$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: n4/bZZ0Xvv2C326gHUxY44Z//ECk90D/NcM6Cd3pXl0= Subject key identifier: D8:8B:20:DD:3F:9B:12:E1:0F:9D:F1:1D:06:29:75:BE:4D:37:F1:72 Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: 0192 Signing time: Tue 01 Jul 2025 03:57:27 +0000 Manifest this update: Tue 01 Jul 2025 03:57:26 +0000 Manifest next update: Tue 08 Jul 2025 03:57:26 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: EWUIj4d0rhnqzPvevQJznXZjff2WizFgCgoIDvv0VSg=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: bZ3DvcSU67WmMaGW0gpbOJ7oihqEunDO2oztcjKXnww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C, serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: Jul 1 03:57:26 2025 GMT Not After : Jul 8 03:57:26 2025 GMT Subject: CN=68635ca6-9839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:41:c8:34:87:aa:da:20:af:a3:b4:07:5c:b9: e9:b7:57:c3:54:0d:7b:0e:72:6b:0b:27:0f:65:2d: 41:c9:8f:db:99:c8:3a:c2:77:36:cc:91:81:da:85: f9:e5:f7:2d:66:14:8f:a2:83:f0:5c:d7:51:7a:3d: 5e:0a:fa:af:6c:0a:7a:50:1f:a2:33:71:88:3b:de: ee:98:27:30:60:48:03:85:5a:01:a5:b5:ad:69:97: 75:50:97:83:6f:53:04:c2:cb:e8:b1:d7:bb:ad:d7: fc:d5:f5:46:9e:a5:5d:b7:f6:59:30:ae:dd:65:69: 84:76:2b:f1:4c:86:3f:77:42:73:d7:0b:70:06:d0: 16:76:7d:10:d7:03:a8:2c:c9:b9:87:4d:be:01:7b: 7d:98:96:7d:ed:09:4f:e6:23:a6:43:4d:71:7f:85: 8b:29:0c:c1:05:ae:29:00:b5:e4:03:3a:58:f0:02: cd:b3:40:88:57:dd:88:eb:6d:13:0b:07:dd:a8:7a: 5c:26:17:89:9c:2c:e0:58:ec:3b:b7:33:53:ef:7d: 0d:3c:2f:00:ac:f2:cc:04:2b:9f:36:2e:38:7b:74: c0:7d:ed:49:0f:86:56:73:aa:4f:59:74:8e:b1:fb: 7b:f5:3a:3c:59:5e:69:94:ca:86:1c:ba:71:9d:27: 39:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8B:20:DD:3F:9B:12:E1:0F:9D:F1:1D:06:29:75:BE:4D:37:F1:72 X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:5d:d9:29:1b:6f:1d:a6:19:24:4e:11:5b:d5:06:60:e3:bd: fc:46:4b:77:4d:78:f7:3c:97:cf:58:51:47:2f:f8:11:c3:b6: 61:83:62:2a:c0:46:b7:c8:24:56:d3:83:18:25:88:c6:9b:c4: 1f:51:ff:a9:35:0c:5d:cc:68:89:ae:35:cf:64:bd:d6:99:4f: 4f:b9:7a:80:94:9f:2d:e0:39:dd:7b:0a:0e:38:d9:72:fd:c4: 3d:00:aa:50:a5:c9:ff:72:f7:eb:f2:80:26:29:c5:da:52:b9: b8:c3:cc:ad:c4:2a:50:63:04:88:56:35:8d:ca:0c:87:37:c2: e9:aa:45:67:dc:35:a7:f4:4b:b9:25:84:ec:7c:49:43:b1:4d: 61:2f:0f:ca:24:70:ec:61:df:ca:ec:b5:24:c4:57:92:ef:eb: fb:97:16:0e:4d:5a:9b:4c:4e:07:4d:39:35:42:d3:6c:44:f0: e9:80:c3:25:4f:03:37:6d:dd:1a:de:ee:6c:f4:da:04:e5:23: 33:c0:cf:4f:ed:02:01:2a:97:6a:c8:48:b7:92:29:77:c8:1b: 35:cc:00:59:fe:e5:1d:9e:1b:ed:7e:6d:03:6b:af:2a:bd:2e: bb:65:32:d9:40:7a:25:ba:a4:e0:75:b3:ab:75:66:7d:03:47: 41:a5:25:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjUwNzAxMDM1NzI2WhcNMjUwNzA4MDM1NzI2WjAYMRYwFAYD VQQDEw02ODYzNWNhNi05ODM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUHINIeq2iCvo7QHXLnpt1fDVA17DnJrCycPZS1ByY/bmcg6wnc2zJGB2oX5 5fctZhSPooPwXNdRej1eCvqvbAp6UB+iM3GIO97umCcwYEgDhVoBpbWtaZd1UJeD b1MEwsvosde7rdf81fVGnqVdt/ZZMK7dZWmEdivxTIY/d0Jz1wtwBtAWdn0Q1wOo LMm5h02+AXt9mJZ97QlP5iOmQ01xf4WLKQzBBa4pALXkAzpY8ALNs0CIV92I620T CwfdqHpcJheJnCzgWOw7tzNT730NPC8ArPLMBCufNi44e3TAfe1JD4ZWc6pPWXSO sft79To8WV5plMqGHLpxnSc5VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiLIN0/ mxLhD53xHQYpdb5NN/FyMB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7XdkpG28dphkkThFb1QZg4738Rkt3TXj3PJfPWFFHL/gRw7Zhg2Iq wEa3yCRW04MYJYjGm8QfUf+pNQxdzGiJrjXPZL3WmU9PuXqAlJ8t4DndewoOONly /cQ9AKpQpcn/cvfr8oAmKcXaUrm4w8ytxCpQYwSIVjWNygyHN8LpqkVn3DWn9Eu5 JYTsfElDsU1hLw/KJHDsYd/K7LUkxFeS7+v7lxYOTVqbTE4HTTk1QtNsRPDpgMMl TwM3bd0a3u5s9NoE5SMzwM9P7QIBKpdqyEi3kil3yBs1zABZ/uUdnhvtfm0Da68q vS67ZTLZQHoluqTgdbOrdWZ9A0dBpSWf -----END CERTIFICATE-----Generated at Wed Jul 2 14:22:15 2025 by rpki-client