$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: 330MXw6q1iKBUdXcR+7t1kT9AE7PpAonXe2b5kakeO4= Subject key identifier: D9:E3:8D:0E:1A:FC:B1:C4:39:ED:51:7E:55:77:2C:49:A3:50:F0:F6 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 013E Signing time: Fri 13 Jun 2025 03:19:14 +0000 Manifest this update: Fri 13 Jun 2025 03:19:13 +0000 Manifest next update: Fri 20 Jun 2025 03:19:13 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: FRujrwT2ArNa0qq35E6nujDuLfc0v1ppa1lhhU/dQu4=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Jun 13 03:19:13 2025 GMT Not After : Jun 20 03:19:13 2025 GMT Subject: CN=684b98b2-9312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:01:85:f5:35:cf:25:82:41:90:da:67:8b:e3: b7:4e:ff:ef:82:1c:ae:c1:1c:04:7c:8a:55:91:45: 13:ac:10:01:82:3d:0a:a8:87:b6:cc:53:6d:d2:6b: 5d:c0:0d:6e:2f:53:7a:a4:89:89:a8:a6:9e:7d:22: 44:a6:e5:41:80:bb:34:bd:60:0d:31:ed:f4:96:a6: 6c:a9:51:40:a9:cf:32:1d:ce:2a:68:ba:02:5e:31: e7:7c:41:52:cd:ad:09:6a:73:f2:84:31:81:3c:05: 1d:c9:7f:01:9c:4b:6b:01:7f:02:18:69:4c:fd:07: 58:c9:e2:b4:a7:68:e3:d0:e0:9e:ac:f5:ae:fc:a8: 2b:15:59:f5:76:b7:c7:fd:1f:6c:e8:bd:60:02:10: 4e:be:be:54:c6:12:28:38:a4:fc:5c:41:17:86:07: 35:84:1d:a4:c7:f1:0d:42:22:63:85:c1:c0:88:a9: e7:7f:e0:ac:27:18:a0:b4:b8:6c:6d:a1:56:fa:03: c2:24:bc:75:69:64:bf:83:90:8e:30:a2:82:df:8c: 22:22:e3:a6:49:57:02:e6:0e:52:03:84:59:75:f6: 66:d4:4d:d8:2b:d4:89:64:47:01:1b:01:d3:7c:fa: 56:bb:2a:44:85:49:43:87:bf:7d:d7:cd:c1:92:8b: 33:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E3:8D:0E:1A:FC:B1:C4:39:ED:51:7E:55:77:2C:49:A3:50:F0:F6 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:14:a7:b5:0e:e4:bc:a3:27:c0:48:ca:1b:08:7d:e5:1a:18: d5:7f:d2:d2:5a:9e:86:d9:76:0a:00:26:8e:71:ce:a2:36:8e: db:e8:b6:ec:e9:41:73:ee:6f:ae:26:5e:e1:43:c3:c7:73:6d: e8:f3:62:41:64:92:47:36:0b:91:51:46:78:7e:ab:68:cf:85: db:8d:20:fc:bd:57:c6:19:ec:3d:58:a8:7d:e3:dc:59:99:de: a6:f2:34:ef:65:35:30:d0:ff:6c:b4:d7:13:35:48:89:b6:10: 41:94:ee:ce:7f:11:86:7a:96:6d:0d:98:6b:9b:60:9f:aa:af: e0:d3:0a:cb:cf:b3:35:64:fb:47:c5:74:9c:fa:24:28:ae:1d: 20:f1:ed:b8:1a:26:49:df:5e:7a:81:73:b8:6a:12:c6:7e:8d: 4e:ce:88:c7:21:1a:b0:04:dd:29:d9:b4:db:11:96:29:b3:fb: 84:5e:6a:eb:fb:e8:67:fe:f0:f2:94:77:d1:57:65:b8:07:20: 04:f3:df:e3:c5:78:2c:c9:a9:78:59:c2:9b:02:8d:ca:86:8b: a9:37:1f:74:ad:03:78:6c:3b:02:ce:76:b4:4a:17:d3:7c:5f: 97:bb:3f:52:c3:0b:3c:57:5d:e5:12:82:ce:f9:32:d7:5e:25: 5c:98:4e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwNjEzMDMxOTEzWhcNMjUwNjIwMDMxOTEzWjAYMRYwFAYD VQQDEw02ODRiOThiMi05MzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogGF9TXPJYJBkNpni+O3Tv/vghyuwRwEfIpVkUUTrBABgj0KqIe2zFNt0mtd wA1uL1N6pImJqKaefSJEpuVBgLs0vWANMe30lqZsqVFAqc8yHc4qaLoCXjHnfEFS za0JanPyhDGBPAUdyX8BnEtrAX8CGGlM/QdYyeK0p2jj0OCerPWu/KgrFVn1drfH /R9s6L1gAhBOvr5UxhIoOKT8XEEXhgc1hB2kx/ENQiJjhcHAiKnnf+CsJxigtLhs baFW+gPCJLx1aWS/g5COMKKC34wiIuOmSVcC5g5SA4RZdfZm1E3YK9SJZEcBGwHT fPpWuypEhUlDh799183BkoszDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnjjQ4a /LHEOe1RflV3LEmjUPD2MB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGFKe1DuS8oyfASMobCH3lGhjVf9LSWp6G2XYKACaOcc6iNo7b6Lbs 6UFz7m+uJl7hQ8PHc23o82JBZJJHNguRUUZ4fqtoz4XbjSD8vVfGGew9WKh949xZ md6m8jTvZTUw0P9stNcTNUiJthBBlO7OfxGGepZtDZhrm2Cfqq/g0wrLz7M1ZPtH xXSc+iQorh0g8e24GiZJ3156gXO4ahLGfo1OzojHIRqwBN0p2bTbEZYps/uEXmrr ++hn/vDylHfRV2W4ByAE89/jxXgsyal4WcKbAo3KhoupNx90rQN4bDsCzna0ShfT fF+Xuz9Swws8V13lEoLO+TLXXiVcmE7Q -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:01 2025 by rpki-client