$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: dmnrmVwtOc3Jz3FuWrD5jPgbdIgI8DYH+42hpNkq1nI= Subject key identifier: 99:35:26:60:F4:C4:0E:36:1C:49:2D:24:E0:2E:C9:44:B0:B0:06:72 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: BA Signing time: Thu 03 Jul 2025 06:06:58 +0000 Manifest this update: Thu 03 Jul 2025 06:06:57 +0000 Manifest next update: Thu 10 Jul 2025 06:06:57 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: fAyYhCuudBRN9o/Fi4bQtgv8ZmV9/GUadtEdWfbQKQA=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: tpxknLltESXlXvrC8XRzEEbUw6cbAqdQTGW1X5phwoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Jul 3 06:06:57 2025 GMT Not After : Jul 10 06:06:57 2025 GMT Subject: CN=68661e01-ebf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:18:08:fd:36:30:40:f2:21:3e:10:b7:69:f7: 4e:05:c2:bc:20:0d:1d:6a:b7:06:ee:a6:68:a7:cc: 54:6b:69:be:74:5b:d3:66:c9:6f:40:ef:9d:4c:b5: c7:fb:ad:d9:11:53:57:89:7c:7c:5d:7a:e5:a9:d5: ea:9d:c6:d9:78:6f:1a:cd:c7:c4:8c:21:ee:04:92: ca:20:90:f6:c2:38:13:14:ed:dc:7c:60:50:b0:1c: 60:0a:99:ac:9a:0e:aa:87:e6:8f:6e:e4:d1:c1:21: b2:fd:92:f1:7a:db:56:2c:58:bf:5e:10:35:2c:84: 90:84:82:73:26:87:67:a4:0b:05:45:13:8d:78:bd: c1:aa:86:0c:c8:41:52:2e:03:0b:99:c2:f6:ea:e0: 8e:17:3a:82:ec:c0:bf:8d:8b:59:37:a6:15:bf:3c: fe:4d:16:f0:34:92:e6:fc:e2:37:a1:93:aa:53:68: ff:ab:e0:25:2c:c0:fe:e4:9d:a8:96:7e:09:9e:b4: 11:fe:4e:d9:05:3e:d8:b0:ed:c4:f5:a3:fb:bf:a1: 91:4e:ad:55:47:f6:9a:e2:e4:6c:b3:e5:79:f1:92: 77:7b:dc:03:f9:8c:f0:ea:38:69:4f:9e:0b:fb:7d: ff:6a:85:e6:b3:63:0a:36:35:cb:c7:9e:72:2a:d1: 53:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:35:26:60:F4:C4:0E:36:1C:49:2D:24:E0:2E:C9:44:B0:B0:06:72 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:dd:05:4d:1e:b9:2e:05:bd:02:fb:1f:34:a3:11:a1:06:80: c2:cc:7b:d3:b6:b2:f7:dd:b9:f6:21:48:88:a6:b7:34:1f:2b: bf:58:b9:69:05:7b:ee:c8:c5:00:2b:5f:30:48:44:d8:86:8e: e3:74:42:64:2b:34:5d:62:92:bc:a3:52:11:83:76:5a:1b:28: 20:d9:85:3c:0f:3f:92:da:fb:e4:74:5f:44:a0:00:51:a2:3c: 7c:a8:84:19:77:67:a1:6b:97:1b:63:76:f2:8b:11:69:b8:a2: be:90:5a:91:98:2c:1c:96:92:2d:0b:ec:dc:89:70:7b:be:5a: 02:9b:df:ce:f2:f0:5c:e7:43:14:9e:40:b1:08:11:d3:43:ac: 14:7e:a2:dc:94:18:bd:26:0c:23:bd:6f:fb:ed:29:91:56:08: 36:5a:3d:1f:a1:d5:47:dd:61:c9:6b:62:c2:81:2b:05:ff:54: 57:67:b1:92:cf:dd:2a:dc:d9:49:19:b4:7a:16:cf:5f:55:d4: 91:c9:5c:7d:f8:31:d0:59:b4:e5:04:58:a8:14:6f:15:a9:4d: 2b:88:cd:97:2a:96:52:7b:77:99:07:65:0e:d8:b7:a6:d7:ea: e0:95:f8:9d:c2:bc:52:72:24:ac:50:fb:84:c6:26:c3:af:58: 8a:39:5b:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUwNzAzMDYwNjU3WhcNMjUwNzEwMDYwNjU3WjAYMRYwFAYD VQQDEw02ODY2MWUwMS1lYmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hgI/TYwQPIhPhC3afdOBcK8IA0darcG7qZop8xUa2m+dFvTZslvQO+dTLXH +63ZEVNXiXx8XXrlqdXqncbZeG8azcfEjCHuBJLKIJD2wjgTFO3cfGBQsBxgCpms mg6qh+aPbuTRwSGy/ZLxettWLFi/XhA1LISQhIJzJodnpAsFRRONeL3BqoYMyEFS LgMLmcL26uCOFzqC7MC/jYtZN6YVvzz+TRbwNJLm/OI3oZOqU2j/q+AlLMD+5J2o ln4JnrQR/k7ZBT7YsO3E9aP7v6GRTq1VR/aa4uRss+V58ZJ3e9wD+Yzw6jhpT54L +33/aoXms2MKNjXLx55yKtFTPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJk1JmD0 xA42HEktJOAuyUSwsAZyMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC53QVNHrkuBb0C+x80oxGhBoDCzHvTtrL33bn2IUiIprc0Hyu/WLlp BXvuyMUAK18wSETYho7jdEJkKzRdYpK8o1IRg3ZaGygg2YU8Dz+S2vvkdF9EoABR ojx8qIQZd2eha5cbY3byixFpuKK+kFqRmCwclpItC+zciXB7vloCm9/O8vBc50MU nkCxCBHTQ6wUfqLclBi9JgwjvW/77SmRVgg2Wj0fodVH3WHJa2LCgSsF/1RXZ7GS z90q3NlJGbR6Fs9fVdSRyVx9+DHQWbTlBFioFG8VqU0riM2XKpZSe3eZB2UO2Lem 1+rglfidwrxSciSsUPuExibDr1iKOVsD -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:20 2025 by rpki-client