$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft File: xHWJli7Q04kmIr5be4vu_ozniKc.mft (raw, json) Hash identifier: LHrFipQWsLb1ceBPdEXxrneupkBEkvtHoyKe6CR2GcY= Subject key identifier: F4:D2:F0:87:5C:34:BE:D7:FF:CF:06:FD:62:0D:6F:43:CA:14:A8:E2 Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft Manifest number: 0104 Signing time: Sun 01 Jun 2025 04:52:28 +0000 Manifest this update: Sun 01 Jun 2025 04:52:28 +0000 Manifest next update: Sun 08 Jun 2025 04:52:28 +0000 Files and hashes: 1: xHWJli7Q04kmIr5be4vu_ozniKc.crl (hash: VBF1cHw7BuyeNbGnf5ZFaNRBhLN/558mcRiVoPO9ifY=) 2: 4E2CAC386E8711EF8521ED6FC4F9AE02.roa (hash: rFJbuDYL88Z9KeNowFp3y8pDODtibJ7P1KjjzQ7u73o=) 3: 8C7D223C2DAB11EF88127264C4F9AE02.roa (hash: qHX8rwWLzYwQ68AYEwJa6sYGgUw03regWlERxMTMTs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A13A6, serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Validity Not Before: Jun 1 04:52:28 2025 GMT Not After : Jun 8 04:52:28 2025 GMT Subject: CN=683bdc8c-8cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e8:85:d6:da:d8:0a:89:42:e7:0a:ea:aa:25: a8:dd:55:71:cc:ee:8f:77:7c:4f:f8:1b:77:a2:b1: 3b:8d:f4:02:60:99:4c:aa:b1:c2:02:26:39:13:59: c2:f0:41:c9:53:fe:8d:48:86:d8:74:71:84:c8:6d: d1:3f:c1:dd:46:72:4a:f2:f8:bf:de:64:7c:b8:1e: db:dd:d8:c6:07:ed:61:c2:1a:24:61:22:ac:7e:f1: ef:14:82:de:6d:5d:28:e3:f3:22:04:d9:54:70:59: aa:b2:14:78:dd:c2:76:b2:93:22:5c:94:21:05:8d: 09:be:ed:97:a6:35:6b:b6:c0:9a:82:df:8e:90:54: 7b:3c:18:2e:26:e9:99:5b:af:12:37:75:74:e6:73: e1:ef:17:d4:e4:71:fa:94:f4:50:61:59:51:4e:3f: 9a:4e:d5:6a:4c:56:1f:7c:72:b0:a4:14:60:c5:22: 1d:c5:f0:a2:27:16:df:6f:f1:e4:ee:6b:dc:99:ff: c3:99:b4:50:93:67:52:c3:d2:6d:6a:64:14:6d:f9: df:b3:f2:e6:3b:ad:5c:66:20:31:df:23:2c:d5:d7: ef:80:b5:b0:dc:ff:93:c6:72:fa:17:9a:f9:c7:64: 2a:73:36:4f:15:cb:28:ff:ff:15:37:2e:d1:3e:18: b6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D2:F0:87:5C:34:BE:D7:FF:CF:06:FD:62:0D:6F:43:CA:14:A8:E2 X509v3 Authority Key Identifier: keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6f:46:41:3a:08:53:81:33:af:f1:26:82:91:4e:d0:39:bf: 48:76:36:89:2d:2f:6c:88:02:9a:85:57:14:55:b6:d5:3f:eb: 31:b5:0c:67:41:7f:78:d4:49:92:dd:2c:12:b7:89:a4:3a:8b: 0e:54:a5:bd:ea:ea:73:ac:1f:e2:ef:14:a5:31:da:c9:f3:1b: 3e:8f:c9:8f:3b:9a:f7:74:28:c8:a4:23:8f:f1:73:3b:b4:21: 39:41:b3:00:b7:19:fc:63:bc:a6:f4:c6:f1:07:2e:6b:39:81: 51:93:08:4d:34:f9:fe:71:5b:28:50:f1:10:00:63:a2:f8:5e: 95:ea:93:0f:9d:b8:b3:2f:e4:e3:91:9f:1f:60:f6:35:dc:27: d5:ca:d8:11:87:10:e3:4c:ea:d6:e6:1d:dc:09:4b:e3:32:4f: 7d:cf:6a:2c:69:6d:b7:90:80:52:02:17:c2:ee:14:f3:41:0a: 17:ea:b6:40:19:18:32:6f:4b:95:28:d1:6d:8c:a4:46:d6:2b: 06:94:a1:97:f0:86:c7:15:d1:12:0a:68:2c:74:8e:9c:99:0f: b8:a5:61:3c:ab:b8:c9:d8:e3:07:b6:02:86:72:c9:a2:24:12: c9:bb:37:54:d8:ea:66:53:d6:cb:22:12:c0:86:6b:78:d4:09: 01:28:06:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF OENFNzg4QTcwHhcNMjUwNjAxMDQ1MjI4WhcNMjUwNjA4MDQ1MjI4WjAYMRYwFAYD VQQDEw02ODNiZGM4Yy04Y2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuiF1trYColC5wrqqiWo3VVxzO6Pd3xP+Bt3orE7jfQCYJlMqrHCAiY5E1nC 8EHJU/6NSIbYdHGEyG3RP8HdRnJK8vi/3mR8uB7b3djGB+1hwhokYSKsfvHvFILe bV0o4/MiBNlUcFmqshR43cJ2spMiXJQhBY0Jvu2XpjVrtsCagt+OkFR7PBguJumZ W68SN3V05nPh7xfU5HH6lPRQYVlRTj+aTtVqTFYffHKwpBRgxSIdxfCiJxbfb/Hk 7mvcmf/DmbRQk2dSw9JtamQUbfnfs/LmO61cZiAx3yMs1dfvgLWw3P+TxnL6F5r5 x2QqczZPFcso//8VNy7RPhi2pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTS8Idc NL7X/88G/WINb0PKFKjiMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTNBNi84MDc5NEM5QUMwOEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0 a21JcjViZTR2dV9vem5pS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPb0ZBOghTgTOv8SaCkU7QOb9IdjaJLS9siAKahVcUVbbVP+sxtQxn QX941EmS3SwSt4mkOosOVKW96upzrB/i7xSlMdrJ8xs+j8mPO5r3dCjIpCOP8XM7 tCE5QbMAtxn8Y7ym9MbxBy5rOYFRkwhNNPn+cVsoUPEQAGOi+F6V6pMPnbizL+Tj kZ8fYPY13CfVytgRhxDjTOrW5h3cCUvjMk99z2osaW23kIBSAhfC7hTzQQoX6rZA GRgyb0uVKNFtjKRG1isGlKGX8IbHFdESCmgsdI6cmQ+4pWE8q7jJ2OMHtgKGcsmi JBLJuzdU2OpmU9bLIhLAhmt41AkBKAa4 -----END CERTIFICATE-----Generated at Mon Jun 2 18:47:16 2025 by rpki-client