$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: rXvyejxpCzzs3R8FkJ/Kmt23DU1XpKl2fIlAwPSwYTQ= Subject key identifier: 8C:4D:BA:3C:12:04:AA:EE:B8:16:21:4F:64:A0:45:CF:93:F6:3A:37 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 26 Signing time: Tue 01 Jul 2025 08:34:08 +0000 Manifest this update: Tue 01 Jul 2025 08:34:07 +0000 Manifest next update: Tue 08 Jul 2025 08:34:07 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: q5yDnsBj+xkCK3EylX5smTyK35lmhNxokms8+ruEeE0=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Jul 1 08:34:07 2025 GMT Not After : Jul 8 08:34:07 2025 GMT Subject: CN=68639d7f-9fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:8d:2c:6c:7f:3c:93:1a:07:f5:3e:d8:4e:2a: fe:af:06:6b:dd:29:7c:09:f1:7c:55:73:fa:c8:bb: 49:8e:b9:f6:10:84:02:98:56:b3:39:c1:27:c2:0b: 03:ee:e1:89:28:6f:13:13:f2:72:b8:35:30:4b:bc: 07:3b:2e:e7:86:41:b9:80:49:7b:2a:92:3d:db:2e: 4f:27:7c:21:18:7d:63:13:38:ef:f0:8d:5a:d7:ca: dd:c8:91:e6:03:83:ae:dc:b3:68:8f:24:a5:ae:3f: aa:ff:bb:7d:e3:c0:73:ae:be:fc:c0:bd:9a:81:3c: 12:f9:34:aa:96:8b:a8:e2:8c:56:62:5c:8d:a7:46: 37:b3:30:69:3b:78:12:3e:76:a4:87:0f:9c:ec:4f: 27:69:6b:7f:06:50:1a:36:4d:f4:66:cc:54:47:b1: 5d:8b:0b:11:57:c2:59:b1:15:f3:87:83:57:ed:60: c8:77:d5:e1:ce:d8:a6:62:75:58:9f:1f:3f:68:cd: b0:68:63:47:2c:4e:bb:24:b6:b2:f7:97:a3:c3:80: bd:96:a6:45:de:d6:a0:2e:df:f6:16:68:a4:2a:9a: 04:5b:24:b3:60:6e:d6:f8:25:bd:33:89:39:fc:3f: d0:d5:80:c4:30:fd:2c:7f:a6:e7:6d:03:41:59:60: 0f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:4D:BA:3C:12:04:AA:EE:B8:16:21:4F:64:A0:45:CF:93:F6:3A:37 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:a4:eb:cc:4c:fb:3d:b9:49:11:c7:f2:73:95:a6:22:68:19: c5:79:a5:7f:4a:04:2f:96:d4:43:d3:3f:33:d6:ac:af:06:8c: be:68:6d:16:93:82:d0:86:2a:ef:bc:7f:05:dc:33:89:f5:26: f0:59:5c:33:04:01:72:19:2c:51:cf:32:8f:12:d7:c2:e1:97: 12:13:57:b3:95:fc:f0:39:f3:13:9e:fd:4d:39:51:62:f8:7a: 90:94:af:b8:7a:ee:e6:24:52:d4:bc:5d:2d:13:48:7f:b7:22: 30:2e:8e:6f:9a:b1:54:4d:39:1c:f5:d9:c4:75:d3:e8:7c:f7: 2d:98:31:40:b2:b8:be:9b:dd:f9:d0:db:fb:9a:24:d0:d4:4f: 08:35:50:01:bb:1c:6b:d1:d4:01:cf:77:01:38:78:7a:55:a8: e8:11:c3:a1:de:8a:f8:16:a6:96:b4:5f:ff:2b:33:e5:f3:ec: 0e:0b:b5:e1:7f:4c:56:dd:e6:fa:87:cd:e1:57:f2:d2:ce:80: 6c:f0:fd:81:1f:e9:c8:3b:6b:ef:df:92:ee:a3:83:1d:dc:0f: 7d:7c:e8:6d:15:3c:8a:c9:44:53:e0:d1:c2:53:05:4f:db:fb: 80:10:7a:2c:18:cc:79:6b:e8:83:d1:d5:b1:20:bc:8e:e0:14: 13:bf:e1:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA3MDEwODM0MDdaFw0yNTA3MDgwODM0MDdaMBgxFjAUBgNV BAMTDTY4NjM5ZDdmLTlmYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTjSxsfzyTGgf1PthOKv6vBmvdKXwJ8XxVc/rIu0mOufYQhAKYVrM5wSfCCwPu 4YkobxMT8nK4NTBLvAc7LueGQbmASXsqkj3bLk8nfCEYfWMTOO/wjVrXyt3IkeYD g67cs2iPJKWuP6r/u33jwHOuvvzAvZqBPBL5NKqWi6jijFZiXI2nRjezMGk7eBI+ dqSHD5zsTydpa38GUBo2TfRmzFRHsV2LCxFXwlmxFfOHg1ftYMh31eHO2KZidVif Hz9ozbBoY0csTrsktrL3l6PDgL2WpkXe1qAu3/YWaKQqmgRbJLNgbtb4Jb0ziTn8 P9DVgMQw/Sx/pudtA0FZYA9hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjE26PBIE qu64FiFPZKBFz5P2OjcwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMek68xM+z25SRHH8nOVpiJoGcV5pX9KBC+W1EPTPzPWrK8GjL5obRaT gtCGKu+8fwXcM4n1JvBZXDMEAXIZLFHPMo8S18LhlxITV7OV/PA58xOe/U05UWL4 epCUr7h67uYkUtS8XS0TSH+3IjAujm+asVRNORz12cR10+h89y2YMUCyuL6b3fnQ 2/uaJNDUTwg1UAG7HGvR1AHPdwE4eHpVqOgRw6HeivgWppa0X/8rM+Xz7A4LteF/ TFbd5vqHzeFX8tLOgGzw/YEf6cg7a+/fku6jgx3cD3186G0VPIrJRFPg0cJTBU/b +4AQeiwYzHlr6IPR1bEgvI7gFBO/4a8= -----END CERTIFICATE-----Generated at Wed Jul 2 20:29:42 2025 by rpki-client