$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: J3l4S0PxOk3XWzut7yxZNLDLS1wsI+4yRjzmR3xkWkg= Subject key identifier: 3B:2E:28:8A:B8:C6:0B:E0:86:24:F6:50:1E:7D:A3:47:49:48:4C:49 Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: 9F Signing time: Thu 03 Jul 2025 02:28:51 +0000 Manifest this update: Thu 03 Jul 2025 02:28:51 +0000 Manifest next update: Thu 10 Jul 2025 02:28:51 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: H8GojzuNM0NbnLk3OR27lsFajD9Fi/MYc4tJI8qgy7k=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: DgEucoR97Y9+a6MdEE8/uaZNnvtkSjr5/qYttwnSpcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Jul 3 02:28:51 2025 GMT Not After : Jul 10 02:28:51 2025 GMT Subject: CN=6865eae3-61b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:8f:f7:19:67:ad:a2:37:a0:16:c8:a6:fe: 1d:5d:e2:a6:b2:7b:73:0d:28:90:54:d9:d4:34:63: fc:fe:4f:a1:15:06:ad:cb:bd:b0:01:05:db:2d:af: ef:a4:73:0e:3a:6c:cd:e5:b7:9c:db:18:e4:d0:82: 1c:09:92:f4:4c:7e:c9:82:e6:5f:75:b0:66:00:18: 8d:b7:4d:89:67:66:9f:82:34:e0:68:9e:bf:37:0a: 7e:4f:a4:62:73:f4:03:af:04:7f:0d:1f:6d:83:35: 33:95:28:fb:3d:bd:02:b1:f4:ae:02:d6:59:2c:09: db:cb:1f:03:f4:c2:41:3a:2e:f2:41:26:42:33:87: 4b:1c:10:5a:d1:68:0f:19:86:b3:ae:88:2c:51:1d: 35:68:28:fb:70:fb:73:62:94:fb:d4:7f:19:a4:60: 7d:00:05:a0:5c:f6:93:e4:0e:0d:74:b3:63:68:ca: 5e:18:7f:ce:81:f1:f1:e2:e6:d8:34:7d:1e:12:a1: 45:25:0c:03:91:4e:92:fc:8a:53:93:16:3c:da:2f: 05:ce:1b:3a:ce:dc:ea:45:e2:7e:2e:a8:0a:1c:c4: 84:c9:03:ca:66:ac:75:a7:ae:e8:9b:de:f9:6a:ca: c2:01:78:b7:51:b6:0c:5f:c8:67:a5:92:b1:3d:ed: 90:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2E:28:8A:B8:C6:0B:E0:86:24:F6:50:1E:7D:A3:47:49:48:4C:49 X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:67:0f:6b:36:27:c9:ff:b9:4d:12:13:83:99:20:27:45:d4: 92:fc:44:79:93:9c:77:ad:c1:5f:fc:fc:ff:1c:82:2a:13:22: 95:6b:29:4a:3e:fb:5a:d5:d9:ab:b8:12:4d:4b:62:a3:32:0a: bb:f4:86:8e:68:64:cd:b6:79:18:ce:bc:11:f2:c0:c3:83:bb: f8:66:a4:56:8f:87:35:d5:f5:ad:c7:83:51:6e:36:8a:14:b9: e3:da:29:3f:9b:de:63:0a:5c:e8:bf:d3:61:e4:eb:29:66:5f: 98:1c:16:bc:29:82:2d:7b:61:b4:29:99:74:fe:21:42:53:ee: f9:08:4e:cd:ff:e0:46:f7:3e:a8:15:c9:a6:29:f9:02:d9:81: 39:b7:c1:78:3c:dd:af:4d:21:77:50:91:30:2c:16:41:15:80: a4:46:79:e8:4c:48:2c:5a:17:5e:ab:dc:c4:37:36:77:11:ef: 87:4e:6f:d8:18:02:b3:d6:a0:d3:30:92:2a:6f:04:1d:d4:c0: 0a:d2:98:50:fe:ea:5a:cd:fe:1a:27:e2:09:0e:43:45:65:c5: 99:1f:95:10:28:b8:48:59:06:6d:aa:9a:e5:fe:ea:cf:6a:bf: 47:dc:d3:e0:35:03:d5:1b:aa:b0:37:2e:34:03:bc:60:57:aa: ab:2f:09:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjUwNzAzMDIyODUxWhcNMjUwNzEwMDIyODUxWjAYMRYwFAYD VQQDEw02ODY1ZWFlMy02MWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf2P9xlnraI3oBbIpv4dXeKmsntzDSiQVNnUNGP8/k+hFQaty72wAQXbLa/v pHMOOmzN5bec2xjk0IIcCZL0TH7JguZfdbBmABiNt02JZ2afgjTgaJ6/Nwp+T6Ri c/QDrwR/DR9tgzUzlSj7Pb0CsfSuAtZZLAnbyx8D9MJBOi7yQSZCM4dLHBBa0WgP GYazrogsUR01aCj7cPtzYpT71H8ZpGB9AAWgXPaT5A4NdLNjaMpeGH/OgfHx4ubY NH0eEqFFJQwDkU6S/IpTkxY82i8Fzhs6ztzqReJ+LqgKHMSEyQPKZqx1p67om975 asrCAXi3UbYMX8hnpZKxPe2QCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsuKIq4 xgvghiT2UB59o0dJSExJMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMZw9rNifJ/7lNEhODmSAnRdSS/ER5k5x3rcFf/Pz/HIIqEyKVaylK Pvta1dmruBJNS2KjMgq79IaOaGTNtnkYzrwR8sDDg7v4ZqRWj4c11fWtx4NRbjaK FLnj2ik/m95jClzov9Nh5OspZl+YHBa8KYIte2G0KZl0/iFCU+75CE7N/+BG9z6o FcmmKfkC2YE5t8F4PN2vTSF3UJEwLBZBFYCkRnnoTEgsWhdeq9zENzZ3Ee+HTm/Y GAKz1qDTMJIqbwQd1MAK0phQ/upazf4aJ+IJDkNFZcWZH5UQKLhIWQZtqprl/urP ar9H3NPgNQPVG6qwNy40A7xgV6qrLwn6 -----END CERTIFICATE-----Generated at Fri Jul 4 15:42:21 2025 by rpki-client