$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: SW8A4l3ifrtdmeuJb2Jgy4aOML6YAMuAhahvxzQkCow= Subject key identifier: 9E:9F:5F:A8:0C:46:9E:B0:F6:59:09:37:8A:4D:D1:17:4F:16:63:F4 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 07C3 Signing time: Sat 28 Jun 2025 20:47:45 +0000 Manifest this update: Sat 28 Jun 2025 20:47:44 +0000 Manifest next update: Sat 05 Jul 2025 20:47:44 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: Yu/pCGM2B3U0EF9Fn4G3q13LH2/vV8GiZJD+dTHnuLU=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Jun 28 20:47:44 2025 GMT Not After : Jul 5 20:47:44 2025 GMT Subject: CN=686054f0-dc0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:35:dc:c6:1b:9b:9d:17:15:4b:4c:0f:6f: 71:53:41:0a:d9:c8:96:42:93:08:32:03:73:b0:8e: 17:0c:d7:79:ec:d0:f5:29:10:f5:f8:7e:f4:5d:cb: bb:14:47:2e:b6:a2:10:61:e8:78:cb:57:63:df:bb: b6:b8:72:6f:bd:22:48:25:7a:c1:f3:1b:56:fe:ac: 16:c1:07:48:bf:d4:b5:8c:e9:d8:bf:e4:70:23:8b: 74:69:e3:d5:bf:a6:a9:59:84:36:3a:4b:55:6c:3f: 37:c3:5d:94:85:b6:5d:3e:19:cd:ac:74:d2:50:0b: e1:17:86:7c:53:22:f8:fd:c9:18:71:e2:64:a2:e1: 90:52:cc:f5:72:86:74:a3:57:86:6b:6e:26:d9:e5: 54:a7:f2:f9:37:b2:50:c7:ab:3f:d5:69:d5:ed:0c: 21:39:74:43:9b:d6:76:c0:82:25:82:68:d3:1d:1c: 23:49:ed:e3:2e:a3:cb:cd:48:70:fc:40:22:23:e6: c2:12:f8:2d:50:65:27:5b:cd:d3:51:d5:fa:ff:da: aa:ce:0d:91:1e:76:a7:60:e4:9c:02:78:a3:71:2a: b7:91:2b:63:36:3c:c6:2f:9c:c6:81:63:c9:11:55: 29:2c:3c:f0:fa:2a:a5:47:13:2a:a1:23:2a:6b:8b: ba:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9F:5F:A8:0C:46:9E:B0:F6:59:09:37:8A:4D:D1:17:4F:16:63:F4 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c1:36:8c:25:f1:2f:39:a6:98:c6:fb:38:b0:05:44:21:cf: f9:28:31:1b:89:65:fd:34:36:4e:ec:c8:63:d7:6e:83:08:7a: bd:92:c9:d8:44:90:98:5f:f1:b8:41:49:a9:0e:4d:89:df:9e: 2c:d7:6f:40:42:79:f8:77:94:6f:5e:0f:d5:60:ec:44:6e:75: 7f:dd:9f:12:e4:b1:23:0a:52:24:37:7e:71:ef:a1:f5:00:3a: d1:66:4e:29:b4:ce:4b:75:38:79:28:95:c0:29:e4:10:f4:82: 1c:d2:2e:fb:b7:97:89:3d:39:a9:26:58:27:fe:44:82:c6:e0: 53:25:11:71:e0:fe:84:8f:a1:84:5d:b5:b2:82:19:0e:4a:37: d7:ea:4b:10:3a:28:c9:81:20:5a:1b:88:1a:79:9e:90:94:b8: cd:0e:5b:59:95:8f:40:84:43:1a:3e:4e:d9:04:d2:45:6d:9e: 3a:1b:a2:a7:92:f0:a0:5e:0a:2f:4f:c7:c9:fc:87:8d:ec:a6: 14:79:6f:0e:92:b2:17:00:cf:e6:f9:68:0f:a9:75:8e:aa:56: 44:b1:a2:c6:61:85:db:95:52:e1:5a:39:34:a3:81:ae:17:ca: 7d:1a:2c:fe:1e:13:d0:4c:bc:7f:7f:dd:84:ff:aa:07:06:a5: c5:e6:95:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUwNjI4MjA0NzQ0WhcNMjUwNzA1MjA0NzQ0WjAYMRYwFAYD VQQDEw02ODYwNTRmMC1kYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+g13MYbm50XFUtMD29xU0EK2ciWQpMIMgNzsI4XDNd57ND1KRD1+H70Xcu7 FEcutqIQYeh4y1dj37u2uHJvvSJIJXrB8xtW/qwWwQdIv9S1jOnYv+RwI4t0aePV v6apWYQ2OktVbD83w12UhbZdPhnNrHTSUAvhF4Z8UyL4/ckYceJkouGQUsz1coZ0 o1eGa24m2eVUp/L5N7JQx6s/1WnV7QwhOXRDm9Z2wIIlgmjTHRwjSe3jLqPLzUhw /EAiI+bCEvgtUGUnW83TUdX6/9qqzg2RHnanYOScAnijcSq3kStjNjzGL5zGgWPJ EVUpLDzw+iqlRxMqoSMqa4u69wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6fX6gM Rp6w9lkJN4pN0RdPFmP0MB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKwTaMJfEvOaaYxvs4sAVEIc/5KDEbiWX9NDZO7Mhj126DCHq9ksnY RJCYX/G4QUmpDk2J354s129AQnn4d5RvXg/VYOxEbnV/3Z8S5LEjClIkN35x76H1 ADrRZk4ptM5LdTh5KJXAKeQQ9IIc0i77t5eJPTmpJlgn/kSCxuBTJRFx4P6Ej6GE XbWyghkOSjfX6ksQOijJgSBaG4gaeZ6QlLjNDltZlY9AhEMaPk7ZBNJFbZ46G6Kn kvCgXgovT8fJ/IeN7KYUeW8OkrIXAM/m+WgPqXWOqlZEsaLGYYXblVLhWjk0o4Gu F8p9Giz+HhPQTLx/f92E/6oHBqXF5pVH -----END CERTIFICATE-----Generated at Mon Jun 30 18:40:55 2025 by rpki-client