$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: 4L/Tr5cHpPdLIExEZsUa2qMV5xvCoMlRvM22r0nht1w= Subject key identifier: 1C:09:86:E6:04:0E:25:DD:BA:A4:42:99:C9:E2:43:7F:1D:E5:2C:B2 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 049A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0483 Signing time: Tue 01 Jul 2025 00:39:30 +0000 Manifest this update: Tue 01 Jul 2025 00:39:29 +0000 Manifest next update: Tue 08 Jul 2025 00:39:29 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: hII/Hj+V+JxwJOIUwkLHSB8Y6CV7rz/xKHqg/0btG0c=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1178 (0x49a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Jul 1 00:39:29 2025 GMT Not After : Jul 8 00:39:29 2025 GMT Subject: CN=68632e42-6921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f1:78:8e:4b:2c:c4:fd:42:b4:ad:f5:0e:b9: 98:38:18:77:d4:cf:cf:5e:a7:02:31:b0:3a:1b:ba: 84:b1:ab:48:4a:7f:c1:41:01:fa:78:62:f1:fa:f0: 28:e4:69:f5:88:1a:bc:ed:4e:33:8c:75:b2:de:31: 8c:6f:d3:a2:80:af:57:0e:99:e4:5b:02:a7:1e:26: 8a:61:48:bc:15:1d:ae:4d:12:db:3b:10:5c:e9:de: 5d:d6:80:3d:83:fc:e5:39:99:27:67:c7:3f:dc:44: 0c:b6:80:1c:ae:a9:c0:97:9c:50:d7:e8:82:58:14: 07:de:5d:1f:ba:27:3a:85:37:88:29:62:a4:27:ac: 40:de:15:88:49:ce:da:c7:2e:fd:f3:f8:36:12:01: 4d:89:ab:0f:ab:6a:df:38:28:4a:82:97:c9:a4:fb: 4c:49:3b:aa:b7:bc:da:ce:02:07:d1:5a:62:6b:23: 7a:05:fe:dc:74:5e:d4:70:d2:f6:fa:e3:77:98:53: 24:c4:34:fd:32:9c:cc:f9:bb:10:c9:6c:fe:74:5d: b3:1a:ea:a3:33:ad:7a:79:37:70:e3:af:5b:1c:d7: 78:62:a8:f9:19:5a:0c:2b:99:0c:72:27:6c:05:aa: ec:13:ac:43:fb:ad:27:94:9a:5d:d4:2b:4b:4d:3a: 7f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:09:86:E6:04:0E:25:DD:BA:A4:42:99:C9:E2:43:7F:1D:E5:2C:B2 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b7:f9:c8:2d:cc:17:6b:26:21:bc:0a:72:b7:4d:e0:5c:fc: bb:78:bc:f9:88:5a:0d:b1:ba:7c:54:48:02:c9:56:89:6b:d0: 8b:98:ad:24:6a:37:63:77:44:4d:ef:5c:75:57:5a:0c:96:58: fe:37:a9:e8:27:a9:5d:c5:e1:ce:9f:d7:54:b3:92:c5:48:17: c0:4d:10:05:fd:61:aa:b0:1c:d0:18:f3:54:ea:32:8a:f6:5d: c7:fe:2c:ab:f2:b2:0e:e1:0b:64:96:1f:3c:1d:19:a9:8b:55: ab:21:fb:da:0b:e2:74:21:db:63:91:ae:a1:fb:04:bc:0e:30: 88:2f:dc:b8:30:0a:30:74:26:22:59:d2:1b:25:c1:62:7e:00: 56:4f:c2:96:e4:26:8a:fd:42:69:25:cf:ab:d4:07:4b:c0:6d: 13:c9:98:75:dc:f2:9e:d3:74:5d:e3:1d:4e:84:dc:70:df:db: 88:9e:08:e2:82:cd:83:d2:8f:71:7b:7e:4d:86:77:92:a7:12: e8:af:8e:6b:d7:96:90:49:66:64:90:2e:6a:56:87:ad:f5:09: 25:4d:6a:25:1d:34:1d:10:ef:24:74:99:e8:14:22:cf:fd:53: c4:56:8f:14:22:94:0f:bd:7f:09:93:fd:cf:fc:bf:4e:cd:bf: ab:51:f6:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwNzAxMDAzOTI5WhcNMjUwNzA4MDAzOTI5WjAYMRYwFAYD VQQDEw02ODYzMmU0Mi02OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PF4jkssxP1CtK31DrmYOBh31M/PXqcCMbA6G7qEsatISn/BQQH6eGLx+vAo 5Gn1iBq87U4zjHWy3jGMb9OigK9XDpnkWwKnHiaKYUi8FR2uTRLbOxBc6d5d1oA9 g/zlOZknZ8c/3EQMtoAcrqnAl5xQ1+iCWBQH3l0fuic6hTeIKWKkJ6xA3hWISc7a xy798/g2EgFNiasPq2rfOChKgpfJpPtMSTuqt7zazgIH0VpiayN6Bf7cdF7UcNL2 +uN3mFMkxDT9MpzM+bsQyWz+dF2zGuqjM616eTdw469bHNd4Yqj5GVoMK5kMcids BarsE6xD+60nlJpd1CtLTTp/lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwJhuYE DiXduqRCmcniQ38d5SyyMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATt/nILcwXayYhvApyt03gXPy7eLz5iFoNsbp8VEgCyVaJa9CLmK0k ajdjd0RN71x1V1oMllj+N6noJ6ldxeHOn9dUs5LFSBfATRAF/WGqsBzQGPNU6jKK 9l3H/iyr8rIO4Qtklh88HRmpi1WrIfvaC+J0Idtjka6h+wS8DjCIL9y4MAowdCYi WdIbJcFifgBWT8KW5CaK/UJpJc+r1AdLwG0TyZh13PKe03Rd4x1OhNxw39uIngji gs2D0o9xe35NhneSpxLor45r15aQSWZkkC5qVoet9QklTWolHTQdEO8kdJnoFCLP /VPEVo8UIpQPvX8Jk/3P/L9Ozb+rUfa/ -----END CERTIFICATE-----Generated at Wed Jul 2 15:16:24 2025 by rpki-client