$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: uuozWGyrxKA4I9/DuQo/oakhaWTkzuXyJcaK1e9g7+8= Subject key identifier: 18:FF:21:11:35:B6:55:BA:96:84:9F:F6:03:D8:0B:B8:E2:87:C5:34 Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: 0109 Signing time: Tue 01 Jul 2025 05:31:05 +0000 Manifest this update: Tue 01 Jul 2025 05:31:04 +0000 Manifest next update: Tue 08 Jul 2025 05:31:04 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: h4Zp5PaQ1N4NqeD5aXnQdEQU7ohKZlDzjcLQdicHrio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD, serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: Jul 1 05:31:04 2025 GMT Not After : Jul 8 05:31:04 2025 GMT Subject: CN=68637298-15f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e1:0e:25:56:46:a8:f2:7d:cd:69:e3:30:2e: 9f:15:f4:91:ce:d2:00:5d:a9:2a:b6:af:fc:c1:d7: 75:6b:5c:5f:1c:a4:c4:ea:2f:90:bb:46:bf:b7:6b: 73:f2:e1:aa:a8:c0:f0:1e:b8:2e:39:c1:36:95:cb: 7a:06:af:de:ba:9b:a1:d1:58:40:98:ba:8d:a3:f6: c0:94:07:7b:bc:51:64:eb:28:56:d3:13:5b:97:61: 66:61:1a:f0:ff:bc:eb:04:6b:f5:97:bd:15:f1:04: 83:bd:dc:fc:6b:68:73:a1:5d:2d:8b:ff:08:27:1b: 54:43:ab:e6:99:b3:23:6d:74:b9:4a:81:01:39:32: 2e:4f:c2:9c:84:2c:e7:e3:ba:aa:fe:38:0e:6c:75: a3:06:98:c7:3e:c4:16:d5:f6:7d:f2:66:e1:f0:b1: 6f:5a:d2:10:a5:99:ed:16:83:9b:70:63:11:08:8d: 07:28:21:93:aa:7e:c2:19:9c:ad:76:dc:08:15:f2: 0e:bc:a4:7d:43:d2:58:a3:25:52:be:53:76:4f:0d: 0d:4f:7c:f6:d5:1f:aa:e5:4a:56:bc:bf:f6:f4:5d: 35:8a:ff:7e:d3:e5:9f:bb:6b:6d:33:ba:ec:1a:26: 1a:dd:a5:62:20:b3:c1:90:c0:ae:f3:d9:6d:15:15: 48:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FF:21:11:35:B6:55:BA:96:84:9F:F6:03:D8:0B:B8:E2:87:C5:34 X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:56:93:bd:a0:8d:17:8e:18:fd:3f:b8:09:ff:93:9b:0e:35: a1:70:70:85:1f:19:d1:6d:92:35:77:74:aa:14:64:53:bf:38: 1b:78:ca:87:9a:47:ac:56:b8:b0:bc:f9:94:3d:7f:c2:d1:01: 09:26:00:b3:e0:1f:02:06:3b:54:46:68:ae:6b:b3:ac:12:d1: 2a:fc:16:64:7f:97:7f:bc:52:39:a2:06:e9:37:52:60:08:4d: 92:1c:cd:c3:84:6d:9d:2f:96:b8:33:94:57:05:86:07:0d:79: ba:a4:ea:19:41:13:6c:47:c4:26:3f:0b:1d:6d:94:09:ec:0f: 05:43:b3:dd:da:0e:61:ce:22:38:71:41:d7:aa:10:dc:02:ed: c0:36:8f:ce:c2:b7:37:0e:b4:2d:b6:ca:44:0b:54:c3:23:34: 25:41:04:a9:b4:2c:e9:68:2f:1f:e6:e6:13:1e:f9:b0:11:cc: 01:b0:7e:0e:26:6f:b4:24:ff:7d:4d:a6:2f:07:56:27:55:a8: 80:c4:7a:0e:c8:11:5c:31:5b:c0:90:7c:e5:d5:72:7c:2a:cc: 6c:7d:6c:1f:bc:70:0e:7d:18:f3:63:a8:b2:6e:66:6d:d3:4a: d7:49:33:67:29:e6:2c:6c:59:75:62:62:53:ef:72:9c:bd:c0: 0b:c4:e5:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc2QUQxMTAvBgNVBAUTKEM0QjYyNTAzRTZENjcwMkFDMjlEMDBCRjM1MEM4QjJD MTJFNzlGMDUwHhcNMjUwNzAxMDUzMTA0WhcNMjUwNzA4MDUzMTA0WjAYMRYwFAYD VQQDEw02ODYzNzI5OC0xNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreEOJVZGqPJ9zWnjMC6fFfSRztIAXakqtq/8wdd1a1xfHKTE6i+Qu0a/t2tz 8uGqqMDwHrguOcE2lct6Bq/eupuh0VhAmLqNo/bAlAd7vFFk6yhW0xNbl2FmYRrw /7zrBGv1l70V8QSDvdz8a2hzoV0ti/8IJxtUQ6vmmbMjbXS5SoEBOTIuT8KchCzn 47qq/jgObHWjBpjHPsQW1fZ98mbh8LFvWtIQpZntFoObcGMRCI0HKCGTqn7CGZyt dtwIFfIOvKR9Q9JYoyVSvlN2Tw0NT3z21R+q5UpWvL/29F01iv9+0+Wfu2ttM7rs GiYa3aViILPBkMCu89ltFRVI1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBj/IRE1 tlW6loSf9gPYC7jih8U0MB8GA1UdIwQYMBaAFMS2JQPm1nAqwp0AvzUMiywS558F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzZBRC8wN0Y1MkU0NkJF ODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2NDckNuUUNfTlF5TExCTG5u d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzZBRC8wN0Y1MkU0NkJFODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2ND ckNuUUNfTlF5TExCTG5ud1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIVpO9oI0Xjhj9P7gJ/5ObDjWhcHCFHxnRbZI1d3SqFGRTvzgbeMqH mkesVriwvPmUPX/C0QEJJgCz4B8CBjtURmiua7OsEtEq/BZkf5d/vFI5ogbpN1Jg CE2SHM3DhG2dL5a4M5RXBYYHDXm6pOoZQRNsR8QmPwsdbZQJ7A8FQ7Pd2g5hziI4 cUHXqhDcAu3ANo/Owrc3DrQttspEC1TDIzQlQQSptCzpaC8f5uYTHvmwEcwBsH4O Jm+0JP99TaYvB1YnVaiAxHoOyBFcMVvAkHzl1XJ8KsxsfWwfvHAOfRjzY6iybmZt 00rXSTNnKeYsbFl1YmJT73KcvcALxOXD -----END CERTIFICATE-----Generated at Wed Jul 2 03:38:16 2025 by rpki-client