$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: gEl7ktUSgc16wYxmcQn/0mm5BF3Q5lQzS2EavwwJC2Q= Subject key identifier: BB:51:99:07:35:45:3E:5C:D9:DA:23:8D:02:FD:1E:38:30:BA:61:8E Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 090D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0906 Signing time: Wed 02 Jul 2025 20:34:40 +0000 Manifest this update: Wed 02 Jul 2025 20:34:40 +0000 Manifest next update: Wed 09 Jul 2025 20:34:40 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: L+tCEIHav2Cly1M+oa/eqyUmCNmbNwHkuihqqCvb7wM=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2317 (0x90d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Jul 2 20:34:40 2025 GMT Not After : Jul 9 20:34:40 2025 GMT Subject: CN=686597e0-a980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bb:5b:8e:7b:f4:3d:d7:55:e8:a2:4a:4c:03: 02:77:3a:5e:f1:59:f3:a8:7b:25:6f:e7:c0:56:0e: dd:c2:a4:6d:3c:2a:66:0e:87:8d:31:12:c5:43:7e: c8:27:61:0a:1e:00:58:4a:80:de:82:3b:02:f5:ee: 24:fb:17:db:39:1f:5c:66:ef:b5:ba:67:30:84:ef: 2f:ea:e2:f3:76:4d:ed:bc:9c:ff:7f:46:d2:ac:a2: 5d:85:38:ae:ec:48:f2:36:05:a2:3c:05:27:7b:c1: 9a:8c:0d:52:e1:4f:81:45:b9:0d:fb:ef:32:ad:2c: 23:ee:70:9d:5a:24:20:13:8e:ec:a1:5a:d2:7d:41: 4f:b4:db:e2:b7:2f:b0:3c:a4:f4:f4:b4:17:49:44: e2:14:b9:4c:d1:f6:41:75:2a:68:da:f8:81:c5:98: d6:5a:bc:a4:a7:22:5a:f3:96:d9:6d:a5:b1:9f:53: 59:b4:c2:53:82:b6:6d:d7:d3:e1:2b:68:39:b4:a8: b2:4a:c2:9a:2b:80:7a:f4:a7:c8:58:3f:bc:a2:82: f2:1b:cd:86:fc:62:01:72:3a:51:68:8d:79:00:d2: 43:7e:43:fe:55:e7:bd:07:0b:1c:b5:cd:3e:24:ea: 58:00:25:e1:63:bb:21:22:9f:33:a7:f7:b8:db:52: ac:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:51:99:07:35:45:3E:5C:D9:DA:23:8D:02:FD:1E:38:30:BA:61:8E X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:15:86:2c:15:6d:bc:e9:0f:a1:f2:13:60:4e:82:69:e4:64: 9c:ce:3f:22:2c:1b:9d:51:32:39:04:95:60:e1:cc:69:35:a7: 29:06:b9:4a:80:56:8c:a8:25:c3:41:03:51:64:5f:ae:12:98: b2:ae:53:90:6a:1c:1d:83:e2:32:eb:49:f9:d2:cb:ba:fa:b0: b9:9d:96:ab:08:bf:bb:1e:9e:ab:2d:cc:4c:c3:91:1e:a4:c8: e2:cd:06:8f:5f:33:4a:9c:0e:92:21:55:5c:cb:46:3d:95:1d: 12:65:01:c9:06:e9:84:6c:be:ae:c2:7e:9b:54:3d:df:c3:c2: 9d:4e:29:4a:f4:b4:77:b4:0f:86:79:09:80:50:7f:4c:b9:4d: 36:d0:b1:3b:76:c5:82:5d:3b:3f:ae:9b:6d:4b:72:f7:4c:e4: f4:42:26:26:b8:53:a4:d1:2b:69:7a:5d:d5:1b:53:9b:ff:25: 2a:fd:8e:b0:03:ea:9a:a0:81:87:fc:e3:01:6e:f6:93:c5:f4: 03:d3:de:cf:37:c5:48:7a:39:33:16:1e:1d:ed:5f:2c:83:45: e5:08:90:29:2f:4a:3e:d2:7a:2a:11:4c:82:ca:05:a1:c1:74: b9:0c:23:c4:fb:b5:d0:d6:40:ee:c7:9d:64:eb:9c:bc:a4:4f: 48:18:4a:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUwNzAyMjAzNDQwWhcNMjUwNzA5MjAzNDQwWjAYMRYwFAYD VQQDEw02ODY1OTdlMC1hOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrtbjnv0PddV6KJKTAMCdzpe8VnzqHslb+fAVg7dwqRtPCpmDoeNMRLFQ37I J2EKHgBYSoDegjsC9e4k+xfbOR9cZu+1umcwhO8v6uLzdk3tvJz/f0bSrKJdhTiu 7EjyNgWiPAUne8GajA1S4U+BRbkN++8yrSwj7nCdWiQgE47soVrSfUFPtNvity+w PKT09LQXSUTiFLlM0fZBdSpo2viBxZjWWrykpyJa85bZbaWxn1NZtMJTgrZt19Ph K2g5tKiySsKaK4B69KfIWD+8ooLyG82G/GIBcjpRaI15ANJDfkP+Vee9Bwsctc0+ JOpYACXhY7shIp8zp/e421KsTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtRmQc1 RT5c2dojjQL9HjgwumGOMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6FYYsFW286Q+h8hNgToJp5GSczj8iLBudUTI5BJVg4cxpNacpBrlK gFaMqCXDQQNRZF+uEpiyrlOQahwdg+Iy60n50su6+rC5nZarCL+7Hp6rLcxMw5Ee pMjizQaPXzNKnA6SIVVcy0Y9lR0SZQHJBumEbL6uwn6bVD3fw8KdTilK9LR3tA+G eQmAUH9MuU020LE7dsWCXTs/rpttS3L3TOT0QiYmuFOk0Stpel3VG1Ob/yUq/Y6w A+qaoIGH/OMBbvaTxfQD097PN8VIejkzFh4d7V8sg0XlCJApL0o+0noqEUyCygWh wXS5DCPE+7XQ1kDux51k65y8pE9IGErq -----END CERTIFICATE-----Generated at Fri Jul 4 17:56:35 2025 by rpki-client