$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: 1dmbGRDpFQ9atNwPna4QNJeAfSpi4MJKpeSdVHOp7ks= Subject key identifier: 9F:5A:E7:61:6A:50:85:F2:F8:49:51:27:ED:46:6D:A2:75:D4:23:EE Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 34B5 Signing time: Wed 02 Jul 2025 14:49:51 +0000 Manifest this update: Wed 02 Jul 2025 14:49:51 +0000 Manifest next update: Wed 09 Jul 2025 14:49:50 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: 7WiTFcV82OwBrkLku84oVkxVyTJBnI9La8SDvFvyQiY=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: LT0aNSmVv5vvmR7dpu4yqP0BpA8hfoKsmy5XfMM5RqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Jul 2 14:49:51 2025 GMT Not After : Jul 9 14:49:50 2025 GMT Subject: CN=6865470f-86ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:30:ac:67:c9:5f:c0:9a:58:cd:af:c8:ce:09: 8d:a5:64:5d:ef:c7:0c:83:ba:7e:96:15:be:b7:f4: 48:58:04:e5:6a:5a:b2:8e:bf:4f:b1:fb:03:69:1d: 83:dd:0d:8b:93:95:4a:da:a0:07:85:e2:02:20:a6: 89:25:0f:64:13:b7:93:6b:12:68:d8:a2:f7:3b:32: e2:ef:8a:9f:52:31:24:35:39:a0:42:f3:b2:41:9f: b6:bb:db:f2:bc:d9:43:52:c3:f5:f0:22:83:26:cb: 40:34:18:f3:84:a1:f0:08:9f:17:fb:e8:f5:8a:59: 8f:2c:02:40:87:16:1c:8e:1a:bb:90:e4:0b:47:be: 64:d7:db:0e:8c:da:bf:d4:a6:00:41:df:03:0d:6a: 98:44:60:e8:56:99:5d:53:76:99:68:05:fb:16:e7: 91:6f:60:15:1d:9d:47:f8:83:ff:f6:7a:76:2e:78: 43:55:79:d1:20:bc:ee:ba:80:72:a6:af:1d:0b:6e: e8:31:c8:83:7c:ed:a9:d5:00:39:a3:84:f8:5c:4e: 3d:d5:3d:14:4a:92:50:c5:87:63:36:af:90:8b:db: 70:ca:2b:0f:e1:0d:de:a0:9e:d8:1a:a1:0c:ce:9b: a6:aa:77:c5:ca:4e:b9:41:d3:2a:a2:18:45:28:5b: c5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:5A:E7:61:6A:50:85:F2:F8:49:51:27:ED:46:6D:A2:75:D4:23:EE X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:52:5e:1a:2c:b5:70:59:0e:38:ca:a3:f7:a3:35:f9:20:64: 6d:a6:1d:c4:6f:29:0c:4e:fd:e1:c3:c9:2b:62:9b:0d:04:a7: bf:1c:0c:62:34:00:55:ec:de:87:17:d6:05:7b:92:79:01:92: d8:ff:d0:68:6c:5f:d9:a0:0e:2e:1f:78:2c:2b:ac:5b:3e:4f: 0a:90:5a:fb:4f:cc:12:db:dd:9c:e8:fd:b2:81:5d:71:0b:a8: 35:93:ed:fe:18:61:81:92:8d:cb:15:d4:89:32:b2:9d:7f:11: 21:b1:25:ec:98:90:96:9e:ec:ad:ea:97:40:af:e3:14:e1:27: b2:1d:f1:b5:3d:e4:a9:bb:3f:5c:9b:a9:5c:a8:4d:57:f1:8a: 78:48:a5:49:72:47:8b:7e:fe:5c:29:a7:fb:56:6c:70:23:50: a2:13:35:70:2c:0f:a5:90:e1:e5:3c:d2:0a:72:60:a0:12:08: 3f:98:80:5e:d7:db:2c:d7:11:61:81:0f:c7:64:cc:88:b0:cd: 59:dd:9f:28:6e:47:2e:e7:d7:48:16:e2:1b:e0:3c:06:d9:99: 24:36:71:77:4a:ad:c4:85:86:56:68:68:d3:34:c2:af:51:ab: 58:aa:86:95:e2:5f:c8:c7:b6:2e:68:f4:d7:54:58:b4:ed:1e: 6f:13:4f:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUwNzAyMTQ0OTUxWhcNMjUwNzA5MTQ0OTUwWjAYMRYwFAYD VQQDEw02ODY1NDcwZi04NmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zCsZ8lfwJpYza/IzgmNpWRd78cMg7p+lhW+t/RIWATlalqyjr9PsfsDaR2D 3Q2Lk5VK2qAHheICIKaJJQ9kE7eTaxJo2KL3OzLi74qfUjEkNTmgQvOyQZ+2u9vy vNlDUsP18CKDJstANBjzhKHwCJ8X++j1ilmPLAJAhxYcjhq7kOQLR75k19sOjNq/ 1KYAQd8DDWqYRGDoVpldU3aZaAX7FueRb2AVHZ1H+IP/9np2LnhDVXnRILzuuoBy pq8dC27oMciDfO2p1QA5o4T4XE491T0USpJQxYdjNq+Qi9twyisP4Q3eoJ7YGqEM zpumqnfFyk65QdMqohhFKFvFuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9a52Fq UIXy+ElRJ+1GbaJ11CPuMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARUl4aLLVwWQ44yqP3ozX5IGRtph3EbykMTv3hw8krYpsNBKe/HAxi NABV7N6HF9YFe5J5AZLY/9BobF/ZoA4uH3gsK6xbPk8KkFr7T8wS292c6P2ygV1x C6g1k+3+GGGBko3LFdSJMrKdfxEhsSXsmJCWnuyt6pdAr+MU4SeyHfG1PeSpuz9c m6lcqE1X8Yp4SKVJckeLfv5cKaf7VmxwI1CiEzVwLA+lkOHlPNIKcmCgEgg/mIBe 19ss1xFhgQ/HZMyIsM1Z3Z8obkcu59dIFuIb4DwG2ZkkNnF3Sq3EhYZWaGjTNMKv UatYqoaV4l/Ix7YuaPTXVFi07R5vE08e -----END CERTIFICATE-----Generated at Fri Jul 4 10:20:45 2025 by rpki-client