$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: 8katwNWiBn2yderrkaGop0Z6AHTBHDza6iRqMaExoUk= Subject key identifier: 3C:F4:E7:7C:28:9F:CF:7B:F6:36:CE:C9:6B:31:A2:A6:28:E6:45:89 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: 69 Signing time: Sat 31 May 2025 06:32:09 +0000 Manifest this update: Sat 31 May 2025 06:32:08 +0000 Manifest next update: Sat 07 Jun 2025 06:32:08 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: lNGGhGPibYmYFIPmwPEt1YnVyskA2HqisRnjJ2DMTTY=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: +tAlw28NvGVDo5cCezaQKFVIMHfW8hqdMwBD9HYIeLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: May 31 06:32:08 2025 GMT Not After : Jun 7 06:32:08 2025 GMT Subject: CN=683aa268-a560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:89:ae:0f:94:24:5f:80:7e:c0:0c:3b:0f: ae:44:e3:d9:4b:f1:59:47:fc:c4:19:f1:98:69:82: 25:50:45:59:7e:e9:80:93:c9:28:f6:ca:25:00:10: ce:94:00:2b:b3:60:d3:70:9d:09:7c:b4:b6:87:c3: 66:bc:10:89:ab:db:8e:c8:26:da:c9:f1:9a:6c:21: fb:7d:32:1e:36:33:19:b6:f7:2a:5f:5b:03:69:bd: 43:96:d4:a2:b2:35:a7:2a:df:e9:5a:2c:04:e0:a9: c4:10:2a:1e:75:7d:ea:b3:27:18:39:70:3a:6f:84: 27:ff:91:b9:23:ff:4d:2c:34:6a:27:15:0a:03:cf: ca:60:51:aa:41:57:e6:2a:eb:a6:11:51:81:50:c0: 18:20:2b:6e:db:39:f9:c6:ab:e7:54:54:cb:66:8d: 15:31:e5:6b:96:e3:32:26:12:cd:94:52:17:81:e4: f3:89:5e:db:4d:5a:11:a6:5b:95:6f:e8:50:78:4d: fb:66:46:78:11:d4:88:b2:3b:50:01:13:7b:0e:86: 4f:73:74:d5:39:dd:8b:d7:f5:72:cc:5c:63:91:91: 7b:e9:f7:1d:6b:11:a1:73:c0:d3:4e:a1:7a:83:01: 5d:4f:a0:5d:5d:1d:f5:aa:e0:6d:ec:57:c6:c1:4b: 89:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F4:E7:7C:28:9F:CF:7B:F6:36:CE:C9:6B:31:A2:A6:28:E6:45:89 X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f5:eb:42:4a:d3:a1:de:e2:58:5b:f5:b0:90:1b:f2:fd:ae: 3a:f6:6c:58:b4:62:c5:1f:c8:39:34:d0:19:0d:c4:8b:fe:2c: a1:4c:8e:7f:33:e6:3f:0e:7c:ef:10:36:08:bd:36:7b:08:4f: 49:4c:38:61:de:d9:34:45:e2:fe:d3:10:2f:2a:18:11:9e:a4: ce:4e:b0:7e:84:61:c9:34:13:78:d4:57:60:99:97:81:fd:e5: 13:0f:63:78:c6:1f:af:d3:cf:ed:1b:73:1b:de:6b:ae:18:2e: 28:03:ea:5a:18:c7:6d:76:24:47:ca:d0:78:29:19:dd:44:a5: c2:49:69:95:87:64:c9:d0:7b:21:af:ea:4f:9c:18:29:db:8f: 08:8c:5a:e1:c8:9c:be:f4:6d:7a:81:3a:32:61:48:3a:2a:be: f5:a0:46:6f:85:cc:5b:d7:02:a5:4a:bf:87:88:5f:61:f4:54: 4d:a6:a4:61:01:05:85:08:8a:42:8a:58:04:b7:2e:74:1f:fd: 01:54:dc:52:f4:aa:76:3d:84:a2:c7:45:39:a0:9a:82:71:64: 8e:eb:ac:e6:03:f3:4a:cf:01:48:51:35:6d:dc:8b:43:32:f5: 78:46:e5:5f:f8:94:b6:b5:e0:f2:4c:65:b1:d1:ac:b3:98:fc: d9:ee:23:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNTA1MzEwNjMyMDhaFw0yNTA2MDcwNjMyMDhaMBgxFjAUBgNV BAMTDTY4M2FhMjY4LWE1NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3jImuD5QkX4B+wAw7D65E49lL8VlH/MQZ8ZhpgiVQRVl+6YCTySj2yiUAEM6U ACuzYNNwnQl8tLaHw2a8EImr247IJtrJ8ZpsIft9Mh42Mxm29ypfWwNpvUOW1KKy Nacq3+laLATgqcQQKh51feqzJxg5cDpvhCf/kbkj/00sNGonFQoDz8pgUapBV+Yq 66YRUYFQwBggK27bOfnGq+dUVMtmjRUx5WuW4zImEs2UUheB5POJXttNWhGmW5Vv 6FB4TftmRngR1IiyO1ABE3sOhk9zdNU53YvX9XLMXGORkXvp9x1rEaFzwNNOoXqD AV1PoF1dHfWq4G3sV8bBS4n9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPPTnfCif z3v2Ns7JazGipijmRYkwHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB OTQxLzlCM0QyNTQ4QTBBMDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQ TmxxZ1FTNVRlRDZSMUlSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ3160JK06He4lhb9bCQG/L9rjr2bFi0YsUfyDk00BkNxIv+LKFMjn8z 5j8OfO8QNgi9NnsIT0lMOGHe2TRF4v7TEC8qGBGepM5OsH6EYck0E3jUV2CZl4H9 5RMPY3jGH6/Tz+0bcxvea64YLigD6loYx212JEfK0HgpGd1EpcJJaZWHZMnQeyGv 6k+cGCnbjwiMWuHInL70bXqBOjJhSDoqvvWgRm+FzFvXAqVKv4eIX2H0VE2mpGEB BYUIikKKWAS3LnQf/QFU3FL0qnY9hKLHRTmgmoJxZI7rrOYD80rPAUhRNW3ci0My 9XhG5V/4lLa14PJMZbHRrLOY/NnuI4I= -----END CERTIFICATE-----Generated at Sat May 31 17:42:41 2025 by rpki-client