$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft File: -XyNrMJ-n8zTOuuFNQsmpIFfELc.mft (raw, json) Hash identifier: FCiAn5LXTVBQFJ/Ud4fZfD62GuLMnsKNnDRoPAEt+ck= Subject key identifier: 28:02:F0:8D:12:F2:2A:CD:3E:F7:CB:9B:E5:41:4A:7E:71:B0:80:0D Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 235E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft Manifest number: 2344 Signing time: Sat 14 Jun 2025 15:48:42 +0000 Manifest this update: Sat 14 Jun 2025 15:48:42 +0000 Manifest next update: Sat 21 Jun 2025 15:48:42 +0000 Files and hashes: 1: -XyNrMJ-n8zTOuuFNQsmpIFfELc.crl (hash: jq/rMhx7PqGNyghcoAPwHSlU75roTVLY+E2Iyr1d4Qk=) 2: A768E6B6FB0811ED860A5143C4F9AE02.roa (hash: SVFtlSzgsbl94LKJE/MqOpvXoyEaSOVfShQjoppkD5M=) 3: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (hash: SmF6p3k95KsM+SMEI2F1sl2qA3ioWO3N9renwiZgrBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9054 (0x235e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Jun 14 15:48:42 2025 GMT Not After : Jun 21 15:48:42 2025 GMT Subject: CN=684d99da-ce59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cb:36:fa:86:22:b5:f1:22:63:45:63:dc:09: 82:d9:95:b5:1e:e8:90:90:3d:5b:b8:95:61:e0:4c: 30:61:4a:81:fd:ea:ac:4f:68:0a:22:0f:79:ae:62: 3a:26:09:3c:bb:75:65:50:c0:69:d9:3b:eb:96:01: ca:21:d5:5d:fc:28:9d:fe:df:28:81:57:7d:1f:b2: 43:dd:ff:a9:34:a0:2e:d0:eb:70:24:3e:63:d9:80: 5b:df:6f:18:2b:cc:b1:f3:39:9b:8b:96:49:1d:18: b5:b6:99:07:f3:10:1b:fb:b8:27:01:6b:b0:31:ee: 36:e7:8c:6f:b4:5e:9e:03:35:84:d1:64:b3:79:b9: b3:2d:78:62:5f:f3:f6:08:dd:d4:38:42:32:a3:0e: ff:e3:85:65:d1:ef:2c:80:5e:08:6c:33:9e:ad:5a: b4:31:3b:42:0b:e3:cb:40:bd:19:4f:46:b8:c9:ee: d4:17:de:5d:4b:3a:af:e0:46:31:c0:77:d3:1b:66: 48:13:f3:91:59:94:64:5c:c3:d4:ad:0e:b0:36:34: d4:f0:b5:24:1f:b6:88:1c:28:14:19:f1:90:49:95: 39:73:2e:13:7f:5b:62:76:46:8f:52:45:91:07:97: 44:42:24:93:43:d1:5f:89:44:31:1e:7c:f2:23:eb: 60:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:02:F0:8D:12:F2:2A:CD:3E:F7:CB:9B:E5:41:4A:7E:71:B0:80:0D X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:22:15:da:5a:af:0b:90:25:06:61:bf:cf:8f:e3:8c:18:a0: 12:6d:73:5b:a3:c4:a1:9b:be:65:0d:87:73:c6:51:4a:01:3f: e3:47:a4:c7:cf:51:75:b8:d3:05:b3:66:b7:f4:2e:37:c3:3c: bd:44:32:69:57:bf:b0:e9:10:96:52:85:6d:64:43:cf:ff:fa: 38:91:8c:f2:71:40:92:bb:0b:67:e9:9e:81:d9:bb:c2:08:ad: cb:88:33:8b:dc:54:23:23:b5:b0:26:65:f7:9c:2c:ab:ff:4e: 9d:34:67:1d:05:74:75:11:37:3c:08:dc:83:31:64:cf:4d:98: 5e:40:a4:a8:95:91:ea:c8:4b:db:15:44:7b:8b:93:76:e1:d6: 44:9a:9a:66:2d:62:90:ba:69:c5:b4:2b:39:ea:06:02:e1:03: 58:c4:e1:f3:8d:8f:76:92:fc:94:c6:05:78:9f:be:a6:23:77: cb:4c:b7:63:2a:6c:05:9f:28:04:5d:04:e9:1c:55:c0:76:87: 0c:fa:87:48:b9:06:08:d2:11:67:bd:47:ba:fb:a0:9c:8b:3b: 40:b4:ea:9d:c6:63:7a:28:b5:2d:0c:ae:a0:20:cb:4a:89:d8: f3:9a:8b:7c:c9:d0:ee:e2:43:96:89:79:22:47:fe:19:0f:24: 23:1c:e9:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjUwNjE0MTU0ODQyWhcNMjUwNjIxMTU0ODQyWjAYMRYwFAYD VQQDEw02ODRkOTlkYS1jZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8s2+oYitfEiY0Vj3AmC2ZW1HuiQkD1buJVh4EwwYUqB/eqsT2gKIg95rmI6 Jgk8u3VlUMBp2TvrlgHKIdVd/Cid/t8ogVd9H7JD3f+pNKAu0OtwJD5j2YBb328Y K8yx8zmbi5ZJHRi1tpkH8xAb+7gnAWuwMe4254xvtF6eAzWE0WSzebmzLXhiX/P2 CN3UOEIyow7/44Vl0e8sgF4IbDOerVq0MTtCC+PLQL0ZT0a4ye7UF95dSzqv4EYx wHfTG2ZIE/ORWZRkXMPUrQ6wNjTU8LUkH7aIHCgUGfGQSZU5cy4Tf1tidkaPUkWR B5dEQiSTQ9FfiUQxHnzyI+tgdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgC8I0S 8irNPvfLm+VBSn5xsIANMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkJEOC9DNTgzRDIzMjg3QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44 elRPdXVGTlFzbXBJRmZFTGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzIhXaWq8LkCUGYb/Pj+OMGKASbXNbo8Shm75lDYdzxlFKAT/jR6TH z1F1uNMFs2a39C43wzy9RDJpV7+w6RCWUoVtZEPP//o4kYzycUCSuwtn6Z6B2bvC CK3LiDOL3FQjI7WwJmX3nCyr/06dNGcdBXR1ETc8CNyDMWTPTZheQKSolZHqyEvb FUR7i5N24dZEmppmLWKQumnFtCs56gYC4QNYxOHzjY92kvyUxgV4n76mI3fLTLdj KmwFnygEXQTpHFXAdocM+odIuQYI0hFnvUe6+6CciztAtOqdxmN6KLUtDK6gIMtK idjzmot8ydDu4kOWiXkiR/4ZDyQjHOkN -----END CERTIFICATE-----Generated at Sun Jun 15 08:35:21 2025 by rpki-client