$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: 9nbYZq33/eWlVnbA3C5E6XYQ7671HdsNSzAVgMjW6Ow= Subject key identifier: E1:8C:70:B0:60:58:B9:3C:E8:55:09:D1:1F:EE:EC:E5:3B:15:24:5C Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: A9 Signing time: Tue 01 Jul 2025 06:51:12 +0000 Manifest this update: Tue 01 Jul 2025 06:51:11 +0000 Manifest next update: Tue 08 Jul 2025 06:51:11 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: 2v7a0qOStx9Mnygv358Njlx/BIdH0xOtSBuZgm66iuQ=) 2: D69C342850E311F098697E1BC4F9AE02.roa (hash: BsgTCGS6ZY9wo4DRbXqJWgsBM56PxcgPxCxnw/1lRZA=) 3: EA438F3050E311F08CF2971BC4F9AE02.roa (hash: IjL6cu6bZiACksELIxEiXf/UtBVghk3xr9SoGwHtz+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Jul 1 06:51:11 2025 GMT Not After : Jul 8 06:51:11 2025 GMT Subject: CN=68638560-5c59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:54:30:6c:28:3f:31:09:46:3a:8b:22:19:a0: 16:45:61:50:8d:53:9f:53:39:6d:0e:9e:04:0b:8c: 7a:08:06:85:94:88:32:89:f9:ca:74:19:36:7b:a1: 75:6d:f7:ce:93:27:be:99:e5:45:33:cf:22:f5:57: 3f:77:0c:d1:48:a9:5e:9b:ca:58:08:37:33:69:82: 16:fa:31:3c:6a:6b:e4:e6:67:ce:88:ca:07:11:e1: 4b:36:02:13:74:b1:b5:e3:1f:2d:a1:6f:bd:46:6a: fe:28:6f:14:cc:fb:87:1d:0f:d0:43:72:21:fc:a9: e9:b9:e6:97:41:f4:77:b2:3a:0d:3f:e3:d6:bb:b3: 01:5b:75:34:f6:fd:e2:60:c4:d0:0a:83:47:78:68: ab:a4:ae:b7:f5:2c:98:c0:e0:ee:c8:22:4e:c7:0d: c1:59:52:7b:01:bf:30:e7:7c:70:be:ed:fe:ad:28: 4c:f0:fd:be:a0:e1:92:3d:9e:64:d3:94:0f:74:5e: ef:a9:49:4a:84:c3:92:df:10:4f:28:8b:5d:a3:78: 6d:1e:a2:fd:44:27:a3:12:77:2c:eb:5b:d0:0c:3a: 3c:31:1b:81:c6:cb:39:b7:cb:0d:fc:31:6f:c1:56: 43:52:34:56:f7:71:8a:b3:19:79:19:98:bb:23:81: 01:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8C:70:B0:60:58:B9:3C:E8:55:09:D1:1F:EE:EC:E5:3B:15:24:5C X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:04:aa:6a:03:1d:69:41:e6:4a:30:c6:8e:93:33:07:4c:aa: 7e:d0:a7:02:b1:3e:66:30:f6:14:28:4a:84:b6:ff:1c:ef:d8: 4c:9b:d8:f9:d5:e9:b6:3a:7a:28:ce:f5:53:d5:eb:e8:b6:c0: ea:97:37:a9:7a:f9:5e:99:e0:98:44:c8:eb:61:d8:21:c1:dd: db:c2:12:6d:e3:ea:39:31:7b:7e:13:3b:8f:5e:60:61:62:14: 1e:b4:f5:87:e1:bf:cd:47:f3:a7:6a:d4:89:a0:b2:f3:11:86: dc:92:75:71:8b:1a:9b:fd:ca:20:93:b4:83:bb:b0:b1:c8:d9: 4b:99:99:07:1a:71:1f:ec:08:08:54:d7:3c:1e:13:a5:65:7d: 06:2a:51:77:0d:5e:4a:9f:52:c6:bb:ed:92:9a:ab:35:8c:63: 09:84:10:65:a1:ef:bf:d0:0f:c4:d8:e0:42:1c:58:72:0e:14: 86:26:0e:67:f7:6a:3f:3f:91:fa:b0:97:11:51:2b:8b:40:2c: ba:8c:94:e8:68:5c:0b:64:6e:d1:b0:9d:34:0e:b1:2b:87:cb: 72:d6:3c:21:0c:75:f1:15:7e:e6:cc:02:93:44:19:fe:94:bc: 3d:de:d1:b1:58:7d:cb:e7:c6:d7:9f:14:dc:37:06:b3:a9:14: 3d:64:99:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwNzAxMDY1MTExWhcNMjUwNzA4MDY1MTExWjAYMRYwFAYD VQQDEw02ODYzODU2MC01YzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11QwbCg/MQlGOosiGaAWRWFQjVOfUzltDp4EC4x6CAaFlIgyifnKdBk2e6F1 bffOkye+meVFM88i9Vc/dwzRSKlem8pYCDczaYIW+jE8amvk5mfOiMoHEeFLNgIT dLG14x8toW+9Rmr+KG8UzPuHHQ/QQ3Ih/KnpueaXQfR3sjoNP+PWu7MBW3U09v3i YMTQCoNHeGirpK639SyYwODuyCJOxw3BWVJ7Ab8w53xwvu3+rShM8P2+oOGSPZ5k 05QPdF7vqUlKhMOS3xBPKItdo3htHqL9RCejEncs61vQDDo8MRuBxss5t8sN/DFv wVZDUjRW93GKsxl5GZi7I4EBMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGMcLBg WLk86FUJ0R/u7OU7FSRcMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrBKpqAx1pQeZKMMaOkzMHTKp+0KcCsT5mMPYUKEqEtv8c79hMm9j5 1em2OnoozvVT1evotsDqlzepevlemeCYRMjrYdghwd3bwhJt4+o5MXt+EzuPXmBh YhQetPWH4b/NR/OnatSJoLLzEYbcknVxixqb/cogk7SDu7CxyNlLmZkHGnEf7AgI VNc8HhOlZX0GKlF3DV5Kn1LGu+2Smqs1jGMJhBBloe+/0A/E2OBCHFhyDhSGJg5n 92o/P5H6sJcRUSuLQCy6jJToaFwLZG7RsJ00DrErh8ty1jwhDHXxFX7mzAKTRBn+ lLw93tGxWH3L58bXnxTcNwazqRQ9ZJnR -----END CERTIFICATE-----Generated at Thu Jul 3 00:53:51 2025 by rpki-client