:ce:dd: e0:14:5f:3e:94:42:e4:a4:fe:41:d6:6c:dd:61:a4:35:5b:bc: e9:b2:19:56:fe:9f:d9:13:97:bc:7a:b9:1a:49:ae:02:76:ca: b3:0d:71:3e:d1:da:7b:54:55:22:a4:31:96:31:31:f4:bd:61: 54:d3:40:b5:46:9c:27:2a:0c:dc:70:55:92:7d:73:6c:16:0e: 69:54:40:7e:13:cd:91:0e:30:fa:e2:57:ed:0d:99:f0:d4:39: cb:ed:34:0a:be:29:fe:c3:7d:15:b7:e5:75:26:bc:9f:9d:14: b7:48:d3:ec:b8:2f:14:83:86:de:a3:53:21:aa:8c:45:7e:ea: fd:cd:86:8e:6d:26:d5:09:9d:c8:f4:b0:68:6b:eb:45:e0:0f: b6:6d:ef:e5:10:52:45:8f:23:9c:f5:99:cf:aa:32:bf:0b:7d: e1:98:01:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjUwNzAxMDIwNTA4WhcNMjUwNzA4MDIwNTA4WjAYMRYwFAYD VQQDEw02ODYzNDI1NC1mOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kPJ9khYk+j9QCK/PejCcHG8OF5bFFMF684EDTs8QadRVtK0JpdY1fjI+Jhf lsAlW4F00fLzsz7ahqF9OM21hlwr4KRuwh1GE9fyUpV+Zb00DCfGWoky0mbXC8jx afpSJ13E7s9BgtJxPdcu9Zvdp25JlMjuJ/sWCqMj7GZq74Z1Bbukv924g5E0dbSO 09wlEF98vbu0Ks0Hl9V23pKoXPBbi2DXM8Iht3i/aoiEkGfaS+OdCq3qy2KAE+Ox RHi3PkBM4yEqajxuaFoJK4/NKJXoEuXXky3ueJyGsVzV3S0Y1xnvwqbdpxUXbtBS QJXxShMPI6XvUdLsg37Q2ZA89QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUBUc1y lqtrF2cB/hFu0j+qGQQZMB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZkwLZDV9+kCVRTeO85pt+p9LFI2m2/7dSi2rTkF0Q82s7Lkbk++c7 yRGiIvVTMO5Ym4TkMLm1MeM3GUmkNUW/Roxhg0Cpz/7+Vsg14RnCefrjUdnucAp9 zt3gFF8+lELkpP5B1mzdYaQ1W7zpshlW/p/ZE5e8erkaSa4CdsqzDXE+0dp7VFUi pDGWMTH0vWFU00C1RpwnKgzccFWSfXNsFg5pVEB+E82RDjD64lftDZnw1DnL7TQK vin+w30Vt+V1JryfnRS3SNPsuC8Ug4beo1MhqoxFfur9zYaObSbVCZ3I9LBoa+tF 4A+2be/lEFJFjyOc9ZnPqjK/C33hmAGJ -----END CERTIFICATE-----Generated at Thu Jul 3 00:14:58 2025 by rpki-client