$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: 008PmkKKKud3hm+/L0fncToKB2rcq8hUkZyjqDpoNPk= Subject key identifier: 6A:9C:37:D7:DD:07:2F:C8:51:B5:21:B3:94:28:70:A2:F6:61:CD:16 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 09CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09C5 Signing time: Wed 02 Jul 2025 20:13:36 +0000 Manifest this update: Wed 02 Jul 2025 20:13:36 +0000 Manifest next update: Wed 09 Jul 2025 20:13:36 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: XxMIYMgcGdXiYlt4oHqOVpuO5qW7UbQUtCnzGS0nBsM=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2508 (0x9cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Jul 2 20:13:36 2025 GMT Not After : Jul 9 20:13:36 2025 GMT Subject: CN=686592f0-5865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9e:99:31:c1:3f:00:20:83:47:bd:d3:32:03: d0:23:3e:be:9b:43:5e:1d:e1:cc:64:b3:c3:1e:c5: 1e:53:b4:3a:19:2c:e3:db:8c:d6:b6:81:86:64:01: 85:3f:96:15:66:17:6d:e4:eb:81:b9:e7:45:2a:59: a1:13:2d:59:3f:b2:e5:ce:88:07:31:e4:b9:3d:b7: 51:bc:9c:47:bb:e1:f6:2a:37:b8:1a:ca:6e:0a:93: 6e:d2:d9:d1:e3:9e:40:02:75:cc:6e:55:43:6f:8e: 0d:fc:fe:9e:c8:57:36:f3:51:33:70:a5:53:18:37: 4e:fc:9f:b9:c8:a5:11:4a:7b:c9:04:e4:9b:4f:e3: 1c:e2:dc:9a:d9:3b:7f:96:39:29:98:c6:1c:5c:c8: f0:69:04:3d:c1:08:e5:c0:8c:da:ac:c6:fe:da:60: 3c:b8:52:68:e9:79:9d:1a:54:97:e1:c3:92:3b:e3: 4e:b1:45:f3:91:f3:d1:78:3e:1b:a5:9b:03:95:42: c6:d9:fa:f1:38:63:82:3b:ba:a2:7e:89:88:4a:66: 7d:d6:fb:6b:47:c2:ff:87:43:b9:63:e2:13:47:3a: d4:1a:85:64:25:3e:7d:2a:c8:ed:5f:e9:c9:ec:c2: f9:51:9a:82:b9:d8:84:b2:06:4b:1a:82:35:89:37: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9C:37:D7:DD:07:2F:C8:51:B5:21:B3:94:28:70:A2:F6:61:CD:16 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a4:d9:c0:f3:bf:e0:5a:ad:80:28:02:bb:5d:a7:f0:52:c3: cd:bd:60:4f:ff:0f:65:95:ac:59:46:d6:a9:2a:51:2b:db:69: 7e:1b:09:b1:5c:d5:73:21:3f:1d:15:70:13:62:a9:c8:47:d2: f1:6d:5d:15:15:c8:38:ca:38:79:26:f3:53:98:04:b3:12:1d: 67:6a:19:06:d3:a2:00:b5:98:d1:8a:b3:18:a4:41:2f:8c:eb: dd:fc:6b:da:aa:cf:42:ba:d7:bb:b6:da:e1:45:e6:fb:40:a7: 94:f5:1e:9e:0b:9d:96:54:ab:92:1a:79:dd:67:41:5f:7d:a3: ef:45:1d:51:fc:f0:82:ee:e5:e5:de:1e:88:32:9c:66:03:40: c8:4d:7d:3d:3e:92:5b:09:0e:73:a5:19:f6:cc:4b:d9:c2:77: 47:9e:af:15:91:b3:23:54:01:05:c0:86:9d:05:e3:11:5d:6c: cc:bf:47:1c:98:b8:15:31:b6:b4:f9:e2:b1:f2:ff:02:69:93: 9d:f7:37:11:47:f7:f3:bd:57:66:0b:4c:31:92:13:12:63:ce: 46:d1:5c:38:fd:46:d4:26:71:8a:e4:70:a9:7b:e7:9f:1f:d8: 3f:da:0c:6a:e8:00:66:df:f8:15:8a:cb:07:a6:ad:0a:72:86: 87:d2:a0:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUwNzAyMjAxMzM2WhcNMjUwNzA5MjAxMzM2WjAYMRYwFAYD VQQDEw02ODY1OTJmMC01ODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv56ZMcE/ACCDR73TMgPQIz6+m0NeHeHMZLPDHsUeU7Q6GSzj24zWtoGGZAGF P5YVZhdt5OuBuedFKlmhEy1ZP7LlzogHMeS5PbdRvJxHu+H2Kje4GspuCpNu0tnR 455AAnXMblVDb44N/P6eyFc281EzcKVTGDdO/J+5yKURSnvJBOSbT+Mc4tya2Tt/ ljkpmMYcXMjwaQQ9wQjlwIzarMb+2mA8uFJo6XmdGlSX4cOSO+NOsUXzkfPReD4b pZsDlULG2frxOGOCO7qifomISmZ91vtrR8L/h0O5Y+ITRzrUGoVkJT59KsjtX+nJ 7ML5UZqCudiEsgZLGoI1iTfMcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqcN9fd By/IUbUhs5QocKL2Yc0WMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVpNnA87/gWq2AKAK7XafwUsPNvWBP/w9llaxZRtapKlEr22l+Gwmx XNVzIT8dFXATYqnIR9LxbV0VFcg4yjh5JvNTmASzEh1nahkG06IAtZjRirMYpEEv jOvd/Gvaqs9Cute7ttrhReb7QKeU9R6eC52WVKuSGnndZ0FffaPvRR1R/PCC7uXl 3h6IMpxmA0DITX09PpJbCQ5zpRn2zEvZwndHnq8VkbMjVAEFwIadBeMRXWzMv0cc mLgVMba0+eKx8v8CaZOd9zcRR/fzvVdmC0wxkhMSY85G0Vw4/UbUJnGK5HCpe+ef H9g/2gxq6ABm3/gVissHpq0KcoaH0qCa -----END CERTIFICATE-----Generated at Fri Jul 4 18:20:00 2025 by rpki-client