$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: 5Ku7QTlQEShgyZmlwf+uewhvbbXaWa2iCA5i1rbBnN8= Subject key identifier: 3B:6E:C8:47:FE:9C:47:9C:58:F7:37:58:FD:2F:F1:C4:83:ED:AD:F3 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 09C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 09A1 Signing time: Wed 02 Jul 2025 05:46:59 +0000 Manifest this update: Wed 02 Jul 2025 05:46:58 +0000 Manifest next update: Wed 09 Jul 2025 05:46:58 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: UROCzLQia4iOV90B6BBjYzFKH4ISInywc64NuxjCpPg=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: XjGmTLSTgsODpSCPTs5pCmUy9NRCIk0AE9Vg9MOaVdU=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 05:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Jul 2 05:46:58 2025 GMT Not After : Jul 9 05:46:58 2025 GMT Subject: CN=6864c7d3-cf27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bb:a5:b7:62:42:ed:bf:2d:78:56:f1:47:94: 82:05:53:2a:66:2d:30:95:4f:1f:2d:23:a3:9e:41: fa:d5:b0:39:2f:86:e8:b6:0d:5a:2a:41:12:0c:5f: 2c:d0:16:5c:07:92:b2:45:56:cb:ff:19:1d:08:30: d4:84:be:fc:5c:34:0f:7b:37:cb:28:91:ad:6b:74: 00:b5:37:54:fd:d1:67:49:aa:93:43:f9:62:ae:b3: 97:5a:1d:1c:ee:f6:17:7b:8b:e3:4c:63:15:df:3b: d3:fa:b7:fd:3c:73:9a:c2:c6:b7:f9:0a:8f:f2:14: 25:ba:22:2e:36:9d:a8:b7:0a:1d:55:81:ff:f7:ec: dc:ad:94:e0:78:82:a3:a3:32:ad:cd:cd:bf:2c:15: 6b:ae:8e:5f:06:40:c8:d5:a0:46:89:fb:d9:6e:a7: 5b:5e:ac:25:de:a6:55:6b:ca:26:0c:d3:dc:17:62: 32:0b:98:59:39:e0:f1:c3:52:77:0e:8d:74:83:95: 66:74:b3:18:7f:c4:48:bf:b8:3a:f1:2b:db:b1:3d: bd:89:53:6e:e5:3d:8c:c3:99:24:d1:f4:61:dd:6a: ad:b3:76:65:12:a5:06:ca:3f:19:2c:2b:85:28:5e: 3f:74:f4:3e:88:1b:7f:c4:46:69:f5:d2:58:20:24: c5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6E:C8:47:FE:9C:47:9C:58:F7:37:58:FD:2F:F1:C4:83:ED:AD:F3 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:23:9e:ee:20:24:77:11:1a:6b:5d:1e:e1:08:9a:b2:bf:c0: e1:3c:7a:70:ca:f5:2e:a8:67:02:f1:72:86:8a:b3:25:26:24: 51:e1:81:dd:41:98:e7:f0:d6:73:e6:9e:4a:b2:7e:87:35:04: 8a:78:9f:fd:c2:19:e1:f9:74:9e:06:4f:c6:b1:9d:86:8c:02: 49:48:6c:b2:cd:9f:2a:87:f9:9e:e3:1c:af:c5:0d:54:cc:a0: b9:32:0c:74:d5:1a:07:34:a8:9b:12:8a:11:64:ce:50:71:67: 69:68:2a:bc:94:85:ed:18:90:14:06:8e:d6:9a:a9:1f:c0:d5: 85:50:e4:2e:7a:e1:db:25:8a:88:55:90:06:5e:d7:44:f0:53: 1d:50:c7:22:5f:0e:03:91:1c:0a:35:2d:ec:54:b8:5e:54:0a: 15:da:41:ff:1e:91:b2:5c:f4:83:1a:d9:c8:10:26:a3:6a:85: a0:09:5c:96:dc:81:66:f8:ba:fc:45:85:72:bc:41:ca:f2:35: 8e:13:ef:b8:57:e8:d4:a4:4b:2a:41:fb:03:10:1a:bb:2a:c8: 85:9b:5d:e9:66:72:ab:d6:55:68:4a:b8:78:98:3f:4e:55:14: 8f:85:c0:11:73:65:52:9a:f6:8e:43:8d:90:5b:25:a0:df:9c: 30:bd:82:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUwNzAyMDU0NjU4WhcNMjUwNzA5MDU0NjU4WjAYMRYwFAYD VQQDEw02ODY0YzdkMy1jZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLult2JC7b8teFbxR5SCBVMqZi0wlU8fLSOjnkH61bA5L4botg1aKkESDF8s 0BZcB5KyRVbL/xkdCDDUhL78XDQPezfLKJGta3QAtTdU/dFnSaqTQ/lirrOXWh0c 7vYXe4vjTGMV3zvT+rf9PHOawsa3+QqP8hQluiIuNp2otwodVYH/9+zcrZTgeIKj ozKtzc2/LBVrro5fBkDI1aBGifvZbqdbXqwl3qZVa8omDNPcF2IyC5hZOeDxw1J3 Do10g5VmdLMYf8RIv7g68SvbsT29iVNu5T2Mw5kk0fRh3Wqts3ZlEqUGyj8ZLCuF KF4/dPQ+iBt/xEZp9dJYICTFcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtuyEf+ nEecWPc3WP0v8cSD7a3zMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjI57uICR3ERprXR7hCJqyv8DhPHpwyvUuqGcC8XKGirMlJiRR4YHd QZjn8NZz5p5Ksn6HNQSKeJ/9whnh+XSeBk/GsZ2GjAJJSGyyzZ8qh/me4xyvxQ1U zKC5Mgx01RoHNKibEooRZM5QcWdpaCq8lIXtGJAUBo7WmqkfwNWFUOQueuHbJYqI VZAGXtdE8FMdUMciXw4DkRwKNS3sVLheVAoV2kH/HpGyXPSDGtnIECajaoWgCVyW 3IFm+Lr8RYVyvEHK8jWOE++4V+jUpEsqQfsDEBq7KsiFm13pZnKr1lVoSrh4mD9O VRSPhcARc2VSmvaOQ42QWyWg35wwvYL/ -----END CERTIFICATE-----Generated at Wed Jul 2 19:18:39 2025 by rpki-client