$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: a89tE7x+RTG0vcl2FtCMsuh08MfZFfiSWYXNgEAvZqU= Subject key identifier: 98:36:32:0E:8F:DE:91:67:FD:B8:DB:D7:94:75:B5:54:7B:20:4E:CD Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: DE Signing time: Thu 03 Jul 2025 05:40:25 +0000 Manifest this update: Thu 03 Jul 2025 05:40:24 +0000 Manifest next update: Thu 10 Jul 2025 05:40:24 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: asCZfe/L+oxX8e+vIwJWVCXGjvsJztyfbFscVgvTw4Y=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Jul 3 05:40:24 2025 GMT Not After : Jul 10 05:40:24 2025 GMT Subject: CN=686617c9-6ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:6d:ae:fc:c8:40:38:2d:56:35:de:66:8b: 42:07:4b:54:7e:5b:ce:61:6e:49:7d:32:20:1a:34: 81:22:01:44:0e:f0:f0:31:68:7b:53:84:6d:15:0e: e2:20:d7:12:01:31:35:16:7b:4e:c9:53:30:de:43: 9e:1c:48:0b:c3:43:bf:63:dd:4f:3a:1e:9a:cb:d8: 9e:e9:7c:ad:2c:ab:e5:6e:7d:76:ef:33:3a:ba:73: c8:45:65:5b:b2:eb:92:18:af:1d:54:b3:a0:5d:b2: 44:d0:dd:c4:94:cb:e0:cd:f1:f4:31:32:47:13:b9: db:5d:29:e9:47:ef:64:ef:8d:a9:5f:8d:7a:cd:bd: ff:24:ea:0e:30:41:3b:3b:60:4d:c8:f6:8f:d9:06: 16:ad:0f:62:23:df:07:d4:47:af:a6:52:ec:57:60: cd:11:ab:9a:35:81:52:46:28:3a:5c:fb:99:58:22: c1:dd:00:06:04:25:80:53:17:2a:91:a2:71:71:1a: 2c:ed:32:dd:ba:48:4f:8b:d5:e5:55:6b:54:99:f9: 31:25:5c:b2:f0:b3:23:d5:50:77:cc:57:ed:62:c9: 32:23:d6:aa:4d:60:71:66:e5:a8:7a:bd:ab:af:27: cd:f7:2f:95:82:d3:82:a2:5c:d0:cc:ea:09:b6:05: 88:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:36:32:0E:8F:DE:91:67:FD:B8:DB:D7:94:75:B5:54:7B:20:4E:CD X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:5a:d6:cf:96:5f:94:e5:95:3a:fe:2b:2b:07:b3:a6:7e:b6: 59:b3:ed:30:cc:cc:b5:13:bb:68:22:d4:96:08:a1:2a:76:ed: b8:d8:99:02:fa:e8:32:8d:c3:92:34:37:ac:2d:a7:62:f2:0f: b8:bd:07:09:cc:49:1f:57:31:b3:42:25:80:32:ca:2c:62:ac: 38:0b:44:c8:de:aa:ce:71:3a:ff:b0:4b:e0:5f:01:0a:0d:5e: bb:16:0d:22:cd:ac:4d:18:70:b7:51:65:7a:23:14:b3:f3:27: b9:70:64:53:a7:a1:d0:d3:56:43:05:8a:1f:22:a3:a4:e6:72: 2c:1d:f5:36:4e:88:fc:5a:1c:5e:bc:af:d9:3b:f8:80:06:b8: 61:73:ee:a8:5a:d8:94:45:6f:a9:49:f0:27:7d:68:7d:25:56: c3:0a:d3:c0:e1:76:39:fa:75:a0:8a:28:4c:5b:bb:90:77:68: b7:c8:f3:6f:33:4e:6c:32:60:58:8e:0a:ea:af:e4:92:f9:cb: 86:f2:a8:4d:5d:1f:26:96:09:b0:39:bc:c9:73:86:28:f9:5a: 31:6f:fb:ff:f6:21:2a:89:eb:d3:83:b6:cc:1a:01:94:fe:b3: 1c:f7:7e:ee:1e:53:59:35:fd:17:a8:e9:39:64:ed:b5:26:fd: 1f:39:30:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUwNzAzMDU0MDI0WhcNMjUwNzEwMDU0MDI0WjAYMRYwFAYD VQQDEw02ODY2MTdjOS02YWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzghtrvzIQDgtVjXeZotCB0tUflvOYW5JfTIgGjSBIgFEDvDwMWh7U4RtFQ7i INcSATE1FntOyVMw3kOeHEgLw0O/Y91POh6ay9ie6XytLKvlbn127zM6unPIRWVb suuSGK8dVLOgXbJE0N3ElMvgzfH0MTJHE7nbXSnpR+9k742pX416zb3/JOoOMEE7 O2BNyPaP2QYWrQ9iI98H1EevplLsV2DNEauaNYFSRig6XPuZWCLB3QAGBCWAUxcq kaJxcRos7TLdukhPi9XlVWtUmfkxJVyy8LMj1VB3zFftYskyI9aqTWBxZuWoer2r ryfN9y+VgtOColzQzOoJtgWIVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJg2Mg6P 3pFn/bjb15R1tVR7IE7NMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQWtbPll+U5ZU6/isrB7OmfrZZs+0wzMy1E7toItSWCKEqdu242JkC +ugyjcOSNDesLadi8g+4vQcJzEkfVzGzQiWAMsosYqw4C0TI3qrOcTr/sEvgXwEK DV67Fg0izaxNGHC3UWV6IxSz8ye5cGRTp6HQ01ZDBYofIqOk5nIsHfU2Toj8Whxe vK/ZO/iABrhhc+6oWtiURW+pSfAnfWh9JVbDCtPA4XY5+nWgiihMW7uQd2i3yPNv M05sMmBYjgrqr+SS+cuG8qhNXR8mlgmwObzJc4Yo+Voxb/v/9iEqievTg7bMGgGU /rMc937uHlNZNf0XqOk5ZO21Jv0fOTAd -----END CERTIFICATE-----Generated at Fri Jul 4 15:02:33 2025 by rpki-client