$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: WtUYTa7JXw6w3ZDmrtfrWkxUO1FLeK0W7jKMXq5nFu0= Subject key identifier: 78:7D:DD:2A:A3:71:93:50:B3:90:DA:8B:35:D7:10:7F:86:EF:E0:09 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 48 Signing time: Fri 13 Jun 2025 06:25:54 +0000 Manifest this update: Fri 13 Jun 2025 06:25:54 +0000 Manifest next update: Fri 20 Jun 2025 06:25:54 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: O4wKfu/DQ1riWPx80kxp7GU3O/lMXZvKWQfbfF57Pmo=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Jun 13 06:25:54 2025 GMT Not After : Jun 20 06:25:54 2025 GMT Subject: CN=684bc472-ddfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:50:53:bf:04:e5:74:61:bc:62:14:9c:54:eb: c1:85:59:01:0c:cc:14:4e:0e:0c:8e:4a:27:db:19: 97:59:f4:5a:5c:79:14:e3:be:f4:58:ea:78:09:fe: 06:41:40:a1:2c:11:8f:0e:ee:7a:75:2e:01:99:9a: 5d:82:6e:1f:24:d1:61:60:0d:08:c0:b9:e8:80:52: 3f:15:92:eb:7a:8e:f6:62:5d:f6:26:80:58:58:9c: 8e:6c:dd:4d:3d:d9:d0:c5:14:d6:f9:2b:9a:9f:21: c5:2a:58:89:8f:58:31:1c:d3:22:b2:b3:0b:2d:08: 71:2d:be:7a:10:f8:e6:15:5c:ce:74:fd:f0:f5:c7: 7a:58:35:40:ac:a8:43:6b:30:34:a5:76:64:56:81: 4c:5d:1d:32:01:2c:5a:98:9d:4d:9d:94:fa:17:6b: 58:96:48:84:30:25:42:8e:44:81:fb:d3:d8:db:70: 55:80:8a:d0:ab:8c:e1:8b:c4:83:a2:99:6b:7b:c3: c1:a9:0e:0b:6c:8f:5d:fc:48:c5:38:65:21:96:cb: 13:66:94:b8:50:fa:5b:4a:92:06:a9:cd:dc:eb:bd: af:29:f1:ee:85:4e:b2:c6:5d:13:e4:df:c3:cd:40: ab:22:b5:ba:f4:d2:d7:b4:c9:be:91:e5:94:01:e3: 97:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7D:DD:2A:A3:71:93:50:B3:90:DA:8B:35:D7:10:7F:86:EF:E0:09 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e6:2f:54:c5:42:a5:9f:b7:4b:87:1e:74:62:5a:0b:a2:fe: c8:b6:61:74:6a:d4:c7:e4:17:2b:a6:b1:9c:6b:aa:48:63:41: 9f:71:77:93:ac:42:5b:ea:92:e9:05:03:73:21:01:d3:e2:d2: 45:bc:b5:97:49:f1:6d:74:93:b5:80:b7:6b:d4:2e:e9:85:ed: e9:b9:02:29:89:f7:ed:3b:1c:f2:96:c1:fd:43:3b:18:56:61: 13:df:a1:f3:55:27:fd:88:58:39:3f:14:11:e7:67:1c:1c:61: 15:e2:31:2e:07:ea:88:86:9a:92:dd:3e:19:93:d4:28:0f:f8: 6f:b2:b5:ce:6d:8f:1d:32:f2:43:fc:7f:52:fe:e1:7b:5b:de: 84:11:38:54:86:e4:d7:5e:3c:51:84:d6:51:e5:d6:c7:ae:8d: 41:9b:99:a0:bd:07:5f:9c:4f:e3:28:55:00:4d:5e:4e:24:21: 61:1e:9a:5a:18:fb:c0:18:9d:c8:2a:18:cc:f7:a8:e5:cd:c9: 9c:4d:77:fb:12:1f:e6:4e:b7:6f:d9:b7:4b:e0:9b:e3:59:ff: 70:ea:d8:2c:cc:bf:21:f6:ca:9e:30:3c:6f:4f:a1:af:31:95: c3:90:66:7c:27:0d:eb:e9:20:e9:69:de:d0:53:3f:67:e5:6e: 9e:c4:22:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA2MTMwNjI1NTRaFw0yNTA2MjAwNjI1NTRaMBgxFjAUBgNV BAMTDTY4NGJjNDcyLWRkZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/UFO/BOV0YbxiFJxU68GFWQEMzBRODgyOSifbGZdZ9FpceRTjvvRY6ngJ/gZB QKEsEY8O7np1LgGZml2Cbh8k0WFgDQjAueiAUj8Vkut6jvZiXfYmgFhYnI5s3U09 2dDFFNb5K5qfIcUqWImPWDEc0yKyswstCHEtvnoQ+OYVXM50/fD1x3pYNUCsqENr MDSldmRWgUxdHTIBLFqYnU2dlPoXa1iWSIQwJUKORIH709jbcFWAitCrjOGLxIOi mWt7w8GpDgtsj138SMU4ZSGWyxNmlLhQ+ltKkgapzdzrva8p8e6FTrLGXRPk38PN QKsitbr00te0yb6R5ZQB45cFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeH3dKqNx k1CzkNqLNdcQf4bv4AkwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw RjkwLzA0Nzc5QjlDRUQ4MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFk ald2SlJtdHpRQXVFeS04NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADfmL1TFQqWft0uHHnRiWgui/si2YXRq1MfkFyumsZxrqkhjQZ9xd5Os QlvqkukFA3MhAdPi0kW8tZdJ8W10k7WAt2vULumF7em5AimJ9+07HPKWwf1DOxhW YRPfofNVJ/2IWDk/FBHnZxwcYRXiMS4H6oiGmpLdPhmT1CgP+G+ytc5tjx0y8kP8 f1L+4Xtb3oQROFSG5NdePFGE1lHl1seujUGbmaC9B1+cT+MoVQBNXk4kIWEemloY +8AYncgqGMz3qOXNyZxNd/sSH+ZOt2/Zt0vgm+NZ/3Dq2CzMvyH2yp4wPG9Poa8x lcOQZnwnDevpIOlp3tBTP2flbp7EIs8= -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:06 2025 by rpki-client