$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: xgPGc77ehIyTt9zxMYhZTG1JcIPwIJXNmLxYYtX9TPo= Subject key identifier: 58:86:F4:FB:82:E4:31:89:0C:49:CD:5C:54:B4:00:F2:5A:AC:62:DA Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0C09 Signing time: Wed 02 Jul 2025 19:34:18 +0000 Manifest this update: Wed 02 Jul 2025 19:34:17 +0000 Manifest next update: Wed 09 Jul 2025 19:34:17 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: cgnlggsjIAs/tnVuZ8ua8O1ZUdjD99YgYgRqlDXb+4I=) 2: 6360524E03D311F0A6C64177C4F9AE02.roa (hash: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8=) 3: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: fNb48r4M+gfLXajaKFGp8VWXxugH32v0si+d8iboCho=) 4: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: EO+r4YCRXrWQGjZoJ/CD1KsxdVzlBHVNlbdYh39PLSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Jul 2 19:34:17 2025 GMT Not After : Jul 9 19:34:17 2025 GMT Subject: CN=686589b9-c27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:88:b2:41:94:dd:e6:98:69:34:fe:fa:4c:dc: e2:ce:50:44:e2:5e:33:42:96:8c:a5:76:7b:e8:c1: 6f:9d:09:89:e9:b0:8e:8d:97:ed:71:8b:49:26:cb: 2a:81:df:f5:c4:13:cc:38:2e:af:4b:28:bb:a4:24: e1:ba:cc:7d:c8:24:ed:8c:4a:15:bd:af:4a:0d:78: 57:5c:3b:04:1e:82:a5:18:17:bd:67:a8:58:68:66: da:01:3a:c0:93:0c:3d:69:ac:a1:47:52:b6:88:df: 1e:ab:16:99:2a:02:77:93:18:c3:8d:82:ec:c3:98: 45:40:2e:8a:69:ed:97:86:8c:f8:16:95:f9:52:6a: 4c:d2:9b:57:ac:1a:24:62:82:0a:e8:52:6f:cd:b8: 8a:73:9d:99:3f:97:2b:e1:fc:b3:f5:85:38:7f:63: 18:08:ca:e6:35:b9:63:27:88:79:62:2c:1d:94:75: 90:72:42:75:4c:a7:b1:29:d1:7f:77:39:02:e9:6d: ee:0c:04:6b:07:89:1f:dc:0d:e9:23:75:48:7d:4b: 06:ae:db:63:8b:70:20:f0:b8:63:8d:35:48:59:ea: 20:12:e9:1a:27:bc:3a:3a:cc:09:e8:95:3b:d9:25: 68:8b:92:e9:2f:b8:c5:c3:fc:63:49:13:eb:c1:ac: 91:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:86:F4:FB:82:E4:31:89:0C:49:CD:5C:54:B4:00:F2:5A:AC:62:DA X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e8:86:26:58:02:73:d6:89:47:ee:54:7f:19:e2:e1:42:c2: 07:f4:05:bd:fc:d6:19:1e:37:23:a7:04:cd:66:2c:2c:df:92: 8a:d3:54:b7:d7:08:bc:30:03:56:a1:75:23:45:2d:72:ff:4b: b3:96:66:43:e4:1a:9c:1e:e6:19:35:89:42:f9:e4:2d:c1:67: 64:36:85:24:77:31:26:19:fd:49:8a:38:b8:ac:34:7f:69:ff: f3:1b:b4:ae:a3:19:6b:f5:bc:38:c3:37:62:d0:06:24:d3:f0: d3:16:98:c7:b8:0f:90:ad:58:e7:53:0f:7a:a1:97:25:da:62: 5b:58:22:e6:0f:f0:ee:19:6d:f7:4b:d1:f7:cf:c6:dc:37:37: 2b:99:8b:d4:a9:a5:01:80:be:f9:e8:37:f8:ab:9d:cf:bd:02: 87:18:44:df:98:db:02:73:93:da:33:7e:29:ed:8c:6d:75:55: c2:a1:7b:bc:9b:77:34:07:15:6e:6d:a6:d7:02:b9:fd:f8:0b: 49:48:25:5b:0e:06:f7:ad:6b:ac:fa:42:ae:51:2f:a9:d4:39: f1:ee:29:4c:32:57:e8:e7:5b:ef:11:15:fd:a2:0f:f9:56:7c: ab:99:f9:f8:f0:2d:e9:10:ad:25:ee:3a:21:5b:87:57:af:f0: 18:73:1e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUwNzAyMTkzNDE3WhcNMjUwNzA5MTkzNDE3WjAYMRYwFAYD VQQDEw02ODY1ODliOS1jMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYiyQZTd5phpNP76TNzizlBE4l4zQpaMpXZ76MFvnQmJ6bCOjZftcYtJJssq gd/1xBPMOC6vSyi7pCThusx9yCTtjEoVva9KDXhXXDsEHoKlGBe9Z6hYaGbaATrA kww9aayhR1K2iN8eqxaZKgJ3kxjDjYLsw5hFQC6Kae2Xhoz4FpX5UmpM0ptXrBok YoIK6FJvzbiKc52ZP5cr4fyz9YU4f2MYCMrmNbljJ4h5YiwdlHWQckJ1TKexKdF/ dzkC6W3uDARrB4kf3A3pI3VIfUsGrttji3Ag8LhjjTVIWeogEukaJ7w6OswJ6JU7 2SVoi5LpL7jFw/xjSRPrwayRcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiG9PuC 5DGJDEnNXFS0APJarGLaMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC66IYmWAJz1olH7lR/GeLhQsIH9AW9/NYZHjcjpwTNZiws35KK01S3 1wi8MANWoXUjRS1y/0uzlmZD5BqcHuYZNYlC+eQtwWdkNoUkdzEmGf1Jiji4rDR/ af/zG7Suoxlr9bw4wzdi0AYk0/DTFpjHuA+QrVjnUw96oZcl2mJbWCLmD/DuGW33 S9H3z8bcNzcrmYvUqaUBgL756Df4q53PvQKHGETfmNsCc5PaM34p7YxtdVXCoXu8 m3c0BxVubabXArn9+AtJSCVbDgb3rWus+kKuUS+p1Dnx7ilMMlfo51vvERX9og/5 Vnyrmfn48C3pEK0l7johW4dXr/AYcx7P -----END CERTIFICATE-----Generated at Thu Jul 3 07:56:24 2025 by rpki-client