$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: 7p0z/Z4PCPV2Ktkcca9QBj6t86Pz9KnYa/LwvfZ9e/g= Subject key identifier: E7:45:97:C2:D0:BA:00:06:C1:5C:C6:CB:3C:3D:FD:31:5F:5F:14:9F Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 0294 Signing time: Sun 15 Jun 2025 01:16:58 +0000 Manifest this update: Sun 15 Jun 2025 01:16:57 +0000 Manifest next update: Sun 22 Jun 2025 01:16:57 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: NzpaJHFScDYk6B9rlsmjvV1YU+KRQjUASM8whawTV4E=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: EuoLXvibJYzVLshOhBvVYHJccoZUmB/oPyzL/sJ9KVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9, serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: Jun 15 01:16:57 2025 GMT Not After : Jun 22 01:16:57 2025 GMT Subject: CN=684e1f0a-bc4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:b5:e7:f5:ee:70:cf:ec:b3:b5:93:40:8b: 2f:ee:d4:cf:d7:fb:d7:d6:a8:28:08:55:5d:4e:54: 7b:cc:c5:74:6e:7b:9e:48:60:8b:74:60:01:cb:d4: 0a:50:09:1a:7a:b6:bc:56:c0:f8:da:7e:88:4c:86: d7:cf:21:15:45:58:0f:be:a7:73:2f:bd:fd:10:c6: 7f:3b:99:45:6e:c4:26:c9:04:7c:bf:a0:30:bf:68: 68:d2:4b:ba:af:e0:82:6b:0b:9f:24:c4:b3:10:e1: 7a:83:7f:23:e7:bc:e9:0a:b3:c2:41:17:7d:7b:8a: ce:c9:aa:6d:6d:75:aa:43:23:e5:b0:60:2a:0d:cc: d6:30:2d:d7:04:d8:08:eb:41:a6:99:3c:52:b2:31: d0:9b:c9:8f:e2:86:ca:f7:ab:17:06:78:8f:c0:8a: 9c:e2:f9:6b:90:9e:ff:2e:68:8e:1d:30:f6:bc:9b: fb:a8:b0:1f:d2:10:b4:ec:32:c4:d1:ba:ab:a8:7b: 5b:4b:1f:54:c3:79:16:04:f4:3b:49:ac:70:af:0d: 02:40:ab:36:c9:16:50:08:e3:29:6c:4c:bf:5d:57: 8d:6d:4c:62:5d:2f:68:51:7f:cb:ca:12:86:35:8e: 41:2d:3d:db:c0:a0:c9:57:85:9a:29:7e:82:da:db: 1a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:45:97:C2:D0:BA:00:06:C1:5C:C6:CB:3C:3D:FD:31:5F:5F:14:9F X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c0:99:81:e8:32:ae:5b:3b:a5:21:ce:cf:1f:bd:64:45:ff: 9a:e8:6e:34:2d:29:70:49:47:61:56:47:b5:fe:36:f1:86:8e: 6f:01:31:6e:dd:e7:07:4b:ac:7b:98:cf:a0:76:ad:f7:d5:8c: 7a:8a:1e:97:23:32:3e:c7:5d:3e:63:1c:d7:a9:8e:07:8d:df: 2d:54:87:41:c3:16:80:ae:22:2e:ed:9b:fd:e4:ff:78:c6:f7: 0c:32:5a:73:e8:79:34:b8:aa:0e:79:c6:de:d4:3e:49:2f:29: d6:4a:ee:42:37:97:f8:5a:b5:18:b4:70:aa:13:4c:52:6b:d9: 25:a3:cc:be:b2:21:36:38:bc:cf:a7:fe:ff:1b:db:36:50:8b: 97:c5:c8:23:1f:e0:64:53:f2:54:5a:ad:8a:d5:90:a3:cd:2f: 46:4f:29:86:2b:50:ef:ca:e1:be:87:c2:11:4e:9d:62:c1:a5: e0:51:60:17:88:04:ec:c2:58:96:cc:8d:78:c9:fa:72:45:53: 37:bc:1d:fb:c9:63:41:dc:ad:0d:dd:83:f0:2c:6e:56:83:0e: e2:8a:e8:5c:80:6c:17:63:05:c2:cd:08:f2:41:5b:63:56:b4: aa:b1:61:a3:57:9f:b0:2b:5c:82:7e:cc:f3:39:4f:5d:e9:1a: 7b:2c:db:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjUwNjE1MDExNjU3WhcNMjUwNjIyMDExNjU3WjAYMRYwFAYD VQQDEw02ODRlMWYwYS1iYzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunu15/XucM/ss7WTQIsv7tTP1/vX1qgoCFVdTlR7zMV0bnueSGCLdGABy9QK UAkaera8VsD42n6ITIbXzyEVRVgPvqdzL739EMZ/O5lFbsQmyQR8v6Awv2ho0ku6 r+CCawufJMSzEOF6g38j57zpCrPCQRd9e4rOyaptbXWqQyPlsGAqDczWMC3XBNgI 60GmmTxSsjHQm8mP4obK96sXBniPwIqc4vlrkJ7/LmiOHTD2vJv7qLAf0hC07DLE 0bqrqHtbSx9Uw3kWBPQ7Saxwrw0CQKs2yRZQCOMpbEy/XVeNbUxiXS9oUX/LyhKG NY5BLT3bwKDJV4WaKX6C2tsaWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdFl8LQ ugAGwVzGyzw9/TFfXxSfMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHwJmB6DKuWzulIc7PH71kRf+a6G40LSlwSUdhVke1/jbxho5vATFu 3ecHS6x7mM+gdq331Yx6ih6XIzI+x10+YxzXqY4Hjd8tVIdBwxaAriIu7Zv95P94 xvcMMlpz6Hk0uKoOecbe1D5JLynWSu5CN5f4WrUYtHCqE0xSa9klo8y+siE2OLzP p/7/G9s2UIuXxcgjH+BkU/JUWq2K1ZCjzS9GTymGK1DvyuG+h8IRTp1iwaXgUWAX iATswliWzI14yfpyRVM3vB37yWNB3K0N3YPwLG5Wgw7iiuhcgGwXYwXCzQjyQVtj VrSqsWGjV5+wK1yCfszzOU9d6Rp7LNvm -----END CERTIFICATE-----Generated at Sun Jun 15 07:13:27 2025 by rpki-client