$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: EszyqJ29E/XaKF5trKr8ftv2MJR9LOyK8B5P9lZsY4c= Subject key identifier: 62:0C:F6:2A:EE:0A:EB:0F:B0:33:CD:71:E2:22:6F:22:E3:35:F0:32 Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 02DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 02D1 Signing time: Thu 03 Jul 2025 01:46:00 +0000 Manifest this update: Thu 03 Jul 2025 01:45:59 +0000 Manifest next update: Thu 10 Jul 2025 01:45:59 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: xSSwYT/KoqA+/S+n0tdAQI/8miCpVb9kbsWqmssaOMA=) 2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: rCIHZh9wUruVRZk/2Wl+iO0bQmypaGymRp+P5pHJgrc=) 3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: WLqs4EYDGZGhgsTcvZkB1qzpm9zeqwQq3iz4UzKMW3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Jul 3 01:45:59 2025 GMT Not After : Jul 10 01:45:59 2025 GMT Subject: CN=6865e0d8-4f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:39:9f:fb:dc:37:37:50:9c:d4:59:47:85:a2: b8:fa:9a:be:53:c6:d0:0e:ee:b1:b1:07:b1:1a:66: 92:0d:b2:59:7f:41:77:67:f4:4f:6e:f5:d7:e2:94: df:d6:46:3f:2a:96:c6:0b:e1:55:03:82:97:a9:ad: 54:48:cd:a4:4b:cb:8b:8e:6e:bc:91:00:de:a3:f7: ad:f5:93:78:79:b9:86:85:94:8c:34:f0:09:85:b5: f9:0e:fd:69:16:eb:6a:df:93:71:3f:89:c9:8f:d9: e1:d2:5f:28:6c:88:1d:f8:11:f1:0a:56:30:ae:af: 1a:ab:de:18:d5:1e:52:25:d1:8c:4b:8b:ad:c6:33: 44:1a:df:3a:32:35:b1:01:f4:cd:78:2a:ca:fe:99: 2b:2d:80:e0:bf:76:91:02:5d:0b:34:6c:cf:a4:d3: 3f:6e:b8:4d:fb:f0:fe:ba:a6:18:10:e3:78:2b:5d: a8:4c:f7:a0:91:5d:66:03:e2:e0:ff:e6:b8:d4:52: 2a:95:12:a3:da:2d:77:73:3d:f0:c1:55:24:22:29: 8e:a3:c8:ad:9d:7c:36:69:76:f0:a3:11:5d:92:e6: e5:17:2c:dd:5c:c3:7b:95:68:58:56:36:c1:ce:c2: 32:0b:79:35:40:e7:50:07:e1:7c:83:5e:24:cd:9d: c6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0C:F6:2A:EE:0A:EB:0F:B0:33:CD:71:E2:22:6F:22:E3:35:F0:32 X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:27:0f:0c:95:58:1e:55:2a:20:4f:f1:1d:25:5a:cb:95:86: 94:e8:33:2f:fa:f5:2d:90:a7:0d:16:19:c8:6b:ea:88:27:8c: 48:fd:d9:9a:cb:b1:ca:d7:44:d8:49:85:04:d2:ba:80:d5:ad: c6:cf:c3:6e:7e:2d:d9:e3:e5:32:fe:2e:03:91:31:1a:4c:e9: 07:b1:f6:bd:d0:24:79:68:c2:d5:58:53:c9:ee:2e:da:01:c3: d1:21:56:a8:ec:6f:18:38:f5:20:40:1a:53:52:5e:97:f7:56: 88:0a:d7:0a:29:f3:bd:40:69:54:03:68:2c:51:45:7e:01:e3: 69:f0:25:4c:a0:aa:0c:05:d8:24:5d:98:a0:72:d7:1b:a4:ff: 8d:7e:c9:77:e1:b0:9a:18:e5:2f:29:4d:61:48:3e:e3:49:88: 8f:21:c0:5b:f5:07:5a:54:62:23:55:23:7e:38:66:90:5d:f4: 33:72:ae:29:ea:45:fc:04:89:7a:b5:85:cf:50:28:4e:a4:35: 69:c8:66:fe:a2:d3:f6:01:b9:72:63:1e:dd:3a:34:4e:c2:b0: 28:e7:98:47:2d:d3:53:a5:f3:b7:ca:e1:c0:0b:84:6b:ad:78: 68:11:00:d0:3e:4b:62:3b:d2:67:00:1c:4e:f8:c4:8e:18:18: 27:48:90:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjUwNzAzMDE0NTU5WhcNMjUwNzEwMDE0NTU5WjAYMRYwFAYD VQQDEw02ODY1ZTBkOC00ZjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDmf+9w3N1Cc1FlHhaK4+pq+U8bQDu6xsQexGmaSDbJZf0F3Z/RPbvXX4pTf 1kY/KpbGC+FVA4KXqa1USM2kS8uLjm68kQDeo/et9ZN4ebmGhZSMNPAJhbX5Dv1p Futq35NxP4nJj9nh0l8obIgd+BHxClYwrq8aq94Y1R5SJdGMS4utxjNEGt86MjWx AfTNeCrK/pkrLYDgv3aRAl0LNGzPpNM/brhN+/D+uqYYEON4K12oTPegkV1mA+Lg /+a41FIqlRKj2i13cz3wwVUkIimOo8itnXw2aXbwoxFdkublFyzdXMN7lWhYVjbB zsIyC3k1QOdQB+F8g14kzZ3G/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIM9iru CusPsDPNceIibyLjNfAyMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Jw8MlVgeVSogT/EdJVrLlYaU6DMv+vUtkKcNFhnIa+qIJ4xI/dma y7HK10TYSYUE0rqA1a3Gz8Nufi3Z4+Uy/i4DkTEaTOkHsfa90CR5aMLVWFPJ7i7a AcPRIVao7G8YOPUgQBpTUl6X91aICtcKKfO9QGlUA2gsUUV+AeNp8CVMoKoMBdgk XZigctcbpP+Nfsl34bCaGOUvKU1hSD7jSYiPIcBb9QdaVGIjVSN+OGaQXfQzcq4p 6kX8BIl6tYXPUChOpDVpyGb+otP2AblyYx7dOjROwrAo55hHLdNTpfO3yuHAC4Rr rXhoEQDQPktiO9JnABxO+MSOGBgnSJDM -----END CERTIFICATE-----Generated at Thu Jul 3 10:30:34 2025 by rpki-client