$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: /pkonwqtxeCR0BiphWvwr0keGDXynEgsQgB0zMFdIKY= Subject key identifier: DB:E4:0F:33:A8:61:6B:C8:C3:FA:64:12:AD:80:C0:A4:BA:B4:80:AD Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 0133 Signing time: Thu 03 Jul 2025 04:57:15 +0000 Manifest this update: Thu 03 Jul 2025 04:57:15 +0000 Manifest next update: Thu 10 Jul 2025 04:57:15 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: qeTWBIHeLj/AJPeuB8ZJtdBuIDiWt3U+C2hYP2cawUA=) 2: C863991849FA11F0B806FE48C4F9AE02.roa (hash: hkLckuw5otkBSXdsjVbPLtt1WgA/Ric4lgUGja07WIw=) 3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: mJeqjVOv7jvR5HIjSJKMtiF4WeNSaF9wcOpOHqbk62w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Jul 3 04:57:15 2025 GMT Not After : Jul 10 04:57:15 2025 GMT Subject: CN=68660dab-c93d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:9e:76:6f:99:4c:44:67:6d:c3:41:43:da: dc:d4:6c:fd:f8:58:8f:0f:93:44:11:e2:e3:be:56: f8:70:21:42:21:08:a5:2c:92:2e:80:c7:5d:5a:f8: 2b:be:3a:67:d5:8b:ec:2f:d5:64:38:b9:ca:22:7d: 40:ab:86:c4:7f:cd:9b:8e:51:ca:ba:e1:85:f5:28: c3:6f:24:59:04:3c:f6:56:bd:20:39:e3:65:4d:ec: 6e:d6:7a:28:85:0d:d6:42:1d:6b:8d:2a:3b:4c:45: b7:20:22:7c:71:21:1f:32:55:12:af:08:a2:54:ee: 31:33:94:0f:3e:73:5f:1d:2a:13:3f:68:01:4a:9b: 3f:bb:39:f4:df:8a:9e:6e:40:c3:8e:ca:0f:80:d4: 6a:12:94:91:6b:c9:5a:42:4f:d7:1e:a5:64:fa:ac: 0d:fc:45:41:cc:d4:2c:6e:70:8b:a4:ba:f8:04:51: 38:f1:d2:31:0d:1b:74:0c:4f:48:92:ca:de:17:7c: ec:7f:cf:da:a3:02:1f:67:8f:8f:6c:6e:d9:d1:b2: e5:a9:e1:45:89:75:95:9c:a1:92:c6:38:20:83:1b: 91:93:7d:21:c8:86:51:14:15:a1:ee:89:68:c3:5c: 90:00:5d:f0:8c:03:de:a4:b9:bc:88:d6:58:7d:85: ff:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E4:0F:33:A8:61:6B:C8:C3:FA:64:12:AD:80:C0:A4:BA:B4:80:AD X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:74:21:1a:c2:b7:4e:17:a6:ad:24:1e:7c:fa:b6:6e:63:94: 5f:a7:93:ef:7f:cd:31:7d:3d:44:70:e3:33:e2:3f:36:10:b4: 85:2e:7f:ba:08:43:66:d1:a5:64:9a:1a:32:03:72:00:57:8f: 26:7d:2c:5e:d1:83:5b:d9:f1:b6:dc:89:1b:71:f4:91:42:71: 38:27:fa:5e:f3:d2:85:6f:f4:06:a0:b4:29:0e:f9:48:67:69: d7:0c:6f:a3:e8:70:4d:27:88:5b:53:28:2c:85:e9:70:b9:c4: fa:0a:e3:86:94:eb:15:15:30:c3:6f:2e:1a:b7:fc:22:27:d6: 00:e5:14:40:2c:83:59:e1:ac:2b:02:52:51:c7:76:f3:bf:51: 22:3b:aa:eb:67:92:ae:1a:62:fd:44:d8:86:7f:98:1f:c0:9e: 17:50:59:9c:3c:5a:00:ea:ac:c3:84:b0:58:81:8e:f8:4f:2f: cb:fd:8a:9a:09:73:45:e2:f9:c9:b1:fb:d3:c2:d4:30:7a:87: 98:61:ca:38:23:02:73:da:af:00:12:f4:3f:d9:b5:40:6c:e7: 37:4a:88:5c:74:e4:9e:38:7d:aa:d4:0d:0d:f5:c5:72:3d:b7: 03:7f:98:c5:cd:f1:d7:ae:f8:13:90:da:bf:86:32:ef:99:de: 24:92:67:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjUwNzAzMDQ1NzE1WhcNMjUwNzEwMDQ1NzE1WjAYMRYwFAYD VQQDEw02ODY2MGRhYi1jOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttWedm+ZTERnbcNBQ9rc1Gz9+FiPD5NEEeLjvlb4cCFCIQilLJIugMddWvgr vjpn1YvsL9VkOLnKIn1Aq4bEf82bjlHKuuGF9SjDbyRZBDz2Vr0gOeNlTexu1noo hQ3WQh1rjSo7TEW3ICJ8cSEfMlUSrwiiVO4xM5QPPnNfHSoTP2gBSps/uzn034qe bkDDjsoPgNRqEpSRa8laQk/XHqVk+qwN/EVBzNQsbnCLpLr4BFE48dIxDRt0DE9I ksreF3zsf8/aowIfZ4+PbG7Z0bLlqeFFiXWVnKGSxjgggxuRk30hyIZRFBWh7olo w1yQAF3wjAPepLm8iNZYfYX/uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvkDzOo YWvIw/pkEq2AwKS6tICtMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJX dnlkTGkzcUpqR2tsVHJ1WU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYdCEawrdOF6atJB58+rZuY5Rfp5Pvf80xfT1EcOMz4j82ELSFLn+6 CENm0aVkmhoyA3IAV48mfSxe0YNb2fG23IkbcfSRQnE4J/pe89KFb/QGoLQpDvlI Z2nXDG+j6HBNJ4hbUygshelwucT6CuOGlOsVFTDDby4at/wiJ9YA5RRALINZ4awr AlJRx3bzv1EiO6rrZ5KuGmL9RNiGf5gfwJ4XUFmcPFoA6qzDhLBYgY74Ty/L/Yqa CXNF4vnJsfvTwtQweoeYYco4IwJz2q8AEvQ/2bVAbOc3SohcdOSeOH2q1A0N9cVy PbcDf5jFzfHXrvgTkNq/hjLvmd4kkmf5 -----END CERTIFICATE-----Generated at Thu Jul 3 07:04:27 2025 by rpki-client