$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: c6nLExkCKQgBFkQVDCCofT5sSglmX5umQPpMUcCu+NM= Subject key identifier: 80:E8:C2:68:5F:5A:46:3F:71:C1:46:D9:80:05:BC:B4:33:21:93:F8 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 0987 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0978 Signing time: Wed 02 Jul 2025 20:23:24 +0000 Manifest this update: Wed 02 Jul 2025 20:23:23 +0000 Manifest next update: Wed 09 Jul 2025 20:23:23 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: /v25i/D/2P3iIccJRM7bcNSUBtFfvGyRx1pLRPgDUEQ=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2439 (0x987) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Jul 2 20:23:23 2025 GMT Not After : Jul 9 20:23:23 2025 GMT Subject: CN=6865953c-68a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fb:43:41:9f:63:28:3f:3c:91:3a:35:6c:e9: f8:ad:4c:ac:45:93:e9:93:dd:cd:83:18:16:23:a1: 52:a1:22:4d:96:dd:7d:38:af:d0:c4:10:76:56:94: f0:28:10:f3:f4:27:8f:ff:bf:d2:3a:15:d0:46:01: 72:ab:9f:72:87:a7:39:f4:5a:4d:c6:eb:63:ec:07: f6:4e:a0:3c:bf:f2:36:c6:e8:05:a8:b0:09:24:8f: de:a7:f7:df:70:9f:0e:f2:aa:b2:b1:cb:81:d7:26: 80:24:50:90:1d:49:35:09:57:76:d2:36:c9:40:6a: 99:a7:ec:02:67:37:fc:b6:63:f5:af:40:53:22:c8: 0b:29:cf:26:73:7d:28:80:1f:c4:02:03:2a:e3:61: df:0c:18:ae:97:98:f4:ae:66:89:ba:1a:48:24:02: d8:cf:2b:7c:39:44:4b:ae:3d:6d:18:7a:8d:18:42: 60:de:02:26:89:34:a3:5b:10:7f:c1:dc:92:63:24: e0:be:0b:17:1a:24:16:7b:01:00:5b:0b:a1:e9:0b: bf:03:2c:50:00:5e:d1:3f:6e:b7:ca:1e:8b:b3:75: d4:5f:0c:4a:5b:a5:d1:c1:77:52:60:d8:7f:0b:4e: f0:27:4f:4c:65:33:81:3d:83:3b:35:0d:bb:50:79: 1a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E8:C2:68:5F:5A:46:3F:71:C1:46:D9:80:05:BC:B4:33:21:93:F8 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c7:2b:8a:bf:a8:fc:0c:9a:71:b7:f6:3a:2d:eb:f4:1a:17: 1c:53:87:07:fd:ca:19:be:a5:0b:e4:5d:7c:23:d7:80:d4:ea: 3f:ec:0b:44:16:46:54:2e:54:64:c2:58:a3:23:bf:0f:6c:dc: fc:2d:4e:ae:71:73:20:d4:5d:ae:29:18:8e:6a:8a:a6:e4:00: 46:c7:62:87:54:9d:10:96:4b:a9:f0:d2:08:9a:2e:53:ff:33: 2d:9f:20:32:ce:fe:2f:e3:50:cd:ac:0e:58:61:12:c1:bb:f1: a4:da:57:bd:7e:4b:9f:dd:71:9a:4d:20:64:fc:35:66:58:76: 3e:14:b9:5a:08:ea:b8:4f:bc:16:8f:5e:38:63:7f:eb:0e:3f: 21:3c:0c:53:f3:fd:00:83:fc:bb:7d:e9:49:f4:d4:9e:a9:17: 3d:5e:19:5d:25:79:92:42:98:fa:0e:0a:4a:08:32:a4:8a:eb: 59:87:83:dc:76:d8:c1:83:ee:d9:2b:3a:80:28:6a:59:37:f5: 5b:5f:18:06:aa:78:5f:d2:7f:09:7d:29:7e:3a:f5:3c:bc:0d: 08:d3:1b:72:56:8a:bb:16:32:a2:a0:de:81:c6:0b:c3:73:0d: 80:b9:ef:23:48:d3:c7:f9:ad:c6:d2:d8:6d:5b:8e:36:85:2e: 07:8a:e1:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUwNzAyMjAyMzIzWhcNMjUwNzA5MjAyMzIzWjAYMRYwFAYD VQQDEw02ODY1OTUzYy02OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArftDQZ9jKD88kTo1bOn4rUysRZPpk93NgxgWI6FSoSJNlt19OK/QxBB2VpTw KBDz9CeP/7/SOhXQRgFyq59yh6c59FpNxutj7Af2TqA8v/I2xugFqLAJJI/ep/ff cJ8O8qqyscuB1yaAJFCQHUk1CVd20jbJQGqZp+wCZzf8tmP1r0BTIsgLKc8mc30o gB/EAgMq42HfDBiul5j0rmaJuhpIJALYzyt8OURLrj1tGHqNGEJg3gImiTSjWxB/ wdySYyTgvgsXGiQWewEAWwuh6Qu/AyxQAF7RP263yh6Ls3XUXwxKW6XRwXdSYNh/ C07wJ09MZTOBPYM7NQ27UHkaEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDowmhf WkY/ccFG2YAFvLQzIZP4MB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/xyuKv6j8DJpxt/Y6Lev0GhccU4cH/coZvqUL5F18I9eA1Oo/7AtE FkZULlRkwlijI78PbNz8LU6ucXMg1F2uKRiOaoqm5ABGx2KHVJ0Qlkup8NIImi5T /zMtnyAyzv4v41DNrA5YYRLBu/Gk2le9fkuf3XGaTSBk/DVmWHY+FLlaCOq4T7wW j144Y3/rDj8hPAxT8/0Ag/y7felJ9NSeqRc9XhldJXmSQpj6DgpKCDKkiutZh4Pc dtjBg+7ZKzqAKGpZN/VbXxgGqnhf0n8JfSl+OvU8vA0I0xtyVoq7FjKioN6BxgvD cw2Aue8jSNPH+a3G0thtW442hS4HiuFo -----END CERTIFICATE-----Generated at Thu Jul 3 18:30:02 2025 by rpki-client