$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: PStKbhkNB9jkb/nuBeZjsFW90A67LMO6qqiSkyByMyc= Subject key identifier: D4:5B:C9:FF:40:04:38:95:30:FD:4B:EF:C5:D6:E5:FA:FB:7C:59:0D Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0AF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0AD4 Signing time: Sat 28 Jun 2025 19:10:01 +0000 Manifest this update: Sat 28 Jun 2025 19:10:01 +0000 Manifest next update: Sat 05 Jul 2025 19:10:01 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: H8Y9dZhTgliGVGgHSVVIfh+ZTA9qU78vbrxRUP79TQ8=) 2: E3BA5BC629C411F0B7BC5B32C4F9AE02.roa (hash: 5G76QrxV9fckMMwL2Z7gwLl+Gfb46qKRQLob4M+pm5k=) 3: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 19:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Jun 28 19:10:01 2025 GMT Not After : Jul 5 19:10:01 2025 GMT Subject: CN=68603e09-675a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:89:46:7d:dd:33:1f:52:49:11:1c:d4:4e:12: 25:28:18:0e:82:89:49:fb:5d:a6:01:99:b0:ee:d0: fa:78:52:0b:b8:f4:da:3e:75:a1:4a:9b:8e:c8:19: a2:43:7e:1e:c0:95:b3:9d:42:b5:cd:0b:d9:85:e2: 5e:07:9d:2e:52:07:5c:bf:a6:ac:1d:a5:28:46:e8: 7f:99:45:0a:41:bd:2f:99:78:33:68:99:b5:4e:9a: 94:70:12:0d:4e:0a:59:f9:f8:cd:76:bc:88:04:6a: f0:9c:ff:55:d2:17:f9:b4:14:b3:5b:38:37:cb:ae: fd:d8:b6:b0:bc:10:6d:7e:73:74:d9:c3:cc:98:63: 15:c8:9c:91:52:87:96:c0:59:bc:d7:aa:8b:3a:65: 16:0e:18:aa:7b:c9:44:e3:dd:2e:47:8a:1d:c4:12: 2d:71:97:bb:81:ac:90:ed:39:ab:2e:8b:88:af:d8: e5:f2:1d:d3:1c:3f:98:11:9a:37:55:64:59:79:9a: 49:f3:b4:7e:64:73:c2:44:7d:d1:f3:67:33:4b:3c: 98:0d:41:28:3d:31:b5:65:35:74:ea:81:a3:b0:65: 4d:a3:45:c8:1b:d8:81:35:f1:89:fe:f8:f6:82:67: e8:39:ee:04:09:d1:b1:54:b6:aa:6f:86:0c:d7:ae: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5B:C9:FF:40:04:38:95:30:FD:4B:EF:C5:D6:E5:FA:FB:7C:59:0D X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:7c:a4:06:09:12:8f:a2:36:fa:fd:50:e4:96:57:5f:c1:13: c7:92:a1:f9:c5:39:91:b0:51:93:76:f4:5c:54:dc:55:4d:85: 63:11:5e:a9:89:a9:b0:bd:ce:b3:23:b8:e6:0e:20:f2:61:88: 47:78:24:01:2e:9e:76:cc:2c:81:09:01:71:e6:ca:23:ba:49: 85:78:d8:7c:5b:b3:7e:4a:40:7a:32:77:85:07:85:76:a8:97: 89:06:d8:45:e3:74:4b:6b:14:83:c4:7b:9a:2e:7a:d1:e8:8f: 6e:7d:a5:bb:de:d9:6c:cf:88:68:39:33:59:61:08:85:3b:5c: bc:63:7a:b4:dc:83:d4:e0:47:ef:23:3e:00:ab:97:88:6e:0a: a5:00:f1:13:34:45:4c:99:46:12:3d:be:09:d5:3f:b1:3b:79: b0:8a:ed:4d:e2:c3:cd:a7:81:f3:9e:59:63:af:c6:ad:2d:45: d0:89:57:78:54:3e:e1:39:20:1a:4a:72:bf:60:19:86:6d:ce: 64:db:46:db:da:d5:6b:fe:8e:e3:db:e9:60:75:a7:46:8c:2c: df:fe:c2:b9:36:22:aa:22:b5:5a:26:ed:7e:24:37:68:1d:7e: 2c:8f:64:fc:87:65:57:87:aa:7d:2b:b5:e3:0f:7d:46:30:2a: 3c:4e:2d:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwNjI4MTkxMDAxWhcNMjUwNzA1MTkxMDAxWjAYMRYwFAYD VQQDEw02ODYwM2UwOS02NzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/YlGfd0zH1JJERzUThIlKBgOgolJ+12mAZmw7tD6eFILuPTaPnWhSpuOyBmi Q34ewJWznUK1zQvZheJeB50uUgdcv6asHaUoRuh/mUUKQb0vmXgzaJm1TpqUcBIN TgpZ+fjNdryIBGrwnP9V0hf5tBSzWzg3y6792LawvBBtfnN02cPMmGMVyJyRUoeW wFm816qLOmUWDhiqe8lE490uR4odxBItcZe7gayQ7TmrLouIr9jl8h3THD+YEZo3 VWRZeZpJ87R+ZHPCRH3R82czSzyYDUEoPTG1ZTV06oGjsGVNo0XIG9iBNfGJ/vj2 gmfoOe4ECdGxVLaqb4YM167YpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRbyf9A BDiVMP1L78XW5fr7fFkNMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3fKQGCRKPojb6/VDklldfwRPHkqH5xTmRsFGTdvRcVNxVTYVjEV6p iamwvc6zI7jmDiDyYYhHeCQBLp52zCyBCQFx5sojukmFeNh8W7N+SkB6MneFB4V2 qJeJBthF43RLaxSDxHuaLnrR6I9ufaW73tlsz4hoOTNZYQiFO1y8Y3q03IPU4Efv Iz4Aq5eIbgqlAPETNEVMmUYSPb4J1T+xO3mwiu1N4sPNp4Hznlljr8atLUXQiVd4 VD7hOSAaSnK/YBmGbc5k20bb2tVr/o7j2+lgdadGjCzf/sK5NiKqIrVaJu1+JDdo HX4sj2T8h2VXh6p9K7XjD31GMCo8Ti34 -----END CERTIFICATE-----Generated at Mon Jun 30 19:30:30 2025 by rpki-client