$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft File: xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft (raw, json) Hash identifier: Kqy/B+gFRIr1+BCzgC3OB6UTP4jto+NCMdxsYhfJdxI= Subject key identifier: 68:73:AD:2D:27:CE:C2:EF:10:AB:3D:29:8F:EF:C4:87:07:1A:92:2B Authority key identifier: C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C Certificate issuer: /CN=A91BFE4E/serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft Manifest number: 90 Signing time: Thu 03 Jul 2025 06:38:20 +0000 Manifest this update: Thu 03 Jul 2025 06:38:20 +0000 Manifest next update: Thu 10 Jul 2025 06:38:20 +0000 Files and hashes: 1: xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl (hash: j/xLHD4v1jEVSCbWjhZAhIzuytRy7r23ZmqZp2JKS8Y=) 2: CB31DFEA7BE411EFB6955155C4F9AE02.roa (hash: aGiRG+xUGgWwAx/G6pVvTX9ourgHUuGhOXJQLlTyA9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Validity Not Before: Jul 3 06:38:20 2025 GMT Not After : Jul 10 06:38:20 2025 GMT Subject: CN=6866255c-239d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:56:a5:90:94:de:a6:db:4f:20:d5:39:fd: e0:84:b7:4a:67:f6:25:6b:73:3a:8d:0a:4f:c2:e8: 44:8c:c4:f7:66:f2:70:8c:32:d8:6f:33:7d:a2:1f: e4:8d:54:08:68:ab:5b:24:19:e5:c5:6b:16:c4:27: 94:a8:c4:b6:24:3d:4b:4b:dc:44:b4:b7:c2:ff:22: 25:b3:75:23:73:a2:5a:fd:30:01:11:70:41:58:bf: a0:78:fa:39:20:1a:a0:8c:6f:e6:4c:b5:0e:0c:97: ea:28:d2:51:2d:12:c8:f8:58:5d:0a:27:dc:6e:9b: 45:2d:07:95:4a:cf:72:d6:66:5b:9c:7c:6a:34:88: d9:2d:cb:d0:ab:8d:f9:aa:f9:c9:bf:a8:c1:58:1b: 97:ee:be:c8:a7:0c:74:fe:58:8f:18:eb:9d:02:49: 5b:68:15:48:e8:20:f3:2a:55:73:66:62:bd:1e:0e: 77:1e:af:c3:d3:75:e5:5f:20:a4:b6:8e:7d:bd:65: 2d:aa:62:81:b7:e0:ab:1f:04:95:3b:d8:d3:c8:03: bb:23:0e:5d:94:52:cd:89:44:32:05:48:11:12:f3: 27:dd:30:24:17:8a:84:59:41:ad:5a:7e:23:ec:61: 40:e0:67:19:87:a0:cb:83:39:f0:2d:c3:de:aa:ec: e5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:73:AD:2D:27:CE:C2:EF:10:AB:3D:29:8F:EF:C4:87:07:1A:92:2B X509v3 Authority Key Identifier: keyid:C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:79:21:df:bc:5e:58:1a:32:ef:3b:04:3f:6a:9f:08:1e:ed: aa:d9:05:04:c2:56:36:86:f6:f0:0d:f2:71:da:c5:2b:2c:c0: fc:e9:bc:31:41:de:83:ab:ca:7e:38:90:fe:d4:d5:70:fd:a9: df:02:08:b1:01:aa:1a:93:08:04:b9:50:6c:18:58:83:9a:c8: 40:6a:eb:f2:07:57:f4:69:5d:39:7c:96:48:d4:a2:a7:0a:59: 23:22:0c:39:d0:56:3f:ca:ed:eb:c9:8b:3f:7e:29:3d:ca:dd: 5e:8a:3d:4b:63:ff:30:f9:a0:7a:eb:8b:87:8e:79:70:0a:83: 09:bb:15:76:b2:1d:39:99:dd:d3:66:8a:49:2a:05:0a:e1:38: c7:9f:4b:98:9d:09:79:41:a3:2a:89:9a:10:50:5c:85:7c:1b: 11:0e:fd:10:bf:74:aa:f5:b7:4f:e8:67:09:5e:98:1b:8c:3c: a6:cd:c4:23:fe:ee:f3:fb:9d:b3:f3:77:09:07:25:a9:fb:0c: a1:07:38:26:bb:23:5f:7c:83:95:e7:d4:ad:b4:55:38:b6:8d: 73:8d:93:3d:21:e5:3a:d5:c4:40:59:00:ce:db:93:b5:94:47: e6:ad:35:30:71:cf:8b:69:35:81:1d:eb:40:bf:2e:a9:de:02: 25:c6:28:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKEM3MjAwMjc2N0ExMEVDMkZGMTQ1MTVBMkFBQjg2RTYx NDA5N0E3NUMwHhcNMjUwNzAzMDYzODIwWhcNMjUwNzEwMDYzODIwWjAYMRYwFAYD VQQDEw02ODY2MjU1Yy0yMzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7xWpZCU3qbbTyDVOf3ghLdKZ/Yla3M6jQpPwuhEjMT3ZvJwjDLYbzN9oh/k jVQIaKtbJBnlxWsWxCeUqMS2JD1LS9xEtLfC/yIls3Ujc6Ja/TABEXBBWL+gePo5 IBqgjG/mTLUODJfqKNJRLRLI+FhdCifcbptFLQeVSs9y1mZbnHxqNIjZLcvQq435 qvnJv6jBWBuX7r7Ipwx0/liPGOudAklbaBVI6CDzKlVzZmK9Hg53Hq/D03XlXyCk to59vWUtqmKBt+CrHwSVO9jTyAO7Iw5dlFLNiUQyBUgREvMn3TAkF4qEWUGtWn4j 7GFA4GcZh6DLgznwLcPequzlAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhzrS0n zsLvEKs9KY/vxIcHGpIrMB8GA1UdIwQYMBaAFMcgAnZ6EOwv8UUVoqq4bmFAl6dc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EMTY1RTRBMjdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi94eUFDZG5vUTdDX3hSUldpcXJodVlVQ1hw MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h5QUNkbm9RN0NfeFJSV2lxcmh1WVVDWHAxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EMTY1RTRBMjdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi94eUFDZG5vUTdD X3hSUldpcXJodVlVQ1hwMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCceSHfvF5YGjLvOwQ/ap8IHu2q2QUEwlY2hvbwDfJx2sUrLMD86bwx Qd6Dq8p+OJD+1NVw/anfAgixAaoakwgEuVBsGFiDmshAauvyB1f0aV05fJZI1KKn ClkjIgw50FY/yu3ryYs/fik9yt1eij1LY/8w+aB664uHjnlwCoMJuxV2sh05md3T ZopJKgUK4TjHn0uYnQl5QaMqiZoQUFyFfBsRDv0Qv3Sq9bdP6GcJXpgbjDymzcQj /u7z+52z83cJByWp+wyhBzgmuyNffIOV59SttFU4to1zjZM9IeU61cRAWQDO25O1 lEfmrTUwcc+LaTWBHetAvy6p3gIlxigO -----END CERTIFICATE-----Generated at Sat Jul 5 02:37:26 2025 by rpki-client