$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: 9UhYrKoRLQcHkDH7Wboa0XozM+amr7CNG3AYXZHJPJo= Subject key identifier: 67:72:D1:EF:70:EF:E6:68:CB:7E:6B:F4:68:3D:6A:25:01:B0:A7:A4 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 097C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 096D Signing time: Tue 10 Jun 2025 20:04:30 +0000 Manifest this update: Tue 10 Jun 2025 20:04:29 +0000 Manifest next update: Tue 17 Jun 2025 20:04:29 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: qgwGnHqxFjXyfZerFUvVIwN2ElNBUt9RmP5aoCYBy/U=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 20:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2428 (0x97c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Jun 10 20:04:29 2025 GMT Not After : Jun 17 20:04:29 2025 GMT Subject: CN=68488fcd-ab7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:15:18:c8:84:f6:92:57:f9:1f:1e:10:90:0a: 4e:f7:79:6e:bb:d4:1e:3c:f1:1c:26:0f:3a:01:f3: 24:54:3e:13:e6:04:2d:a7:7c:1b:d7:7f:dc:50:a2: 4f:0a:c9:f7:dd:27:33:04:9a:cf:08:bf:bd:36:53: 54:a4:e3:3f:f9:51:43:24:99:8c:6e:f5:14:f2:54: c4:86:fe:99:88:11:24:29:7a:b9:74:d2:7f:f5:7e: 41:ba:f3:07:b0:c9:76:ab:c2:ac:58:83:f8:cc:05: d6:fa:c5:25:78:57:3c:68:db:2b:ef:70:ec:ab:97: 4e:12:3b:b7:3c:08:30:ed:e4:dc:a4:64:85:90:c3: 37:f9:bd:5a:96:9b:2c:31:6d:90:64:ae:5f:4b:38: 9b:54:de:ea:5b:0c:e5:2c:c2:51:1e:e9:11:b7:7d: e9:d5:50:09:8f:35:ad:aa:e0:a4:32:0e:f8:12:01: 5d:de:68:48:47:af:74:ff:ca:b2:3c:c1:2e:8e:c1: 63:49:97:10:7b:87:62:58:bf:e0:57:ac:50:b4:7b: 92:84:dc:05:04:d7:76:5a:fb:4b:65:d2:a8:ac:48: d3:89:d3:a7:19:1d:cf:2c:b1:45:7f:cc:31:07:a0: b3:42:1d:88:20:30:69:e6:64:b0:e7:d6:8f:09:c1: af:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:72:D1:EF:70:EF:E6:68:CB:7E:6B:F4:68:3D:6A:25:01:B0:A7:A4 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:73:79:fc:51:c1:d5:8f:e6:0e:fb:89:26:e1:48:98:93:b9: 2e:80:6c:19:00:93:60:ce:a9:a3:47:38:49:64:3f:84:fe:cb: 8e:5a:49:40:7b:1a:6e:ff:92:41:13:80:b1:04:f2:ea:e3:86: 15:58:d7:d4:94:63:9b:c1:e2:57:0f:7a:81:ea:aa:66:cc:7e: 48:3c:0f:45:6a:0d:89:9c:d1:ff:69:8e:b1:9e:ef:50:70:b9: 16:45:d9:c9:92:de:8d:5e:a3:11:18:65:cc:c6:53:64:00:1e: 64:5f:fb:81:d3:36:e0:5b:35:16:7f:65:40:0f:58:d0:62:a6: f6:b6:28:88:a4:aa:7a:1a:d5:04:97:dd:cc:43:f8:bd:87:de: d7:cd:02:12:ea:7b:c3:d9:e0:71:76:90:b6:85:5a:a9:e4:c9: 23:fc:e3:04:ef:18:78:e6:cd:18:d3:4c:b1:2a:eb:00:a0:37: 19:b2:21:0b:6f:4d:27:97:58:31:88:ec:41:17:1d:82:28:73: a8:dc:3a:85:57:3c:40:df:98:d5:e3:c2:57:40:36:2d:1d:e6: 04:0c:a1:8c:44:ad:61:68:7e:07:9b:e5:2c:df:dd:10:a9:04: 66:67:77:9c:02:c1:ab:f1:15:34:0c:fa:0e:db:3b:e1:f7:f0: c7:c0:b3:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUwNjEwMjAwNDI5WhcNMjUwNjE3MjAwNDI5WjAYMRYwFAYD VQQDEw02ODQ4OGZjZC1hYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxUYyIT2klf5Hx4QkApO93luu9QePPEcJg86AfMkVD4T5gQtp3wb13/cUKJP Csn33SczBJrPCL+9NlNUpOM/+VFDJJmMbvUU8lTEhv6ZiBEkKXq5dNJ/9X5BuvMH sMl2q8KsWIP4zAXW+sUleFc8aNsr73Dsq5dOEju3PAgw7eTcpGSFkMM3+b1alpss MW2QZK5fSzibVN7qWwzlLMJRHukRt33p1VAJjzWtquCkMg74EgFd3mhIR690/8qy PMEujsFjSZcQe4diWL/gV6xQtHuShNwFBNd2WvtLZdKorEjTidOnGR3PLLFFf8wx B6CzQh2IIDBp5mSw59aPCcGvfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdy0e9w 7+Zoy35r9Gg9aiUBsKekMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8c3n8UcHVj+YO+4km4UiYk7kugGwZAJNgzqmjRzhJZD+E/suOWklA expu/5JBE4CxBPLq44YVWNfUlGObweJXD3qB6qpmzH5IPA9Fag2JnNH/aY6xnu9Q cLkWRdnJkt6NXqMRGGXMxlNkAB5kX/uB0zbgWzUWf2VAD1jQYqb2tiiIpKp6GtUE l93MQ/i9h97XzQIS6nvD2eBxdpC2hVqp5Mkj/OME7xh45s0Y00yxKusAoDcZsiEL b00nl1gxiOxBFx2CKHOo3DqFVzxA35jV48JXQDYtHeYEDKGMRK1haH4Hm+Us390Q qQRmZ3ecAsGr8RU0DPoO2zvh9/DHwLNl -----END CERTIFICATE-----Generated at Wed Jun 11 08:12:14 2025 by rpki-client