$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft File: ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft (raw, json) Hash identifier: r1mKVvnQLFvR4DD51zj6pzNbb3JyQ4xCs6G4GUDXXnw= Subject key identifier: 80:8C:B0:2A:72:7E:00:5C:2D:8F:24:E9:AF:FE:D5:FC:C9:2E:EB:1B Authority key identifier: 13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 Certificate issuer: /CN=A91F89D9/serialNumber=131570B4535F840302530DD1317442316309C177 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft Manifest number: 97 Signing time: Sun 29 Jun 2025 05:25:12 +0000 Manifest this update: Sun 29 Jun 2025 05:25:12 +0000 Manifest next update: Sun 06 Jul 2025 05:25:12 +0000 Files and hashes: 1: ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl (hash: y9Me/Df4tQrxx7iFjyCY66f8nOsKwBqdjxhdDpw5wCU=) 2: CDD43C182FFB11F099B57A7CC4F9AE02.roa (hash: oPt/hUSuzgl3vf6IekNSVwLM4HNHGT76iBnF/i7Fi6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=131570B4535F840302530DD1317442316309C177 Validity Not Before: Jun 29 05:25:12 2025 GMT Not After : Jul 6 05:25:12 2025 GMT Subject: CN=6860ce38-402d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:68:63:8a:b9:51:67:ec:df:73:e6:55:00:4d: 7a:c1:6a:e6:0f:fd:eb:a4:21:a4:b1:c0:b1:8d:7e: 70:a6:2e:d3:80:9e:23:0e:6b:ca:4b:6b:45:2a:24: 32:d4:0d:ca:67:84:76:d7:40:d7:f1:16:58:5c:7d: 9d:7b:6a:f1:1c:ea:d1:6f:fe:41:f4:48:c8:e7:25: 39:bb:e7:23:f1:29:0b:20:a3:1d:74:9e:12:5a:8d: a8:4a:dc:ac:22:86:ff:91:05:45:a9:07:38:05:23: 4f:5d:14:d0:67:75:8e:23:9a:04:ed:e0:a0:e3:15: 4a:33:d1:31:43:16:fd:f9:be:d7:41:ee:19:b7:a1: 50:4f:42:7a:1b:f9:09:59:53:3e:81:70:b5:7f:56: 57:2d:2b:e7:32:58:f3:c5:3d:b1:10:c6:fd:32:27: 28:c5:73:08:ca:26:12:e8:04:3c:72:86:93:72:d0: 33:d8:6f:ba:6a:12:f9:45:42:9e:04:e4:7a:a1:e9: cf:77:8a:75:5f:30:54:75:98:9c:2a:ac:0a:ac:21: 2b:5c:5c:fb:a9:4b:47:6d:2f:1b:f4:2b:e1:9b:0f: f3:8c:ca:2e:14:e8:72:b5:82:d8:e5:a9:54:42:b0: 48:bb:4b:8a:b8:77:81:2c:4e:5f:ff:67:50:f8:ab: 71:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8C:B0:2A:72:7E:00:5C:2D:8F:24:E9:AF:FE:D5:FC:C9:2E:EB:1B X509v3 Authority Key Identifier: keyid:13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:d5:65:df:6e:fc:2e:e2:72:45:97:e8:75:63:27:aa:ab:a2: 58:e4:c1:e8:13:66:ce:85:be:a4:57:ed:5c:16:83:2d:74:72: eb:55:c7:5c:ce:4b:2c:75:ad:f3:1c:cc:37:82:bd:5e:02:93: 37:d8:32:5d:52:4e:1d:e7:63:10:fa:94:0b:e9:16:9f:06:0d: 5e:64:17:65:98:3c:c2:74:ad:36:40:bc:13:77:f2:f4:99:6c: f9:a8:73:8f:4e:a7:23:a8:a4:8f:fe:c9:6e:6f:d2:bf:20:13: a1:94:06:7d:4a:28:1c:f0:37:07:a7:00:6c:e4:60:06:c9:86: c7:fd:92:c8:8f:cb:8f:4e:85:56:e1:14:8f:30:99:95:6c:8f: d8:bc:b4:63:64:73:9e:f6:59:88:28:b8:fd:ce:cc:ed:8a:94: 84:4b:9f:67:8c:1a:b1:56:99:1a:7d:9b:c1:ef:1b:d5:9c:f8: 4c:7e:66:f0:70:53:26:d7:58:6c:ef:57:bb:33:3d:91:c4:be: fe:6f:0a:1f:64:4d:0a:4c:90:fa:27:04:ea:31:b1:35:08:71: 2f:e9:88:1e:e1:5b:c0:f9:53:6a:7b:fd:b6:7d:a5:10:c8:fa: 19:ed:fc:ce:37:6d:a4:7e:80:20:7a:35:de:40:88:83:f5:ed: 3d:6a:30:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5RDkxMTAvBgNVBAUTKDEzMTU3MEI0NTM1Rjg0MDMwMjUzMEREMTMxNzQ0MjMx NjMwOUMxNzcwHhcNMjUwNjI5MDUyNTEyWhcNMjUwNzA2MDUyNTEyWjAYMRYwFAYD VQQDEw02ODYwY2UzOC00MDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mhjirlRZ+zfc+ZVAE16wWrmD/3rpCGkscCxjX5wpi7TgJ4jDmvKS2tFKiQy 1A3KZ4R210DX8RZYXH2de2rxHOrRb/5B9EjI5yU5u+cj8SkLIKMddJ4SWo2oStys Iob/kQVFqQc4BSNPXRTQZ3WOI5oE7eCg4xVKM9ExQxb9+b7XQe4Zt6FQT0J6G/kJ WVM+gXC1f1ZXLSvnMljzxT2xEMb9MicoxXMIyiYS6AQ8coaTctAz2G+6ahL5RUKe BOR6oenPd4p1XzBUdZicKqwKrCErXFz7qUtHbS8b9Cvhmw/zjMouFOhytYLY5alU QrBIu0uKuHeBLE5f/2dQ+KtxVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICMsCpy fgBcLY8k6a/+1fzJLusbMB8GA1UdIwQYMBaAFBMVcLRTX4QDAlMN0TF0QjFjCcF3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlEOS9GNTYwMzdBNjZG NUMxMUVGODM1QTdCNjZDNEY5QUUwMi9FeFZ3dEZOZmhBTUNVdzNSTVhSQ01XTUp3 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V4Vnd0Rk5maEFNQ1V3M1JNWFJDTVdNSndYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlEOS9GNTYwMzdBNjZGNUMxMUVGODM1QTdCNjZDNEY5QUUwMi9FeFZ3dEZOZmhB TUNVdzNSTVhSQ01XTUp3WGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj1WXfbvwu4nJFl+h1Yyeqq6JY5MHoE2bOhb6kV+1cFoMtdHLrVcdc zkssda3zHMw3gr1eApM32DJdUk4d52MQ+pQL6RafBg1eZBdlmDzCdK02QLwTd/L0 mWz5qHOPTqcjqKSP/slub9K/IBOhlAZ9Sigc8DcHpwBs5GAGyYbH/ZLIj8uPToVW 4RSPMJmVbI/YvLRjZHOe9lmIKLj9zsztipSES59njBqxVpkafZvB7xvVnPhMfmbw cFMm11hs71e7Mz2RxL7+bwofZE0KTJD6JwTqMbE1CHEv6Yge4VvA+VNqe/22faUQ yPoZ7fzON22kfoAgejXeQIiD9e09ajBE -----END CERTIFICATE-----Generated at Sun Jun 29 10:48:51 2025 by rpki-client