$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: C5FCMhpqFBjK43mbH+NUyNKyWqlVwX0XiEYWMippGt0= Subject key identifier: 90:11:D8:74:B3:77:94:F1:21:00:7A:13:E9:89:BC:75:3E:D9:C1:AE Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 097B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 096C Signing time: Sun 08 Jun 2025 19:54:15 +0000 Manifest this update: Sun 08 Jun 2025 19:54:14 +0000 Manifest next update: Sun 15 Jun 2025 19:54:14 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: NzWQ0dSdm26EK4tWhj7DLxQqZfdxCEP6TFBvmBpxrKo=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2427 (0x97b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Jun 8 19:54:14 2025 GMT Not After : Jun 15 19:54:14 2025 GMT Subject: CN=6845ea66-841e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1b:92:fd:24:a0:ab:6a:4f:a7:7a:22:56:e6: 94:5c:43:cf:77:ac:e3:83:b8:66:e1:52:68:c5:81: 32:a9:04:cc:ea:cf:e3:7c:97:09:24:a5:54:b9:00: 39:de:3c:e1:52:83:e9:eb:80:e2:f2:3c:b5:11:0d: 24:b7:ee:38:e7:ad:89:fe:0a:58:4f:d3:24:8a:24: a9:44:1b:95:37:a9:df:76:df:16:ce:68:be:ae:d5: 76:99:dc:ee:99:50:f4:ba:a4:ee:ab:08:7f:42:48: 04:31:61:55:73:46:a4:5f:02:f7:0b:fa:dd:a2:90: e7:05:70:e5:02:8d:96:c2:74:b6:76:01:6f:8b:87: 88:92:1d:0e:e5:27:08:9e:ca:b8:8b:ff:30:9c:64: 81:04:91:07:47:94:63:55:28:73:3e:ed:67:c5:37: 1b:4a:5f:df:5e:09:da:b9:5b:81:62:4c:8b:6d:44: 14:6f:3b:6e:9c:f9:f1:bd:6a:d8:42:27:9d:eb:39: 26:0e:70:a3:7c:49:df:d2:95:40:c4:d1:56:b6:21: 61:05:e1:f2:65:c6:b0:70:e9:ca:03:e9:f4:e4:25: ee:a9:1e:d1:cc:1f:eb:ab:4f:b6:8f:54:53:3a:6a: aa:f9:f4:89:25:67:7c:22:e5:16:1e:4f:1d:85:c9: cb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:11:D8:74:B3:77:94:F1:21:00:7A:13:E9:89:BC:75:3E:D9:C1:AE X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:77:23:de:9c:07:66:2c:f6:95:26:af:ff:bb:e6:9b:7f:9a: c1:b6:42:c1:91:f3:4c:1a:7c:3c:83:14:77:0e:a2:10:9c:cc: 39:fa:24:70:6c:8f:8e:88:8c:5b:1f:d5:39:f7:b3:60:aa:f0: a6:e4:be:0c:3e:f4:9d:81:fb:5d:30:ad:53:25:e6:9f:7b:4b: 8c:e0:02:c2:5d:ff:af:ef:15:5b:c1:d7:c9:12:88:79:e4:3b: 58:6f:ea:da:8f:05:bb:e1:7a:35:2a:66:7d:a4:d7:1f:b3:87: 16:21:af:50:09:a1:a6:48:57:c7:80:a5:c4:09:f0:35:53:df: 99:9b:0b:fe:4e:24:6c:f0:61:3f:03:a0:07:4b:9e:c9:a6:dc: 49:9c:a8:17:11:32:12:d6:42:e2:a9:4c:62:cd:49:3c:2c:50: a9:3d:b4:d1:0d:33:75:9e:9a:0d:b3:06:d2:65:e2:6f:fa:59: aa:6e:66:9b:89:ad:cd:e0:8f:5a:49:eb:b6:42:df:06:32:b1: 05:77:d4:71:4a:0c:f9:85:44:dd:d2:0a:b8:59:62:2b:0d:b1: 3d:26:1d:cd:ba:f3:2b:6b:6a:4f:06:dc:85:06:97:04:c9:43: 0f:a1:df:ed:be:1e:9d:3d:f0:66:00:d8:cc:0e:46:d2:dc:9e: 59:b4:9b:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUwNjA4MTk1NDE0WhcNMjUwNjE1MTk1NDE0WjAYMRYwFAYD VQQDEw02ODQ1ZWE2Ni04NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxuS/SSgq2pPp3oiVuaUXEPPd6zjg7hm4VJoxYEyqQTM6s/jfJcJJKVUuQA5 3jzhUoPp64Di8jy1EQ0kt+44562J/gpYT9MkiiSpRBuVN6nfdt8Wzmi+rtV2mdzu mVD0uqTuqwh/QkgEMWFVc0akXwL3C/rdopDnBXDlAo2WwnS2dgFvi4eIkh0O5ScI nsq4i/8wnGSBBJEHR5RjVShzPu1nxTcbSl/fXgnauVuBYkyLbUQUbztunPnxvWrY Qied6zkmDnCjfEnf0pVAxNFWtiFhBeHyZcawcOnKA+n05CXuqR7RzB/rq0+2j1RT Omqq+fSJJWd8IuUWHk8dhcnLKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAR2HSz d5TxIQB6E+mJvHU+2cGuMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcdyPenAdmLPaVJq//u+abf5rBtkLBkfNMGnw8gxR3DqIQnMw5+iRw bI+OiIxbH9U597NgqvCm5L4MPvSdgftdMK1TJeafe0uM4ALCXf+v7xVbwdfJEoh5 5DtYb+rajwW74Xo1KmZ9pNcfs4cWIa9QCaGmSFfHgKXECfA1U9+Zmwv+TiRs8GE/ A6AHS57JptxJnKgXETIS1kLiqUxizUk8LFCpPbTRDTN1npoNswbSZeJv+lmqbmab ia3N4I9aSeu2Qt8GMrEFd9RxSgz5hUTd0gq4WWIrDbE9Jh3NuvMra2pPBtyFBpcE yUMPod/tvh6dPfBmANjMDkbS3J5ZtJv3 -----END CERTIFICATE-----Generated at Tue Jun 10 06:49:24 2025 by rpki-client