$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: oQxT66ZLGDzx04KYXD73BD7xqo+Y8uVnsrqKm9tDmLY= Subject key identifier: EA:18:8F:A4:6B:94:BC:78:E1:31:5C:CA:90:E9:3D:52:DA:5B:D5:DF Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 0115 Signing time: Tue 01 Jul 2025 05:22:20 +0000 Manifest this update: Tue 01 Jul 2025 05:22:19 +0000 Manifest next update: Tue 08 Jul 2025 05:22:19 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: 3KL2wXIH0zdcA3Sg1W87a0S6cyHvAZ/fCRbOzi9dvog=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: +mEj5z+agEcnRzWZMjR0oYobGLfQGCXmi+n1VzU085s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: Jul 1 05:22:19 2025 GMT Not After : Jul 8 05:22:19 2025 GMT Subject: CN=6863708c-4741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0f:61:ff:f7:fa:d5:e8:7c:86:f2:12:32:7a: b1:d1:9b:55:a9:bc:08:91:48:b6:9e:57:5d:49:ef: dd:de:3a:6b:2a:ff:c6:cc:86:b6:a1:7f:75:d2:f6: 5f:21:9b:c7:e2:b0:20:a3:86:07:0e:d7:0c:a0:dd: 47:81:92:22:50:ed:ed:a9:cc:38:54:b8:1e:ce:be: 9f:0f:b1:85:b9:34:ca:94:23:61:a8:67:fb:54:06: a1:05:58:3e:eb:75:64:72:7d:4e:25:7d:cc:d4:0e: a4:ef:4a:3f:26:ec:b4:08:77:e8:55:f2:cc:8c:ff: cd:74:a5:34:85:05:8c:1f:3c:e0:a8:09:2a:01:b5: 14:25:63:1f:4a:cb:46:f7:f6:8c:0f:4a:58:dc:d3: b6:35:dc:fa:e2:c4:47:49:7c:d9:e5:04:cf:a8:cf: e6:d6:23:9c:58:37:b6:33:17:a5:51:54:f5:3c:45: f7:67:f5:a4:23:6d:4f:df:3f:7e:e8:ec:e9:f7:21: eb:f6:61:2b:e8:b6:7f:96:be:f6:1c:28:9d:43:f5: 0e:a1:7a:5c:17:6e:15:99:8f:a7:d4:5c:02:b1:53: 8f:eb:e7:c7:e1:d6:4f:ce:18:4d:1a:f6:b3:74:cb: 44:9a:0a:0d:70:9c:cd:5c:3a:14:58:5c:c2:d2:23: ad:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:18:8F:A4:6B:94:BC:78:E1:31:5C:CA:90:E9:3D:52:DA:5B:D5:DF X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:69:09:7a:7d:ef:f2:e4:5a:bf:55:5b:c5:c9:77:32:94:d1: f8:e9:ed:98:3d:5c:15:06:f6:62:6e:36:ef:2e:ff:71:17:4e: 75:52:b4:9a:9d:df:3c:ee:49:c3:e7:44:d6:5d:4a:f9:07:42: 48:0a:6c:a1:d1:1c:f6:6a:d4:0f:82:22:6b:34:5c:34:60:01: 2d:de:90:54:c4:13:6c:d7:e1:8c:19:e4:a6:ab:d0:9b:3c:d6: ec:22:b5:39:29:3a:01:f7:83:01:de:41:33:06:e4:53:7d:5a: 27:54:93:a6:ea:f3:82:e8:fe:d0:a6:ea:c9:0b:b5:04:ee:ac: af:c7:02:2d:a5:14:5d:01:0f:46:69:56:d8:f5:1d:09:b2:2b: 51:a4:ac:25:45:8f:e2:f7:2c:e2:e3:c8:ce:69:e4:6b:d5:1d: b1:f4:97:38:39:72:af:d0:f3:5f:05:49:7c:fc:85:0e:7a:97: ea:e8:de:4b:82:17:ba:06:b8:1d:f8:4e:c9:04:93:00:fd:e7: 16:3c:2f:75:34:5e:e0:1d:7a:e4:5b:b6:ee:0f:32:ae:cc:ba: 60:3e:77:bd:75:01:c5:28:6c:a5:01:89:f6:0f:e8:67:b1:3f: 66:d1:c5:bc:a1:5d:cf:94:54:87:2c:c4:0e:46:42:d6:38:25: 2f:bf:97:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjUwNzAxMDUyMjE5WhcNMjUwNzA4MDUyMjE5WjAYMRYwFAYD VQQDEw02ODYzNzA4Yy00NzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0A9h//f61eh8hvISMnqx0ZtVqbwIkUi2nlddSe/d3jprKv/GzIa2oX910vZf IZvH4rAgo4YHDtcMoN1HgZIiUO3tqcw4VLgezr6fD7GFuTTKlCNhqGf7VAahBVg+ 63Vkcn1OJX3M1A6k70o/Juy0CHfoVfLMjP/NdKU0hQWMHzzgqAkqAbUUJWMfSstG 9/aMD0pY3NO2Ndz64sRHSXzZ5QTPqM/m1iOcWDe2MxelUVT1PEX3Z/WkI21P3z9+ 6Ozp9yHr9mEr6LZ/lr72HCidQ/UOoXpcF24VmY+n1FwCsVOP6+fH4dZPzhhNGvaz dMtEmgoNcJzNXDoUWFzC0iOtMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoYj6Rr lLx44TFcypDpPVLaW9XfMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoaQl6fe/y5Fq/VVvFyXcylNH46e2YPVwVBvZibjbvLv9xF051UrSa nd887knD50TWXUr5B0JICmyh0Rz2atQPgiJrNFw0YAEt3pBUxBNs1+GMGeSmq9Cb PNbsIrU5KToB94MB3kEzBuRTfVonVJOm6vOC6P7QpurJC7UE7qyvxwItpRRdAQ9G aVbY9R0JsitRpKwlRY/i9yzi48jOaeRr1R2x9Jc4OXKv0PNfBUl8/IUOepfq6N5L ghe6Brgd+E7JBJMA/ecWPC91NF7gHXrkW7buDzKuzLpgPne9dQHFKGylAYn2D+hn sT9m0cW8oV3PlFSHLMQORkLWOCUvv5cc -----END CERTIFICATE-----Generated at Wed Jul 2 21:36:47 2025 by rpki-client