$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: +AyqmLlLFbaVSW3MHJqEdGNF+may59kB9CgFty5HnNY= Subject key identifier: B1:96:98:10:34:33:D3:72:5C:10:71:DB:C0:33:04:6F:51:B7:11:0C Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0148 Signing time: Thu 03 Jul 2025 04:20:46 +0000 Manifest this update: Thu 03 Jul 2025 04:20:46 +0000 Manifest next update: Thu 10 Jul 2025 04:20:46 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: qjGKeJSpGbRmTbD+AiBr6AMQYrDiuhz/T4kmx9KNhDU=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Jul 3 04:20:46 2025 GMT Not After : Jul 10 04:20:46 2025 GMT Subject: CN=6866051e-0699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:15:23:54:97:4d:21:a1:75:82:41:84:07:eb: fc:0d:9b:85:c2:b3:dc:37:06:bd:25:38:cb:dc:59: 24:64:46:2c:bf:a9:45:95:c0:37:ea:7e:69:26:0b: 60:ef:14:d8:53:ac:a2:a8:52:62:33:5e:90:66:8a: 75:7a:fd:8a:9e:72:8f:81:10:6e:db:cc:70:47:d5: 55:34:70:8f:95:f0:aa:e5:de:7d:9d:be:59:9d:7e: 60:5c:b0:c6:43:22:ed:f3:a6:fd:bb:cd:e3:ef:20: ea:a2:cb:78:f2:82:31:bb:5d:cc:94:6e:09:6e:11: 2c:c5:af:55:2f:c4:53:5f:95:7e:14:1d:a0:4a:14: f9:72:c1:83:82:17:b5:d4:34:c6:a6:3c:5a:68:1e: 5d:cc:3f:f6:56:af:c4:27:d1:de:b5:55:4f:cc:d5: 25:58:32:fe:c7:c6:a3:79:14:3c:98:4e:4d:96:57: c1:c9:cc:ba:f9:86:98:dc:bb:96:5a:e0:d7:c2:52: 0a:55:9c:8f:84:e4:bc:aa:55:ed:ca:ac:a8:d7:23: c6:c1:2e:7d:72:56:07:59:3d:6f:b8:1d:f2:d8:c1: a5:27:dc:c7:af:f3:42:46:19:97:a0:e7:6e:06:81: 4c:bd:e1:06:d2:a8:6f:7d:a0:51:bb:e1:39:83:f7: ac:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:96:98:10:34:33:D3:72:5C:10:71:DB:C0:33:04:6F:51:B7:11:0C X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:56:14:3d:3e:1b:78:90:7e:4f:a6:9a:9c:96:d0:7a:c1:ac: 5e:d6:5c:34:70:b7:01:63:ca:cd:dc:eb:48:80:2e:f4:90:a3: a7:6b:89:f8:1a:34:c3:df:35:57:28:6f:aa:7c:7a:3e:6b:74: f8:b1:ec:83:bf:ea:b4:6b:71:64:e5:be:69:95:a7:81:00:1a: b4:72:54:fb:22:54:bf:bb:c6:4f:ef:09:cf:0a:d6:f3:ec:d2: 0b:ed:89:66:43:86:43:ad:3a:7e:f9:37:2e:51:e9:dc:b4:07: ba:4a:66:2b:f0:f3:57:78:e1:76:26:78:f9:1b:4c:fa:06:e0: 7f:56:c1:37:0f:b4:75:15:15:03:33:bc:ce:04:9b:83:ed:32: 15:d1:2e:6c:54:a6:4c:f3:27:5f:9b:8a:aa:25:48:1b:fc:dd: 7a:85:c9:8b:2c:37:8c:ef:72:a3:6e:13:3a:50:30:9d:66:4c: 33:cb:57:a0:05:d3:8c:d1:df:d4:a4:a8:35:0c:a5:5e:70:4e: a0:9b:e4:c7:77:56:99:fe:f2:ba:8c:8b:c3:38:c8:55:d6:ab: b4:1b:09:fc:b2:18:0f:fd:02:2c:32:5e:60:7e:59:8c:e4:0c: 35:a3:17:f4:89:5d:f2:5d:95:f5:dd:7a:55:4b:38:82:e3:29: 5a:cb:14:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwNzAzMDQyMDQ2WhcNMjUwNzEwMDQyMDQ2WjAYMRYwFAYD VQQDEw02ODY2MDUxZS0wNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRUjVJdNIaF1gkGEB+v8DZuFwrPcNwa9JTjL3FkkZEYsv6lFlcA36n5pJgtg 7xTYU6yiqFJiM16QZop1ev2KnnKPgRBu28xwR9VVNHCPlfCq5d59nb5ZnX5gXLDG QyLt86b9u83j7yDqost48oIxu13MlG4JbhEsxa9VL8RTX5V+FB2gShT5csGDghe1 1DTGpjxaaB5dzD/2Vq/EJ9HetVVPzNUlWDL+x8ajeRQ8mE5NllfBycy6+YaY3LuW WuDXwlIKVZyPhOS8qlXtyqyo1yPGwS59clYHWT1vuB3y2MGlJ9zHr/NCRhmXoOdu BoFMveEG0qhvfaBRu+E5g/esQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGWmBA0 M9NyXBBx28AzBG9RtxEMMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANVhQ9Pht4kH5PppqcltB6waxe1lw0cLcBY8rN3OtIgC70kKOna4n4 GjTD3zVXKG+qfHo+a3T4seyDv+q0a3Fk5b5plaeBABq0clT7IlS/u8ZP7wnPCtbz 7NIL7YlmQ4ZDrTp++TcuUenctAe6SmYr8PNXeOF2Jnj5G0z6BuB/VsE3D7R1FRUD M7zOBJuD7TIV0S5sVKZM8ydfm4qqJUgb/N16hcmLLDeM73KjbhM6UDCdZkwzy1eg BdOM0d/UpKg1DKVecE6gm+THd1aZ/vK6jIvDOMhV1qu0Gwn8shgP/QIsMl5gflmM 5Aw1oxf0iV3yXZX13XpVSziC4ylayxQY -----END CERTIFICATE-----Generated at Sat Jul 5 02:48:26 2025 by rpki-client