$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: LQXUrzi21Jx1t251zARIWbhQZpIHQCzGCGk0QheUAhA= Subject key identifier: BF:64:71:DE:9D:F6:A3:98:4F:86:8B:14:77:6E:6D:9B:40:4A:CD:B7 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 34B6 Signing time: Sat 28 Jun 2025 14:19:11 +0000 Manifest this update: Sat 28 Jun 2025 14:19:10 +0000 Manifest next update: Sat 05 Jul 2025 14:19:10 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: U9DMBvNQbralXN9Fv2RSJZqSciHw0onpCMDRd4Yi1/k=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 14:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Jun 28 14:19:10 2025 GMT Not After : Jul 5 14:19:10 2025 GMT Subject: CN=685ff9df-c8a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:af:f7:64:c3:09:00:91:0f:a0:68:41:91: 8e:71:0e:a3:ea:08:7a:67:e9:40:a0:59:d1:55:19: 20:97:2e:7a:25:ca:0c:77:a2:14:0e:cf:18:72:a3: 46:de:26:fa:a2:ef:0f:53:f1:3e:67:72:14:c2:f8: 3e:48:e1:73:7a:7c:12:29:2f:fc:3a:7d:77:f6:e4: 7b:bb:b6:6a:84:2a:b0:a5:05:f4:8a:d7:49:20:22: 16:9d:13:e2:62:be:b3:af:5d:be:75:24:e9:80:bf: b8:5d:66:93:f9:f6:90:13:ac:ae:9a:a5:41:78:01: 36:0c:c4:13:01:06:da:4a:08:3b:52:ff:32:d1:17: c9:81:ee:c9:68:fe:dc:b0:90:c9:2b:98:a3:cc:12: 96:d7:f4:9e:ca:42:2b:34:d4:2f:12:e4:63:af:e9: e3:0d:aa:8a:fc:1a:c5:b8:bb:ad:a7:8b:74:aa:bb: b3:1f:03:48:0c:fa:84:6a:59:7f:32:22:31:be:4e: 41:a4:9c:19:f8:c0:8c:9e:af:45:d9:78:3f:52:e9: 6a:9c:d8:07:e8:cb:8c:46:0a:c3:23:80:3f:6a:c3: 0c:bd:1c:07:1c:01:f9:43:55:11:23:f2:a9:a6:c2: d8:7f:41:3c:56:75:b3:4b:bd:9b:76:1c:f2:ea:ac: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:64:71:DE:9D:F6:A3:98:4F:86:8B:14:77:6E:6D:9B:40:4A:CD:B7 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7b:13:86:9c:2c:e5:4e:9e:37:ad:dd:15:05:41:2f:82:64: eb:ec:87:dc:3b:c7:8f:33:cf:06:51:04:65:a0:7d:b5:7e:0a: bb:f9:85:59:fc:3d:68:2b:64:b1:4f:f9:b3:15:17:8f:f5:7c: 6c:76:f1:58:83:9f:25:f1:f5:2e:1c:d3:43:42:01:67:e4:75: 3d:b4:91:ef:d3:3a:4e:46:de:0e:1e:79:d5:2e:05:7d:ca:78: 53:41:2b:32:79:6b:64:ac:e7:50:9e:c4:fc:c6:94:89:06:44: 1c:c3:7f:fc:db:30:88:27:3d:8c:a5:6b:6b:cf:34:65:eb:45: e8:8c:a4:5c:71:4d:71:03:33:23:29:7a:df:ae:6d:91:2c:fe: 0e:c0:c0:31:d9:41:e5:12:a5:e2:71:7c:01:9f:35:80:98:b3: 3d:fb:e6:67:3b:cb:e3:5a:11:87:d0:5a:e0:5d:5e:7f:0f:57: b3:ee:bd:1c:97:fd:10:ac:cc:cd:cd:40:ae:11:a7:ed:4c:89: 12:73:40:13:5a:93:b0:2d:59:54:64:b2:a8:20:e7:77:b0:61: bb:13:70:c6:fb:71:28:9a:2d:28:88:77:a4:ea:f3:b1:48:74: 09:65:d1:05:bb:7d:33:88:b6:e1:e4:5a:da:47:e2:a5:f1:48: 20:ab:b5:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNjI4MTQxOTEwWhcNMjUwNzA1MTQxOTEwWjAYMRYwFAYD VQQDEw02ODVmZjlkZi1jOGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/6v92TDCQCRD6BoQZGOcQ6j6gh6Z+lAoFnRVRkgly56JcoMd6IUDs8YcqNG 3ib6ou8PU/E+Z3IUwvg+SOFzenwSKS/8On139uR7u7ZqhCqwpQX0itdJICIWnRPi Yr6zr12+dSTpgL+4XWaT+faQE6yumqVBeAE2DMQTAQbaSgg7Uv8y0RfJge7JaP7c sJDJK5ijzBKW1/SeykIrNNQvEuRjr+njDaqK/BrFuLutp4t0qruzHwNIDPqEall/ MiIxvk5BpJwZ+MCMnq9F2Xg/UulqnNgH6MuMRgrDI4A/asMMvRwHHAH5Q1URI/Kp psLYf0E8VnWzS72bdhzy6qzESwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9kcd6d 9qOYT4aLFHdubZtASs23MB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGexOGnCzlTp43rd0VBUEvgmTr7IfcO8ePM88GUQRloH21fgq7+YVZ /D1oK2SxT/mzFReP9XxsdvFYg58l8fUuHNNDQgFn5HU9tJHv0zpORt4OHnnVLgV9 ynhTQSsyeWtkrOdQnsT8xpSJBkQcw3/82zCIJz2MpWtrzzRl60XojKRccU1xAzMj KXrfrm2RLP4OwMAx2UHlEqXicXwBnzWAmLM9++ZnO8vjWhGH0FrgXV5/D1ez7r0c l/0QrMzNzUCuEaftTIkSc0ATWpOwLVlUZLKoIOd3sGG7E3DG+3Eomi0oiHek6vOx SHQJZdEFu30ziLbh5FraR+Kl8Uggq7XR -----END CERTIFICATE-----Generated at Sun Jun 29 14:08:03 2025 by rpki-client