$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: dqfNWAtm2MnDycmYcOGJwrMYf++NUX7qzz5yIMgCpKk= Subject key identifier: 03:19:BE:BF:FB:38:FE:4B:88:8D:EB:0B:0E:29:F0:2E:AD:F0:63:C3 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 09DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 09D2 Signing time: Wed 04 Jun 2025 19:53:01 +0000 Manifest this update: Wed 04 Jun 2025 19:53:00 +0000 Manifest next update: Wed 11 Jun 2025 19:53:00 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: HqlyR+sGahjnEL4ajZ/7K2U5IyERhOvdQKjcFQej0Ew=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 19:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2527 (0x9df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Jun 4 19:53:00 2025 GMT Not After : Jun 11 19:53:00 2025 GMT Subject: CN=6840a41c-975f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f3:61:11:b6:62:10:fb:75:08:e5:4f:2c:ef: f1:fd:cc:5b:ea:d4:44:d2:b0:64:fb:4e:8d:c1:42: 05:cc:11:e4:7c:3c:e0:4e:68:44:0e:c4:0d:00:a6: f8:fa:df:4f:34:fc:2a:55:88:4a:84:d9:74:3f:b5: 1c:8e:66:6f:f6:a2:62:00:f4:ba:72:77:76:95:8d: 43:b3:1c:a6:74:91:36:9b:d1:50:2f:76:3d:b6:4d: 4b:20:8d:7a:b2:5b:a9:3a:7d:a0:d1:16:1b:0f:53: 31:9e:61:06:df:4c:0a:cc:f3:05:0d:fd:7b:b1:e0: 0c:2d:74:32:56:da:76:b1:30:41:7b:12:59:7d:e9: 8f:51:77:c2:a8:9d:a7:09:c2:41:26:ed:c8:3c:c1: 64:e6:21:0f:6b:da:d1:48:5a:51:8d:1e:dc:9a:0c: 03:02:f5:1a:c2:28:d5:bb:b8:30:1a:5d:81:76:22: 23:16:df:a5:86:a1:cf:6b:21:cc:74:93:61:fd:d1: bb:f5:81:0b:55:1a:7b:0b:64:56:c0:ae:79:5d:90: 3c:a3:1f:2f:67:46:04:a0:62:49:24:6f:77:12:bd: 2f:cf:64:46:e3:4b:22:2d:b5:94:3a:15:1f:82:fc: 68:71:1f:8a:d7:25:d7:67:8a:c0:4e:3c:6f:70:29: 35:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:19:BE:BF:FB:38:FE:4B:88:8D:EB:0B:0E:29:F0:2E:AD:F0:63:C3 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f2:c7:20:6c:c9:b7:c6:30:85:ce:a5:a4:bd:ba:b9:aa:26: 62:4c:0c:ec:d0:01:46:9d:56:88:eb:e7:e2:65:af:0d:c1:9d: d2:4d:31:dc:cf:08:50:9b:96:f7:42:24:b6:f2:c1:d6:71:88: 24:b0:4b:5b:0b:45:21:e2:85:33:39:3e:bb:b1:44:64:81:9b: 91:60:91:61:1e:15:67:31:2b:e3:e5:f3:1e:cf:04:75:ca:92: 47:a5:69:01:65:90:5d:61:04:a0:80:16:e5:96:35:16:38:70: b3:37:3f:f1:21:9b:b8:7c:7d:0e:2a:0c:03:5e:0d:13:98:b5: e5:26:46:f1:15:ff:8d:8c:f2:8a:75:37:08:44:12:dc:1f:5c: d9:9f:b5:62:24:bd:96:ce:2d:9c:d7:b5:b1:8f:f1:1b:6d:17: d8:59:b4:ec:0b:ab:54:5b:b9:2a:ff:e1:4c:0e:82:af:2e:78: 85:bc:7f:56:0f:b7:a3:82:4a:2a:5f:46:83:15:15:a4:19:dd: 90:c8:55:f8:de:fe:db:cb:e6:e9:d8:58:08:29:90:13:e9:08: 43:20:a7:f6:2f:66:29:60:3f:1c:58:ec:82:a9:3b:b3:bd:f2: e1:c6:72:3d:ac:e3:13:00:44:32:4a:61:8a:d9:4f:1c:32:59: 63:14:6d:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUwNjA0MTk1MzAwWhcNMjUwNjExMTk1MzAwWjAYMRYwFAYD VQQDEw02ODQwYTQxYy05NzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfNhEbZiEPt1COVPLO/x/cxb6tRE0rBk+06NwUIFzBHkfDzgTmhEDsQNAKb4 +t9PNPwqVYhKhNl0P7UcjmZv9qJiAPS6cnd2lY1DsxymdJE2m9FQL3Y9tk1LII16 slupOn2g0RYbD1MxnmEG30wKzPMFDf17seAMLXQyVtp2sTBBexJZfemPUXfCqJ2n CcJBJu3IPMFk5iEPa9rRSFpRjR7cmgwDAvUawijVu7gwGl2BdiIjFt+lhqHPayHM dJNh/dG79YELVRp7C2RWwK55XZA8ox8vZ0YEoGJJJG93Er0vz2RG40siLbWUOhUf gvxocR+K1yXXZ4rATjxvcCk1qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMZvr/7 OP5LiI3rCw4p8C6t8GPDMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv8scgbMm3xjCFzqWkvbq5qiZiTAzs0AFGnVaI6+fiZa8NwZ3STTHc zwhQm5b3QiS28sHWcYgksEtbC0Uh4oUzOT67sURkgZuRYJFhHhVnMSvj5fMezwR1 ypJHpWkBZZBdYQSggBblljUWOHCzNz/xIZu4fH0OKgwDXg0TmLXlJkbxFf+NjPKK dTcIRBLcH1zZn7ViJL2Wzi2c17Wxj/EbbRfYWbTsC6tUW7kq/+FMDoKvLniFvH9W D7ejgkoqX0aDFRWkGd2QyFX43v7by+bp2FgIKZAT6QhDIKf2L2YpYD8cWOyCqTuz vfLhxnI9rOMTAEQySmGK2U8cMlljFG3x -----END CERTIFICATE-----Generated at Thu Jun 5 19:54:10 2025 by rpki-client