$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: wYWUY4ENurt81GrYnzv11FZtXJLFL3pkrJ4MAHoWa+E= Subject key identifier: E3:B4:2F:57:26:C9:16:CE:8B:22:30:56:A6:6D:59:34:E5:6E:36:93 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 09E5 Signing time: Mon 30 Jun 2025 20:07:11 +0000 Manifest this update: Mon 30 Jun 2025 20:07:11 +0000 Manifest next update: Mon 07 Jul 2025 20:07:11 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: gn6Lo+eDrMT8oPZGmdnBdzFmaqRD+GNZqL5QrWL/x/E=) 2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=) 3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=) 4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=) 5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=) 6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Jun 30 20:07:11 2025 GMT Not After : Jul 7 20:07:11 2025 GMT Subject: CN=6862ee6f-a44c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3c:cc:e0:42:02:ef:d0:fd:04:46:34:2b:dc: 04:32:cd:4d:ac:d4:d0:d0:42:87:7b:45:4e:10:c7: 61:8b:eb:d2:de:3d:8f:12:e0:47:bd:95:64:bd:fe: 09:1e:b4:fd:73:69:1b:34:bd:a1:4d:8e:8b:b9:a4: b8:21:cc:44:d9:68:6e:dd:b3:f2:8c:e0:a1:00:47: 5d:ee:64:0d:6d:07:e9:48:5a:e8:f8:49:62:77:29: 7d:5d:60:e2:60:7c:ca:e4:68:0a:f3:76:2b:3e:4e: 31:06:73:21:9c:b8:0c:ff:e0:af:4b:20:39:61:7e: b1:32:7d:97:b2:bd:c6:dd:d4:98:47:f6:5b:b4:7e: 9f:18:33:22:d2:10:d4:bd:11:b4:71:51:34:72:f1: 79:1e:62:72:64:49:d9:81:3e:9d:00:26:d1:05:d2: a9:36:14:b2:6c:33:50:bd:2c:37:d7:ed:ad:7a:ab: a2:55:e8:0e:b3:6a:74:89:e9:9f:40:22:db:1f:45: 82:a5:17:5b:1d:c0:63:39:fd:22:1d:a1:26:ea:00: 5c:e6:69:e9:5f:f1:08:fc:67:1e:88:9b:b1:54:4f: 10:f3:4e:e0:1e:ae:af:61:06:88:f8:5d:3b:7d:5b: c8:d0:13:5e:37:29:b1:8f:b0:1f:fa:c8:2a:62:33: 0b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B4:2F:57:26:C9:16:CE:8B:22:30:56:A6:6D:59:34:E5:6E:36:93 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:df:b3:ef:d2:11:fc:39:f7:60:e3:38:13:f9:15:99:a3:44: 54:16:e6:9b:0b:88:ae:2d:27:3b:14:d8:d6:58:54:54:d0:65: 8d:77:ed:e2:98:ae:fa:8f:0f:75:03:c3:40:e2:bc:8a:13:9f: e5:c8:5e:78:db:11:8b:0f:f8:24:02:07:3a:c5:7c:72:a8:7e: b8:65:40:a0:5e:d6:f9:eb:ee:23:1b:5f:ed:58:1e:09:d5:ad: 7c:20:e8:63:fb:ec:ff:5a:2e:8e:a0:d9:16:7c:de:97:df:8a: 6e:ef:48:39:84:c4:be:b1:93:68:70:79:ea:5c:10:20:31:7e: 83:26:cd:b7:aa:1a:44:31:3c:dc:57:d0:f2:d0:cc:95:b4:16: 7f:0e:01:93:22:8b:92:e7:89:db:76:ce:3f:51:dc:d7:44:36: ac:d7:20:12:78:cf:2a:8f:9d:6d:04:1c:a6:72:66:31:06:4b: e6:b3:8b:07:af:e4:58:a6:9f:6e:c3:da:06:49:e4:2c:fb:74: 20:da:fa:24:8d:10:98:bd:9d:de:62:2e:c5:60:d2:2b:d9:fa: e1:d2:c5:6e:44:2e:77:2b:d2:ad:50:6a:7d:08:e9:37:5e:27: ac:9f:59:b0:e0:f1:51:44:82:c9:1a:c7:34:f6:04:9b:fb:85: bf:92:4a:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUwNjMwMjAwNzExWhcNMjUwNzA3MjAwNzExWjAYMRYwFAYD VQQDEw02ODYyZWU2Zi1hNDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDzM4EIC79D9BEY0K9wEMs1NrNTQ0EKHe0VOEMdhi+vS3j2PEuBHvZVkvf4J HrT9c2kbNL2hTY6LuaS4IcxE2Whu3bPyjOChAEdd7mQNbQfpSFro+Elidyl9XWDi YHzK5GgK83YrPk4xBnMhnLgM/+CvSyA5YX6xMn2Xsr3G3dSYR/ZbtH6fGDMi0hDU vRG0cVE0cvF5HmJyZEnZgT6dACbRBdKpNhSybDNQvSw31+2tequiVegOs2p0iemf QCLbH0WCpRdbHcBjOf0iHaEm6gBc5mnpX/EI/GceiJuxVE8Q807gHq6vYQaI+F07 fVvI0BNeNymxj7Af+sgqYjMLYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOO0L1cm yRbOiyIwVqZtWTTlbjaTMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk37Pv0hH8Ofdg4zgT+RWZo0RUFuabC4iuLSc7FNjWWFRU0GWNd+3i mK76jw91A8NA4ryKE5/lyF542xGLD/gkAgc6xXxyqH64ZUCgXtb56+4jG1/tWB4J 1a18IOhj++z/Wi6OoNkWfN6X34pu70g5hMS+sZNocHnqXBAgMX6DJs23qhpEMTzc V9Dy0MyVtBZ/DgGTIouS54nbds4/UdzXRDas1yASeM8qj51tBBymcmYxBkvms4sH r+RYpp9uw9oGSeQs+3Qg2vokjRCYvZ3eYi7FYNIr2frh0sVuRC53K9KtUGp9COk3 Xiesn1mw4PFRRILJGsc09gSb+4W/kkoY -----END CERTIFICATE-----Generated at Wed Jul 2 19:37:27 2025 by rpki-client