$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: oEbKmmnwXpF7mTRZbnurxiHwxLdJjWQhDucoZYbnLYs= Subject key identifier: 2C:BA:A8:EA:E2:F5:4D:AD:EF:AA:D8:6F:3A:5A:4D:A2:AA:DB:6D:7F Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 0904 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 08EA Signing time: Mon 02 Jun 2025 20:34:48 +0000 Manifest this update: Mon 02 Jun 2025 20:34:48 +0000 Manifest next update: Mon 09 Jun 2025 20:34:48 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: JFaLDbgX8DJ0IdPcx130kGFOhwRiJ9MqJE6+Z2WE+a0=) 2: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: Del+9YrkACA6yrhYJeSPVVuh01l/16gJ82iy69S9BRo=) 3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: PnqDvM4vjQdsVy80UhznbWoKhp/dlqh33E+GG+RU+dk=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: qKXv165pzdK/WBxXfxqKy/V+953i+G1rFbe37yvanHk=) 5: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: Ci305f1V47fRIRqmqjLy+EIi8DLnLoGCGpVVZ48v10E=) 6: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: lvX9qWs0U9FJpaiKhdFBFudNcs3mWD37dbOmEs33Njk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2308 (0x904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Jun 2 20:34:48 2025 GMT Not After : Jun 9 20:34:48 2025 GMT Subject: CN=683e0ae8-84ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f9:b2:20:e9:7e:9e:a7:bd:c0:f3:f1:88:0e: 97:7f:06:bf:42:98:26:5c:27:dd:d9:18:81:d2:31: 09:65:23:23:33:2a:f9:35:2f:3c:08:5a:f7:9c:4c: 76:47:eb:9e:2b:5c:9a:d4:3f:73:c0:60:99:a0:3a: 7d:87:a6:e1:37:03:cd:d5:68:9d:d0:37:7a:73:7b: ab:2b:73:36:8a:a3:40:17:17:aa:a1:0f:b3:28:bf: 61:c6:b2:97:09:6e:6c:fe:4f:15:44:71:ba:88:21: 4f:d0:fd:6b:ce:84:24:b5:ec:58:62:3d:58:49:a3: e9:72:f8:c3:6d:31:48:7d:93:37:e6:c8:bd:7b:99: aa:be:20:63:dd:99:65:e4:67:2d:cd:09:97:2d:2f: 6d:f0:7c:2f:ba:43:fe:ec:f8:84:24:69:a1:cc:93: 60:e3:2c:8a:0c:3e:e8:a9:da:15:d5:2b:be:59:07: c5:cb:6b:7c:52:b5:0d:e7:a7:a5:75:bd:0e:79:51: 7a:07:87:8b:3b:45:28:3c:d0:c8:a2:f9:58:54:0a: ba:4d:e1:d2:6b:f3:78:a4:1a:68:90:dc:b1:d9:d2: cf:9d:e4:0b:55:b6:3d:13:95:68:12:a3:d7:b4:8b: 44:8d:48:ed:f5:b8:76:bb:8e:76:c6:0d:14:d1:79: e5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BA:A8:EA:E2:F5:4D:AD:EF:AA:D8:6F:3A:5A:4D:A2:AA:DB:6D:7F X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f8:41:cd:0d:61:d0:ef:a9:24:f4:09:b0:03:75:93:c1:4e: 00:4a:8e:4c:ff:10:69:52:4a:40:87:d3:24:5f:f5:09:6d:2b: cd:bb:2f:c8:2b:fd:32:29:14:22:54:f2:f6:70:ef:2c:5e:94: 54:91:92:ae:d9:5c:21:5c:77:6b:40:22:65:9e:3f:0b:55:15: 74:05:0a:66:48:05:55:1c:87:04:40:60:56:8b:8b:0c:b9:38: 1a:7b:8c:00:9b:d3:dc:c5:e8:1b:77:36:61:32:21:fe:64:3f: 26:77:4d:af:ef:9a:8a:11:5b:34:6e:5d:a0:96:36:8c:25:b0: d5:1d:f4:d4:7e:e9:ca:3d:ce:88:df:62:72:aa:90:60:38:8f: 9d:37:41:c7:f6:46:9b:ec:61:f7:f6:af:5b:39:a1:f4:64:da: b0:03:3b:22:32:39:2c:c8:7d:1d:54:53:47:32:77:24:b8:aa: bf:42:db:e4:0d:65:64:43:75:98:60:1e:f4:31:d0:12:d3:20: ad:eb:45:70:e2:1d:99:f0:3e:20:05:5e:e6:e1:68:1f:c1:2a: 63:33:03:6d:56:dc:92:e2:67:de:db:ea:7e:f2:19:04:9d:ff: ea:96:64:f9:a3:34:5d:69:07:ab:2c:1f:d9:31:a1:06:ff:a3: d5:38:1d:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwNjAyMjAzNDQ4WhcNMjUwNjA5MjAzNDQ4WjAYMRYwFAYD VQQDEw02ODNlMGFlOC04NGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPmyIOl+nqe9wPPxiA6Xfwa/QpgmXCfd2RiB0jEJZSMjMyr5NS88CFr3nEx2 R+ueK1ya1D9zwGCZoDp9h6bhNwPN1Wid0Dd6c3urK3M2iqNAFxeqoQ+zKL9hxrKX CW5s/k8VRHG6iCFP0P1rzoQktexYYj1YSaPpcvjDbTFIfZM35si9e5mqviBj3Zll 5GctzQmXLS9t8HwvukP+7PiEJGmhzJNg4yyKDD7oqdoV1Su+WQfFy2t8UrUN56el db0OeVF6B4eLO0UoPNDIovlYVAq6TeHSa/N4pBpokNyx2dLPneQLVbY9E5VoEqPX tItEjUjt9bh2u452xg0U0XnlCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy6qOri 9U2t76rYbzpaTaKq221/MB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8+EHNDWHQ76kk9AmwA3WTwU4ASo5M/xBpUkpAh9MkX/UJbSvNuy/I K/0yKRQiVPL2cO8sXpRUkZKu2VwhXHdrQCJlnj8LVRV0BQpmSAVVHIcEQGBWi4sM uTgae4wAm9PcxegbdzZhMiH+ZD8md02v75qKEVs0bl2gljaMJbDVHfTUfunKPc6I 32JyqpBgOI+dN0HH9kab7GH39q9bOaH0ZNqwAzsiMjksyH0dVFNHMnckuKq/Qtvk DWVkQ3WYYB70MdAS0yCt60Vw4h2Z8D4gBV7m4WgfwSpjMwNtVtyS4mfe2+p+8hkE nf/qlmT5ozRdaQerLB/ZMaEG/6PVOB2J -----END CERTIFICATE-----Generated at Tue Jun 3 23:54:14 2025 by rpki-client