$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft File: XOe82cbkE4HMCvkJkN2gNpOF5lU.mft (raw, json) Hash identifier: hi69Cibf3Rv3DauP+RJiWrj9MOShUKD9bSE08I3s758= Subject key identifier: DB:2F:20:0D:28:9B:2C:B5:DB:4E:52:81:E6:1B:8B:60:F3:4C:A9:ED Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 0481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft Manifest number: 0475 Signing time: Sat 28 Jun 2025 23:40:13 +0000 Manifest this update: Sat 28 Jun 2025 23:40:13 +0000 Manifest next update: Sat 05 Jul 2025 23:40:13 +0000 Files and hashes: 1: XOe82cbkE4HMCvkJkN2gNpOF5lU.crl (hash: t+57XYHnCACPCMj7j0qDO0CUjgS7PjYNeOcKJYQILVw=) 2: 11330A4663F611ECB344F979C4F9AE02.roa (hash: EUhD1CogfYx019LqOHk5ZADPXKjO2pURWvfLLk3fqG8=) 3: 10A8D0E263F611ECB344F979C4F9AE02.roa (hash: 0C7V986gHLfF3RPO5trmAPFLdLtlvzlCJ3+47YeVJHU=) 4: C71919900BEE11EDBB84E711C4F9AE02.roa (hash: CMOccFw4JW9T0ieBo3En9p6kBriebw6aKjGeEamJ19Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8, serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Jun 28 23:40:13 2025 GMT Not After : Jul 5 23:40:13 2025 GMT Subject: CN=68607d5d-3466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:56:37:83:de:f8:b7:f6:8b:b8:f9:2e:34:66: 55:f9:a5:f4:66:21:c8:38:d4:ce:66:87:c5:a3:4e: 08:83:d1:41:4d:99:96:80:7e:04:7d:8f:fd:fd:1d: 95:79:6b:07:e5:63:56:0a:fa:cf:18:e8:90:86:70: 0f:fb:35:77:0c:8c:23:78:29:f8:32:60:ac:93:90: af:0b:ee:e6:a3:c2:36:d0:82:41:4c:24:a6:12:8f: 80:17:52:c1:b4:a0:19:4c:7d:1f:77:b6:45:aa:ec: f2:32:ea:25:fa:04:53:e6:dd:da:63:2d:e9:9c:d7: 9b:07:0d:03:90:7d:7c:c4:fe:30:1d:cf:65:c1:e9: 95:6e:b5:8e:38:64:c4:72:7d:59:f1:49:f9:4e:5c: 2f:05:73:30:ea:4b:4d:a4:14:a5:c2:61:75:08:d6: fc:91:bc:38:d1:73:7d:44:c0:44:1b:b6:41:86:c5: 68:0a:9e:88:0b:aa:38:b3:1c:24:98:27:21:2a:72: 35:33:af:cd:5b:f6:3d:3b:c7:0b:3f:65:52:65:b5: a7:92:0a:07:7c:a0:0c:98:0d:57:1c:78:d6:a9:96: 48:80:5f:90:26:76:1c:ee:14:9d:37:55:eb:1f:9c: 4d:33:9c:b1:8d:3b:2f:4a:cd:b1:6e:4c:bd:e5:9f: 8c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:2F:20:0D:28:9B:2C:B5:DB:4E:52:81:E6:1B:8B:60:F3:4C:A9:ED X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:95:43:2f:b4:12:27:91:00:49:11:69:3b:66:b2:0c:80:db: fc:60:c3:34:c0:00:3b:80:ef:f8:dc:df:8a:5d:cd:12:2d:86: a6:d0:62:86:b2:ba:85:d2:4d:57:1f:10:26:49:49:e1:54:a9: d1:17:94:07:3e:5d:cc:76:08:9a:ad:42:86:1e:9c:d1:12:61: 67:47:e2:f8:d0:6b:93:d7:d3:ab:cc:57:90:f2:df:77:b6:53: 5b:1b:0e:3e:37:b3:e4:ad:00:d4:84:2f:84:e1:03:7f:9e:67: d0:6b:6c:2c:87:3f:a8:be:a5:69:59:8e:07:22:77:7d:f8:60: 3f:f6:0e:c4:da:81:33:2f:37:67:3a:43:39:08:2a:6d:3e:3a: 51:93:a0:15:00:28:63:dc:df:08:b2:a0:e2:ae:25:23:e6:17: 1c:ed:9b:7c:af:b2:b0:69:a0:f3:01:1d:67:2f:1f:42:db:78: e9:70:9f:99:44:20:26:55:cc:22:20:86:06:1d:6f:77:bb:07: 40:87:28:90:33:0f:b8:c3:ba:98:78:18:4f:bd:6b:b8:d8:95: 37:1d:5a:60:97:f7:7f:63:52:62:86:89:ee:b7:fa:a2:03:97: 43:98:aa:9e:c7:19:f4:65:51:b3:66:cc:d8:4d:54:0f:0c:ec: f7:1c:c0:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjUwNjI4MjM0MDEzWhcNMjUwNzA1MjM0MDEzWjAYMRYwFAYD VQQDEw02ODYwN2Q1ZC0zNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlY3g974t/aLuPkuNGZV+aX0ZiHIONTOZofFo04Ig9FBTZmWgH4EfY/9/R2V eWsH5WNWCvrPGOiQhnAP+zV3DIwjeCn4MmCsk5CvC+7mo8I20IJBTCSmEo+AF1LB tKAZTH0fd7ZFquzyMuol+gRT5t3aYy3pnNebBw0DkH18xP4wHc9lwemVbrWOOGTE cn1Z8Un5TlwvBXMw6ktNpBSlwmF1CNb8kbw40XN9RMBEG7ZBhsVoCp6IC6o4sxwk mCchKnI1M6/NW/Y9O8cLP2VSZbWnkgoHfKAMmA1XHHjWqZZIgF+QJnYc7hSdN1Xr H5xNM5yxjTsvSs2xbky95Z+MowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsvIA0o myy1205SgeYbi2DzTKntMB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNBOC8yMUZBMDI3MjRDNkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0 SE1DdmtKa04yZ05wT0Y1bFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAylUMvtBInkQBJEWk7ZrIMgNv8YMM0wAA7gO/43N+KXc0SLYam0GKG srqF0k1XHxAmSUnhVKnRF5QHPl3MdgiarUKGHpzREmFnR+L40GuT19OrzFeQ8t93 tlNbGw4+N7PkrQDUhC+E4QN/nmfQa2wshz+ovqVpWY4HInd9+GA/9g7E2oEzLzdn OkM5CCptPjpRk6AVAChj3N8IsqDiriUj5hcc7Zt8r7KwaaDzAR1nLx9C23jpcJ+Z RCAmVcwiIIYGHW93uwdAhyiQMw+4w7qYeBhPvWu42JU3HVpgl/d/Y1Jihonut/qi A5dDmKqexxn0ZVGzZszYTVQPDOz3HMC6 -----END CERTIFICATE-----Generated at Sun Jun 29 19:30:50 2025 by rpki-client