$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: FsTebG1GzXmkNeqOLNWBj5p+GqfuSwdnzYTTum59OMg= Subject key identifier: 79:78:8C:54:F6:9E:69:21:25:93:29:88:E7:5B:0F:00:47:C8:86:E4 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0EA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0E9C Signing time: Sat 28 Jun 2025 17:29:32 +0000 Manifest this update: Sat 28 Jun 2025 17:29:31 +0000 Manifest next update: Sat 05 Jul 2025 17:29:31 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: dGACCKGoAE6WgSTLZILiTitXoaIuPGCVOpBMpN2JFlE=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: WbUUTzfSyCpyqPb3jZBov7io1LDDEMhW0G0g1zGhi5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3747 (0xea3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Jun 28 17:29:31 2025 GMT Not After : Jul 5 17:29:31 2025 GMT Subject: CN=6860267c-6432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:79:2a:35:be:a2:53:89:16:67:be:f0:19:e6: fb:10:1b:ad:7d:8e:c1:4a:0f:9a:e1:b1:62:20:a1: b0:21:1d:67:34:96:f1:64:83:a8:b4:bc:73:17:d6: 95:c4:7a:22:eb:9a:e1:61:bb:1d:de:4a:6b:48:d0: 43:62:ba:b5:b8:58:16:dc:83:92:e7:13:58:d5:88: d2:7d:77:91:09:02:a7:3b:ee:2b:c4:56:d0:50:bf: 94:72:6e:03:24:b4:6d:a6:5f:7f:48:e2:93:dd:f8: e8:71:25:fb:21:9f:e0:47:49:4c:6e:c1:65:fe:18: d2:eb:8f:42:73:60:0d:c9:de:d2:bc:db:89:6b:ac: 62:33:4f:e8:1c:13:98:1c:f5:21:a4:16:a2:57:07: fc:a5:fe:94:82:f6:83:23:fd:f5:de:76:09:95:04: 68:21:5c:30:13:3b:20:5c:23:b7:5b:4d:32:61:c0: e4:44:58:4e:d9:1b:4f:b5:20:f1:f8:64:de:68:f8: 4c:ec:66:29:54:3f:a9:d8:09:4c:91:3d:79:e4:d6: 05:9a:3d:6a:fe:47:68:71:67:b9:e5:e4:bb:90:4d: bc:8e:3b:44:fd:da:22:09:a8:7a:1c:33:5c:9e:b9: d6:d5:7a:11:b6:03:dc:38:57:1a:c5:e8:0f:4a:39: 53:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:78:8C:54:F6:9E:69:21:25:93:29:88:E7:5B:0F:00:47:C8:86:E4 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:60:04:15:8f:36:a0:cf:03:4a:47:20:09:e2:69:9f:ff:71: 07:c6:92:84:a2:51:17:1c:0c:b0:55:08:f4:39:5b:fc:81:ec: 22:b2:b5:e9:6d:b5:dd:1d:3a:47:a7:ad:10:17:ec:4e:02:cd: b6:24:39:48:e2:92:b9:ab:57:1d:b0:e5:1b:f7:88:eb:5d:29: 8c:0e:85:b4:4a:b3:fd:71:d3:47:35:b7:17:91:52:da:22:a9: 49:4f:ef:1b:d5:22:8e:61:92:c5:13:70:0a:98:d9:87:31:94: 17:85:b2:5e:4f:32:59:f0:5f:f3:ed:58:37:57:b5:e9:fb:19: 81:21:be:ca:1c:8c:88:d6:f9:10:0c:83:0a:83:a3:e8:1d:64: c4:db:09:44:7c:d9:94:f4:a5:ac:d1:5e:13:c5:a0:d7:d5:f7: 80:16:7d:db:8d:3e:d2:fd:13:b1:27:85:7a:9c:7a:59:70:74: 68:80:2f:ba:6e:cb:e6:c2:26:2f:91:40:18:e9:8a:41:e8:83: e0:4d:13:cb:bc:63:bb:f2:f7:cb:65:de:cb:ce:7e:14:8f:3d: 5c:5a:0f:02:60:67:9e:c2:29:25:c5:44:94:14:9a:28:db:5c: 32:8d:a6:a7:8c:62:f6:0c:58:49:4c:93:5b:ed:80:1e:fc:d3: f3:8c:03:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUwNjI4MTcyOTMxWhcNMjUwNzA1MTcyOTMxWjAYMRYwFAYD VQQDEw02ODYwMjY3Yy02NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nkqNb6iU4kWZ77wGeb7EButfY7BSg+a4bFiIKGwIR1nNJbxZIOotLxzF9aV xHoi65rhYbsd3kprSNBDYrq1uFgW3IOS5xNY1YjSfXeRCQKnO+4rxFbQUL+Ucm4D JLRtpl9/SOKT3fjocSX7IZ/gR0lMbsFl/hjS649Cc2ANyd7SvNuJa6xiM0/oHBOY HPUhpBaiVwf8pf6UgvaDI/313nYJlQRoIVwwEzsgXCO3W00yYcDkRFhO2RtPtSDx +GTeaPhM7GYpVD+p2AlMkT155NYFmj1q/kdocWe55eS7kE28jjtE/doiCah6HDNc nrnW1XoRtgPcOFcaxegPSjlTqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHl4jFT2 nmkhJZMpiOdbDwBHyIbkMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVYAQVjzagzwNKRyAJ4mmf/3EHxpKEolEXHAywVQj0OVv8gewisrXp bbXdHTpHp60QF+xOAs22JDlI4pK5q1cdsOUb94jrXSmMDoW0SrP9cdNHNbcXkVLa IqlJT+8b1SKOYZLFE3AKmNmHMZQXhbJeTzJZ8F/z7Vg3V7Xp+xmBIb7KHIyI1vkQ DIMKg6PoHWTE2wlEfNmU9KWs0V4TxaDX1feAFn3bjT7S/ROxJ4V6nHpZcHRogC+6 bsvmwiYvkUAY6YpB6IPgTRPLvGO78vfLZd7Lzn4Ujz1cWg8CYGeewiklxUSUFJoo 21wyjaanjGL2DFhJTJNb7YAe/NPzjAN5 -----END CERTIFICATE-----Generated at Mon Jun 30 16:02:17 2025 by rpki-client