$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: +A1iJv5m1j+O45e/pGe+ZYCT/MSBi0m2vjnLNhyc8/4= Subject key identifier: 3E:AE:6D:45:C0:9D:6E:90:07:77:2B:11:5E:D5:D4:5B:29:4C:9C:48 Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 2341 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 2313 Signing time: Sat 28 Jun 2025 15:45:15 +0000 Manifest this update: Sat 28 Jun 2025 15:45:14 +0000 Manifest next update: Sat 05 Jul 2025 15:45:14 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: rsknRXwmNYLmWtC/mzmXGad1ESyYBtWaVT5Sgc2DdGA=) 2: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: lXOFb0YJQZdFFX90oDPgUqBGFkT5p8wJoFtkhJ/Uo9A=) 3: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: p5KqoJW3tDR/PENRBzb6MlrbIycp47ssNfWx91ehau4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 15:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9025 (0x2341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3, serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Jun 28 15:45:14 2025 GMT Not After : Jul 5 15:45:14 2025 GMT Subject: CN=68600e0a-e002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:03:f8:7e:bc:ed:1c:d3:e9:4b:f7:b0:c1:fe: f1:ad:20:2d:d9:78:f1:c2:da:c0:55:1b:e8:05:07: 1b:1e:cb:d4:e0:13:b2:57:a0:1e:cb:6c:c3:08:7f: 3a:8b:91:d4:48:07:c5:d9:0d:d8:e3:9d:a5:f8:9a: d8:57:18:01:64:98:67:33:47:24:5b:4a:d0:99:b1: c2:e8:4f:b8:57:4c:5d:bb:a0:93:5b:90:9e:1f:85: 31:68:cf:e0:11:8f:22:b2:11:dd:c7:69:0c:e8:50: ed:01:1a:82:24:de:9c:28:be:ee:dd:4a:68:47:45: d0:35:ca:df:9a:38:8c:21:60:36:99:db:08:02:95: 32:ee:78:45:fb:24:23:66:dd:78:45:d8:e5:b3:c6: 47:26:3d:3a:e7:a7:64:65:c9:a0:e1:fe:f5:4b:4c: 35:76:51:01:d2:66:99:9c:01:57:86:f8:8c:f2:cb: c1:0b:5a:e0:51:83:f0:c0:54:8f:20:47:1a:f7:2c: 7b:7c:39:e7:c7:3a:50:c9:8a:89:48:85:5e:d1:9f: f0:9d:e7:d5:7d:96:df:da:4a:17:a1:96:0a:ac:b5: bb:8b:37:8f:ab:1a:1f:45:2d:c4:48:e8:ab:da:bb: 51:db:1d:0c:35:2b:b5:72:d5:73:49:2e:40:6f:3b: 25:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AE:6D:45:C0:9D:6E:90:07:77:2B:11:5E:D5:D4:5B:29:4C:9C:48 X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:4f:a6:3f:35:a7:a6:d6:df:ae:d8:85:c2:38:1d:bc:5e:f3: 07:87:71:2b:de:15:ea:cf:7f:48:fc:b1:c3:4e:2f:f4:09:05: a5:b9:95:83:68:47:8d:48:8c:6a:7e:8a:8c:c2:a1:63:13:94: 01:58:5a:26:6f:0a:7d:b7:7d:cc:f5:90:0d:97:5b:2e:ae:57: 72:5c:8c:b6:ac:fd:fe:9d:f0:72:04:56:09:20:de:a1:65:e8: 25:4c:8f:7b:50:64:47:4a:a5:51:35:00:1e:07:87:81:2e:8d: 5a:27:f1:64:82:53:e8:e5:63:d6:2c:18:e1:c7:37:50:e5:42: 4d:3b:3f:98:a5:d5:59:69:b0:8a:0a:68:48:fe:c0:2c:f8:b5: cd:da:ef:94:02:0c:b7:87:65:8c:42:27:7a:09:2f:1c:ad:42: 74:60:9f:61:1f:1d:5e:5a:94:ee:05:3c:5d:41:3a:2d:aa:7a: 0b:26:74:7d:31:49:ca:51:d2:dc:d4:d3:5c:3c:09:25:fd:9f: a2:87:7f:41:45:ae:5e:05:8c:8a:d3:81:cc:cf:37:9b:92:dc: e1:0b:bf:66:c3:ec:5e:7a:fb:8d:6f:64:b8:74:0a:10:95:af: 6e:29:c3:85:89:07:2f:eb:1b:54:f2:1f:73:bc:ba:d7:4e:5c: 5a:ce:8b:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjUwNjI4MTU0NTE0WhcNMjUwNzA1MTU0NTE0WjAYMRYwFAYD VQQDEw02ODYwMGUwYS1lMDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AP4frztHNPpS/ewwf7xrSAt2XjxwtrAVRvoBQcbHsvU4BOyV6Aey2zDCH86 i5HUSAfF2Q3Y452l+JrYVxgBZJhnM0ckW0rQmbHC6E+4V0xdu6CTW5CeH4UxaM/g EY8ishHdx2kM6FDtARqCJN6cKL7u3UpoR0XQNcrfmjiMIWA2mdsIApUy7nhF+yQj Zt14Rdjls8ZHJj0656dkZcmg4f71S0w1dlEB0maZnAFXhviM8svBC1rgUYPwwFSP IEca9yx7fDnnxzpQyYqJSIVe0Z/wnefVfZbf2koXoZYKrLW7izePqxofRS3ESOir 2rtR2x0MNSu1ctVzSS5Abzsl4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6ubUXA nW6QB3crEV7V1FspTJxIMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmT6Y/Naem1t+u2IXCOB28XvMHh3Er3hXqz39I/LHDTi/0CQWluZWD aEeNSIxqfoqMwqFjE5QBWFombwp9t33M9ZANl1surldyXIy2rP3+nfByBFYJIN6h ZeglTI97UGRHSqVRNQAeB4eBLo1aJ/FkglPo5WPWLBjhxzdQ5UJNOz+YpdVZabCK CmhI/sAs+LXN2u+UAgy3h2WMQid6CS8crUJ0YJ9hHx1eWpTuBTxdQTotqnoLJnR9 MUnKUdLc1NNcPAkl/Z+ih39BRa5eBYyK04HMzzebktzhC79mw+xeevuNb2S4dAoQ la9uKcOFiQcv6xtU8h9zvLrXTlxazotL -----END CERTIFICATE-----Generated at Sun Jun 29 12:28:02 2025 by rpki-client