$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: kGyE0+FoLqRIJVtegBJjJgkGZ9fQ8yBFgKAQ4Y+y3jY= Subject key identifier: 84:0A:2E:66:51:86:E5:B9:4D:F1:2C:6A:6D:64:CE:A7:97:6A:0B:C7 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 07BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 07B7 Signing time: Wed 04 Jun 2025 21:04:30 +0000 Manifest this update: Wed 04 Jun 2025 21:04:30 +0000 Manifest next update: Wed 11 Jun 2025 21:04:30 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: GAw1I5XLuB7/EawQUXP0F1Lzrf/SBXF42zsJhTJuy2A=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 21:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Jun 4 21:04:30 2025 GMT Not After : Jun 11 21:04:30 2025 GMT Subject: CN=6840b4de-e6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d8:de:33:f6:92:17:bc:97:d5:d6:fb:6b:55: 6c:e2:12:85:5a:40:a4:57:18:c6:b1:9f:a2:2e:70: 9c:12:91:e0:cb:c9:1d:43:69:cd:19:13:7c:2e:56: 66:81:3a:0d:4a:4f:87:fb:c0:8b:c7:91:19:86:d8: 66:2c:a4:ea:fb:f8:bb:ae:40:a1:17:33:0f:28:77: 7a:8a:1d:b3:d4:5c:4c:7a:fc:b0:0a:28:8f:87:e7: 96:87:a0:02:9b:40:2b:df:25:36:2c:03:d7:d8:0c: 41:ac:e8:dd:6a:31:4b:f9:aa:c3:1c:df:e7:17:5f: 2f:26:fe:b0:36:1c:48:97:bc:42:58:47:c8:67:6d: 16:84:d5:58:2e:be:bb:c9:12:29:59:b0:54:7c:fb: 3e:ce:57:dc:aa:c6:54:1f:2b:8e:f7:27:d2:d5:5d: da:71:fa:65:6d:3f:80:4d:a3:41:5d:de:52:98:10: 04:8f:a8:06:b2:aa:83:da:02:82:c3:9a:9c:73:e9: 1f:1d:e8:b7:92:42:bd:7b:68:36:03:20:77:4e:55: 8c:10:7f:c3:d6:b3:46:2e:23:91:4e:38:50:8b:4a: d2:0c:5a:e3:7d:f3:25:23:c2:ea:41:b4:ca:d4:4d: 09:35:06:a2:8d:8b:62:e0:e0:7b:6c:8b:95:9f:d9: 2a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0A:2E:66:51:86:E5:B9:4D:F1:2C:6A:6D:64:CE:A7:97:6A:0B:C7 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f2:46:05:23:48:85:73:08:42:1c:3a:b2:eb:60:11:64:f0: c8:fd:35:f5:5c:75:b5:8b:d0:d8:6a:5c:9d:4c:c9:2f:83:5f: f9:62:67:b2:90:8f:68:77:4e:81:a1:8e:b2:e0:81:7e:ed:ce: 49:fc:e3:7f:f9:9a:7a:2d:da:1c:da:1d:a7:87:8d:7f:5f:fb: 2c:b9:8f:c6:c7:2a:4a:6f:5b:e4:61:99:a4:81:d8:56:38:48: 64:94:0e:af:90:58:91:15:3f:18:97:bf:4c:ca:d5:1c:de:c5: 17:14:f8:0c:07:85:a9:85:7c:75:9b:07:44:39:c6:a9:12:06: c2:52:fc:fa:3b:38:37:43:c4:87:ed:a3:fa:d4:0f:f7:8f:6f: 4c:56:29:a6:cd:d3:a7:ae:d8:fc:ed:5b:74:ea:6f:52:13:55: 01:ad:dc:c4:e0:e6:f8:f5:47:7a:18:59:b6:f1:39:fa:6d:6a: df:67:03:64:49:67:19:cb:b4:54:7b:a8:a3:3b:ed:9b:55:ad: c1:6f:35:2c:a9:6c:59:c8:80:82:74:22:69:fc:0c:2e:4e:f7: a4:27:65:34:f2:54:46:b3:68:36:0d:20:4a:9a:b9:e0:44:de: 8d:ae:00:02:7e:fd:1e:33:1b:c0:6a:66:75:98:bb:ad:80:de: 6c:de:42:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUwNjA0MjEwNDMwWhcNMjUwNjExMjEwNDMwWjAYMRYwFAYD VQQDEw02ODQwYjRkZS1lNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtjeM/aSF7yX1db7a1Vs4hKFWkCkVxjGsZ+iLnCcEpHgy8kdQ2nNGRN8LlZm gToNSk+H+8CLx5EZhthmLKTq+/i7rkChFzMPKHd6ih2z1FxMevywCiiPh+eWh6AC m0Ar3yU2LAPX2AxBrOjdajFL+arDHN/nF18vJv6wNhxIl7xCWEfIZ20WhNVYLr67 yRIpWbBUfPs+zlfcqsZUHyuO9yfS1V3acfplbT+ATaNBXd5SmBAEj6gGsqqD2gKC w5qcc+kfHei3kkK9e2g2AyB3TlWMEH/D1rNGLiORTjhQi0rSDFrjffMlI8LqQbTK 1E0JNQaijYti4OB7bIuVn9kqQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQKLmZR huW5TfEsam1kzqeXagvHMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt8kYFI0iFcwhCHDqy62ARZPDI/TX1XHW1i9DYalydTMkvg1/5Ymey kI9od06BoY6y4IF+7c5J/ON/+Zp6Ldoc2h2nh41/X/ssuY/GxypKb1vkYZmkgdhW OEhklA6vkFiRFT8Yl79MytUc3sUXFPgMB4WphXx1mwdEOcapEgbCUvz6Ozg3Q8SH 7aP61A/3j29MVimmzdOnrtj87Vt06m9SE1UBrdzE4Ob49Ud6GFm28Tn6bWrfZwNk SWcZy7RUe6ijO+2bVa3BbzUsqWxZyICCdCJp/AwuTvekJ2U08lRGs2g2DSBKmrng RN6NrgACfv0eMxvAamZ1mLutgN5s3kLt -----END CERTIFICATE-----Generated at Fri Jun 6 16:54:23 2025 by rpki-client