$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft File: 1xhrKGW4YA1mKCKv65AVcAbg9BA.mft (raw, json) Hash identifier: xWjBRqbmNFYBSf+AvwqU/uD7ppr6pUL55gainJatEiw= Subject key identifier: E3:DD:A9:F3:B3:36:DA:83:B7:5E:96:8D:DD:72:EA:D4:6D:E7:0A:9D Authority key identifier: D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 Certificate issuer: /CN=A91F428C/serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Certificate serial: 349C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft Manifest number: 3498 Signing time: Mon 30 Jun 2025 15:06:51 +0000 Manifest this update: Mon 30 Jun 2025 15:06:51 +0000 Manifest next update: Mon 07 Jul 2025 15:06:51 +0000 Files and hashes: 1: 1xhrKGW4YA1mKCKv65AVcAbg9BA.crl (hash: eoR/fyf+6kQWjzO4fu8bMW6a8WWx5PSr7K6/MPUIxZM=) 2: B8201598BED111EC93B74C4FC4F9AE02.roa (hash: bZ78zYHCnstuVWjSxrFde4CQb6MOUeIvruPUliQa2hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13468 (0x349c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Validity Not Before: Jun 30 15:06:51 2025 GMT Not After : Jul 7 15:06:51 2025 GMT Subject: CN=6862a80b-5d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:00:f7:39:d7:8d:10:60:01:e4:cc:0c:00:be: 7a:04:da:f5:c3:b6:2b:24:11:b0:7b:1b:21:59:0f: 01:db:f5:8c:e0:54:0f:49:77:89:b7:3a:58:41:f4: f8:84:91:83:9e:1d:d2:7a:22:50:29:ea:98:3c:c9: f8:b6:42:4b:92:0b:31:6a:d1:97:aa:57:4e:20:d2: 68:35:37:1c:44:f7:f7:9e:69:c2:4f:3a:b5:e0:bf: 04:d1:4c:24:df:24:97:40:91:bc:b3:42:58:fa:44: 36:e3:4b:59:c4:ec:06:aa:9a:8e:8c:1f:37:f5:24: 7f:29:6f:dd:03:9f:31:f6:7d:ba:c0:02:4c:ea:05: 6c:96:3d:33:19:32:90:b8:6c:0c:ee:fa:d3:f4:9d: bb:62:0f:e5:78:55:08:0a:e0:19:c4:d3:62:24:b7: 73:ab:ed:5d:f8:4c:3f:ac:e4:dc:1a:1d:29:04:64: ac:44:b3:45:08:b5:0e:a3:a6:a5:9d:e0:80:12:a9: 21:f8:73:42:6c:fe:a5:6a:be:12:63:db:eb:d9:24: 9d:7d:e5:94:72:e6:02:3e:42:74:78:23:a5:a7:ae: e1:78:8c:9b:11:4e:b3:6a:ef:6f:ec:3a:20:b6:30: ce:23:df:4b:d1:80:53:61:41:93:a5:3f:96:41:7d: d8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DD:A9:F3:B3:36:DA:83:B7:5E:96:8D:DD:72:EA:D4:6D:E7:0A:9D X509v3 Authority Key Identifier: keyid:D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:78:b0:7c:03:fe:18:bc:8c:e8:19:3a:17:64:45:e2:3a:d9: 94:9d:45:5c:ab:d7:3c:d4:1f:d2:02:d9:a4:13:93:7f:25:84: 3b:f2:89:ba:f8:87:bc:1a:c2:b7:fe:6e:14:7a:9a:7d:4b:8e: f5:fc:59:4c:10:59:03:c9:65:7f:3b:20:65:34:2b:a5:7f:10: 19:bd:12:39:3f:53:4c:92:31:9a:8a:95:85:ff:f3:c3:78:03: 2b:c4:ed:58:f6:6e:c3:69:f3:98:d2:e2:6d:26:72:45:1d:e6: 7e:13:8f:75:8e:0c:b5:ea:e8:c2:b0:ff:bb:02:58:77:bf:ab: 98:06:54:a4:ba:8f:62:21:1a:9b:e8:c8:cf:9b:88:15:be:c1: ad:a8:7f:4a:b1:db:e4:ca:76:f2:e3:16:46:42:1c:b2:19:20: 37:08:c1:18:ff:41:5e:45:dd:ee:1b:6b:0f:8a:5e:17:84:0d: 0c:f8:8a:6c:26:62:a1:4e:6f:76:3d:e7:08:46:02:08:d3:62: 72:74:9e:0b:c6:03:2d:b7:8d:c8:b2:f7:94:75:b6:09:0f:b1: 19:e3:68:58:4d:d6:dd:02:d6:0b:b8:6b:fa:c4:5c:47:68:02: dc:32:3a:a1:50:f0:8f:d3:1b:b5:22:7e:b7:8f:81:29:3c:70: f1:f1:ca:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKEQ3MTg2QjI4NjVCODYwMEQ2NjI4MjJBRkVCOTAxNTcw MDZFMEY0MTAwHhcNMjUwNjMwMTUwNjUxWhcNMjUwNzA3MTUwNjUxWjAYMRYwFAYD VQQDEw02ODYyYTgwYi01ZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wD3OdeNEGAB5MwMAL56BNr1w7YrJBGwexshWQ8B2/WM4FQPSXeJtzpYQfT4 hJGDnh3SeiJQKeqYPMn4tkJLkgsxatGXqldOINJoNTccRPf3nmnCTzq14L8E0Uwk 3ySXQJG8s0JY+kQ240tZxOwGqpqOjB839SR/KW/dA58x9n26wAJM6gVslj0zGTKQ uGwM7vrT9J27Yg/leFUICuAZxNNiJLdzq+1d+Ew/rOTcGh0pBGSsRLNFCLUOo6al neCAEqkh+HNCbP6lar4SY9vr2SSdfeWUcuYCPkJ0eCOlp67heIybEU6zau9v7Dog tjDOI99L0YBTYUGTpT+WQX3YSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPdqfOz NtqDt16Wjd1y6tRt5wqdMB8GA1UdIwQYMBaAFNcYayhluGANZigir+uQFXAG4PQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy81MkZDQzY0ODFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlBMW1LQ0t2NjVBVmNBYmc5 QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4aHJLR1c0WUExbUtDS3Y2NUFWY0FiZzlCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy81MkZDQzY0ODFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlB MW1LQ0t2NjVBVmNBYmc5QkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZeLB8A/4YvIzoGToXZEXiOtmUnUVcq9c81B/SAtmkE5N/JYQ78om6 +Ie8GsK3/m4Uepp9S471/FlMEFkDyWV/OyBlNCulfxAZvRI5P1NMkjGaipWF//PD eAMrxO1Y9m7DafOY0uJtJnJFHeZ+E491jgy16ujCsP+7Alh3v6uYBlSkuo9iIRqb 6MjPm4gVvsGtqH9Ksdvkynby4xZGQhyyGSA3CMEY/0FeRd3uG2sPil4XhA0M+Ips JmKhTm92PecIRgII02JydJ4LxgMtt43IsveUdbYJD7EZ42hYTdbdAtYLuGv6xFxH aALcMjqhUPCP0xu1In63j4EpPHDx8cqK -----END CERTIFICATE-----Generated at Tue Jul 1 21:28:48 2025 by rpki-client