$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: on4FJqNcK6XMXLfIf5K7eTOw4BQfBH1tOJ9yxWU06Sk= Subject key identifier: 6E:20:66:F3:11:D5:66:B9:5E:76:15:A5:F3:B9:2D:D4:25:B7:63:CE Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 13F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 13E6 Signing time: Wed 02 Jul 2025 17:07:18 +0000 Manifest this update: Wed 02 Jul 2025 17:07:18 +0000 Manifest next update: Wed 09 Jul 2025 17:07:18 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: EBSekVi5mWBXbGfz3OHCteau8a1Y+KycM47CmC5HCLE=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: dlJ7zH1d3oXPs3S0YirZQi1hSZzUrfDhpzP6MZkDSDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5105 (0x13f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Jul 2 17:07:18 2025 GMT Not After : Jul 9 17:07:18 2025 GMT Subject: CN=68656746-f43e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cd:64:2a:42:0e:40:18:52:7a:f0:e4:5a:a4: db:ca:38:c6:ed:db:22:6f:2d:39:9a:ba:20:bc:50: ac:57:8b:4f:59:5e:ec:24:55:6b:cc:bb:48:a6:6f: eb:7c:89:f4:2d:0a:0c:8c:e8:eb:b6:8b:e2:bc:ed: 93:94:a2:ce:39:0f:b8:5f:fc:3e:fb:1c:c4:a7:9b: bb:8a:58:d1:c1:de:cd:5b:fa:a2:2f:26:2d:93:f3: 8a:b9:3d:f3:f0:85:fa:4f:e6:2a:39:16:25:4d:ca: 8a:23:5f:83:20:82:37:e4:1c:46:53:8b:43:f5:11: 14:04:2a:0b:17:51:fc:29:15:1b:50:63:a3:06:21: ee:ed:cb:7c:df:f5:17:6d:b7:e0:3f:01:01:c9:17: ba:52:8b:a7:7e:f9:96:18:ab:35:e9:da:bd:4d:e1: db:2c:ee:e7:98:b7:6e:3e:3d:d5:b4:66:b2:80:76: a6:c2:f5:03:82:f5:25:7c:cc:67:e0:a3:02:2d:19: df:79:df:6a:79:42:e4:f4:8b:c3:2f:23:47:cb:b2: e4:0d:69:41:b2:88:7b:ce:24:60:f2:de:e3:08:b2: b5:28:f4:9a:0f:9d:1a:15:ec:a4:59:3a:af:84:70: 3f:84:fd:64:3b:f0:c3:14:b9:3d:4e:f5:23:6b:57: 2e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:20:66:F3:11:D5:66:B9:5E:76:15:A5:F3:B9:2D:D4:25:B7:63:CE X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:dc:5c:b8:a3:e5:ac:c3:b5:04:93:18:3e:9c:eb:b8:be:50: 4c:99:b4:ac:c1:2a:9d:7f:65:0b:e5:d7:db:d5:c2:fb:55:81: 90:e1:98:09:aa:41:4a:3e:99:94:4a:0f:c7:07:e1:3d:e5:65: a0:b7:a3:e4:d8:34:20:80:57:48:b0:57:cf:37:29:58:1c:b6: 21:27:1b:6e:5a:1c:5c:fd:15:21:a8:03:19:85:7c:d1:4e:41: ae:3d:38:6d:34:ab:7e:3a:d9:c0:36:98:b4:a0:ce:61:3c:64: f1:4f:de:82:7a:1c:97:e6:83:89:54:9d:c1:3d:91:4c:36:21: 52:c7:e1:6d:66:15:1e:05:c4:ee:e6:6d:83:f6:96:6e:99:3c: 0a:88:86:8d:56:e4:f1:ec:de:d6:d2:ab:8b:39:23:12:6c:02: 17:3e:e7:ff:66:a7:ef:42:08:b9:d4:23:49:fd:dd:a0:af:32: 1c:82:a6:01:f8:34:c0:bd:02:b9:57:cd:8d:d6:86:88:3d:38: 2b:0b:8d:e9:ad:6e:69:77:7f:4e:88:7a:88:8c:13:05:fd:e8: e2:4b:cd:82:73:46:a2:b9:fa:7b:d8:c6:6a:96:a6:e6:16:be: 88:89:c9:b5:a7:d5:fe:18:1e:fb:74:8b:42:9d:99:0e:01:9a: f0:01:61:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUwNzAyMTcwNzE4WhcNMjUwNzA5MTcwNzE4WjAYMRYwFAYD VQQDEw02ODY1Njc0Ni1mNDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzM1kKkIOQBhSevDkWqTbyjjG7dsiby05mrogvFCsV4tPWV7sJFVrzLtIpm/r fIn0LQoMjOjrtovivO2TlKLOOQ+4X/w++xzEp5u7iljRwd7NW/qiLyYtk/OKuT3z 8IX6T+YqORYlTcqKI1+DIII35BxGU4tD9REUBCoLF1H8KRUbUGOjBiHu7ct83/UX bbfgPwEByRe6UounfvmWGKs16dq9TeHbLO7nmLduPj3VtGaygHamwvUDgvUlfMxn 4KMCLRnfed9qeULk9IvDLyNHy7LkDWlBsoh7ziRg8t7jCLK1KPSaD50aFeykWTqv hHA/hP1kO/DDFLk9TvUja1cupQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4gZvMR 1Wa5XnYVpfO5LdQlt2POMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ3Fy4o+Wsw7UEkxg+nOu4vlBMmbSswSqdf2UL5dfb1cL7VYGQ4ZgJ qkFKPpmUSg/HB+E95WWgt6Pk2DQggFdIsFfPNylYHLYhJxtuWhxc/RUhqAMZhXzR TkGuPThtNKt+OtnANpi0oM5hPGTxT96CehyX5oOJVJ3BPZFMNiFSx+FtZhUeBcTu 5m2D9pZumTwKiIaNVuTx7N7W0quLOSMSbAIXPuf/ZqfvQgi51CNJ/d2grzIcgqYB +DTAvQK5V82N1oaIPTgrC43prW5pd39OiHqIjBMF/ejiS82Cc0aiufp72MZqlqbm Fr6Iicm1p9X+GB77dItCnZkOAZrwAWG+ -----END CERTIFICATE-----Generated at Fri Jul 4 18:02:16 2025 by rpki-client