$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: jtwJQHAQxcf7E+pMVRP09axm57DF0Zghmrf0BrQCAS8= Subject key identifier: 71:81:2F:98:A1:83:EE:16:62:C4:65:A4:F6:13:75:F3:B8:9C:AF:D2 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 066C Signing time: Wed 02 Jul 2025 22:45:37 +0000 Manifest this update: Wed 02 Jul 2025 22:45:36 +0000 Manifest next update: Wed 09 Jul 2025 22:45:36 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: lZRpgWszc8JYPPEoQExi7gIbVpQKYAa5j08ePGAXXq8=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: zRXwtVciA3XUq61vGPC3fC7y/rZPmZqFfk9/8k9uEj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Jul 2 22:45:36 2025 GMT Not After : Jul 9 22:45:36 2025 GMT Subject: CN=6865b690-6716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7e:f5:c4:c8:cc:36:64:94:bb:3d:8b:eb:2a: 84:79:3b:ab:02:9a:a3:3c:6c:16:35:1b:12:3c:10: 3b:5c:8b:24:44:b7:96:1b:2f:e7:ca:69:30:a6:4e: 2f:d4:ac:f6:ee:77:65:dc:a5:fb:f6:af:75:3c:78: 00:6c:2d:b8:9c:3a:cf:61:97:d3:80:bf:a5:2a:8c: 23:46:35:6b:b8:1c:12:b2:16:e9:c6:2d:d7:80:8d: 71:a6:3a:6c:24:7c:9b:c7:fd:23:e5:36:35:68:65: fc:6a:19:aa:d2:fd:f3:f3:36:11:51:a3:68:bb:fa: 6f:8b:8e:cd:6f:09:4a:f1:dc:db:19:c6:fb:88:38: b3:b2:9e:ce:7d:5d:9e:f3:e4:23:53:d5:9e:15:b1: e1:e2:62:93:95:1a:5c:4c:03:b5:03:33:dd:6a:c1: 54:66:37:c7:c3:ba:27:6f:26:bc:df:41:7e:83:7e: c6:e9:23:6c:62:d8:fc:73:cb:d2:2a:b5:88:ca:e5: c0:f7:52:f5:c9:6d:aa:2f:ff:fb:07:5f:31:47:d6: bd:9a:e4:e7:11:dd:b8:e7:9f:cd:14:a3:7b:65:d6: cb:f1:c2:e9:61:4b:59:95:95:ba:90:64:3c:99:2b: bf:08:e7:a0:26:0b:e1:6f:61:ec:a5:14:0a:2c:ce: 57:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:81:2F:98:A1:83:EE:16:62:C4:65:A4:F6:13:75:F3:B8:9C:AF:D2 X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f6:f4:42:e3:7c:d5:95:55:a7:06:b7:af:5c:51:ca:65:2e: 05:8f:e9:65:39:31:10:a2:82:3a:86:f6:93:76:95:7c:71:21: 87:91:f4:52:1e:76:76:bd:58:d4:80:c1:f5:78:fe:d4:a0:71: 6f:87:d2:f3:24:91:1f:e1:47:5f:56:a4:04:5c:6c:5a:af:4a: ac:3d:6e:84:49:31:12:61:49:c0:7e:2d:3c:5f:38:53:70:55: 4b:cd:51:83:4b:b7:0e:e0:c3:11:77:5c:8a:b2:38:de:67:2f: 13:f4:69:8d:52:cf:3c:01:82:33:39:df:00:79:2e:eb:d5:56: 12:f6:27:1d:e1:24:8d:da:04:30:11:0a:db:95:4d:af:b2:47: b0:70:16:7b:01:af:ce:f9:55:9d:af:99:93:3c:82:1d:7a:e0: 5f:5e:e5:57:e9:4b:f5:23:37:b4:94:c2:79:8d:90:43:e4:87: 5b:c2:92:df:dc:f7:9d:d9:3b:98:5e:95:a2:18:23:90:19:73: 6c:15:79:80:bf:50:90:81:f3:e5:b5:57:98:1f:02:a9:c3:5d: 87:a6:6a:13:31:90:6f:ef:19:56:b7:a4:bf:3e:3e:b1:38:a7: d8:99:7c:ee:b4:89:82:2a:b5:47:c7:94:21:f7:52:87:f3:4a: 56:2a:1d:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUwNzAyMjI0NTM2WhcNMjUwNzA5MjI0NTM2WjAYMRYwFAYD VQQDEw02ODY1YjY5MC02NzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw371xMjMNmSUuz2L6yqEeTurApqjPGwWNRsSPBA7XIskRLeWGy/nymkwpk4v 1Kz27ndl3KX79q91PHgAbC24nDrPYZfTgL+lKowjRjVruBwSshbpxi3XgI1xpjps JHybx/0j5TY1aGX8ahmq0v3z8zYRUaNou/pvi47NbwlK8dzbGcb7iDizsp7OfV2e 8+QjU9WeFbHh4mKTlRpcTAO1AzPdasFUZjfHw7onbya830F+g37G6SNsYtj8c8vS KrWIyuXA91L1yW2qL//7B18xR9a9muTnEd2455/NFKN7ZdbL8cLpYUtZlZW6kGQ8 mSu/COegJgvhb2HspRQKLM5XVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGBL5ih g+4WYsRlpPYTdfO4nK/SMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK9vRC43zVlVWnBrevXFHKZS4Fj+llOTEQooI6hvaTdpV8cSGHkfRS HnZ2vVjUgMH1eP7UoHFvh9LzJJEf4UdfVqQEXGxar0qsPW6ESTESYUnAfi08XzhT cFVLzVGDS7cO4MMRd1yKsjjeZy8T9GmNUs88AYIzOd8AeS7r1VYS9icd4SSN2gQw EQrblU2vskewcBZ7Aa/O+VWdr5mTPIIdeuBfXuVX6Uv1Ize0lMJ5jZBD5IdbwpLf 3Ped2TuYXpWiGCOQGXNsFXmAv1CQgfPltVeYHwKpw12HpmoTMZBv7xlWt6S/Pj6x OKfYmXzutImCKrVHx5Qh91KH80pWKh0s -----END CERTIFICATE-----Generated at Thu Jul 3 01:08:12 2025 by rpki-client