$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: UvXMlfqONNtxj+xzZ6nLiExivkWUNJ5t0H1NQEa+niA= Subject key identifier: 72:BF:E3:A7:82:BA:C9:6A:65:63:2C:31:11:86:AE:3D:F3:39:5C:CC Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 09B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0996 Signing time: Thu 12 Jun 2025 19:53:34 +0000 Manifest this update: Thu 12 Jun 2025 19:53:33 +0000 Manifest next update: Thu 19 Jun 2025 19:53:33 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: ReFbQxqeb8wwNT/U1EpeFF7MgHYYcR+keq8Y7xzZz8Y=) 2: 6569BF24997F11ECA6C7F481C4F9AE02.roa (hash: ihZ46zaKKgYFbsQZJpUcfwGNcLq0WYivOzEHAfXlcfs=) 3: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: 2HuzCk6S18IuIuNY88Jnmogc9ez8HXD2AaJ8nr4dsM0=) 4: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2488 (0x9b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Jun 12 19:53:33 2025 GMT Not After : Jun 19 19:53:33 2025 GMT Subject: CN=684b303e-0373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d1:6e:a5:74:5d:25:49:8d:0b:80:0c:c3:41: 85:03:c2:7e:23:83:2d:11:00:45:e9:d6:80:97:1e: 41:2e:83:64:aa:8e:30:87:a5:1b:9d:a7:64:b1:2e: 04:d7:2a:41:ab:47:06:d6:e8:fc:80:62:71:84:8c: 77:79:61:aa:cb:c1:39:94:73:ac:0c:53:9a:3f:5f: b1:40:0e:72:ea:48:17:b2:b1:af:2f:f5:b2:ee:9b: e1:7f:d9:da:f0:18:6e:88:b0:ee:28:53:92:4f:7c: 5e:af:69:40:78:9a:0a:37:8f:db:db:df:e4:51:0e: 0e:ad:8e:d8:a8:a0:df:7a:7d:e4:aa:23:a1:f3:89: e2:47:dc:a1:7a:d3:d1:33:0f:f7:16:99:0b:db:88: 49:5a:7d:55:2a:14:e8:49:97:ac:3d:85:14:28:c3: 47:53:77:75:10:dc:e2:0f:9e:d5:6c:6e:89:4e:59: 65:89:31:0b:4d:fe:ea:58:0a:13:01:76:a4:b5:5b: b2:a6:bf:16:27:5e:b2:86:e0:69:b7:fc:d1:6c:98: 2b:83:5d:98:0c:34:60:1a:6d:af:2b:40:e8:03:1a: 00:9d:8f:d2:92:66:ee:55:4e:88:e9:15:76:1a:99: 03:c4:b9:a7:0d:dc:9c:67:0e:42:30:0f:71:c2:7d: cb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BF:E3:A7:82:BA:C9:6A:65:63:2C:31:11:86:AE:3D:F3:39:5C:CC X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:98:a9:40:f5:0d:b2:47:c6:15:22:01:a0:b8:22:79:df:cf: e1:b8:01:3b:ef:48:4f:39:ad:a7:d6:26:d9:e4:17:55:c2:95: 51:09:74:f2:a4:18:c0:27:d2:e9:42:b5:2d:e9:57:18:4a:4e: fe:c6:fa:db:62:0b:34:d4:3c:b0:61:d9:3b:4e:a3:ca:d3:3e: 53:42:59:24:ae:b7:0b:cc:e8:51:f9:48:81:f8:7f:8c:a5:ab: e6:1a:a2:bd:af:f1:09:d9:fb:42:d7:90:4f:3c:06:8c:b0:60: 05:07:bf:5b:b6:1b:cf:d3:30:3b:70:ab:72:ab:ca:82:51:8b: 5c:56:7a:4b:a8:5d:01:ef:99:26:13:a6:86:00:9d:01:29:8a: 50:d1:66:3c:e8:c5:97:b8:74:37:41:5c:e3:2b:ed:7f:7f:f8: 43:0e:64:5c:30:d2:0b:05:55:66:c1:f4:ac:2e:f3:fc:8f:d6: d4:07:44:07:59:9b:65:0d:32:2b:bb:53:2c:1f:ed:67:6b:a4: d0:77:00:90:69:55:5b:93:5d:f7:60:b5:7d:0e:d0:97:6b:35: 86:ec:45:34:f4:7b:e7:d0:e2:e5:b0:9b:3a:43:d8:d7:ca:1f: 10:67:77:04:54:fe:8a:de:4c:82:48:94:e5:70:48:96:0d:0e: 5b:b7:c9:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUwNjEyMTk1MzMzWhcNMjUwNjE5MTk1MzMzWjAYMRYwFAYD VQQDEw02ODRiMzAzZS0wMzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdFupXRdJUmNC4AMw0GFA8J+I4MtEQBF6daAlx5BLoNkqo4wh6UbnadksS4E 1ypBq0cG1uj8gGJxhIx3eWGqy8E5lHOsDFOaP1+xQA5y6kgXsrGvL/Wy7pvhf9na 8BhuiLDuKFOST3xer2lAeJoKN4/b29/kUQ4OrY7YqKDfen3kqiOh84niR9yhetPR Mw/3FpkL24hJWn1VKhToSZesPYUUKMNHU3d1ENziD57VbG6JTllliTELTf7qWAoT AXaktVuypr8WJ16yhuBpt/zRbJgrg12YDDRgGm2vK0DoAxoAnY/SkmbuVU6I6RV2 GpkDxLmnDdycZw5CMA9xwn3L8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHK/46eC uslqZWMsMRGGrj3zOVzMMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApmKlA9Q2yR8YVIgGguCJ538/huAE770hPOa2n1ibZ5BdVwpVRCXTy pBjAJ9LpQrUt6VcYSk7+xvrbYgs01DywYdk7TqPK0z5TQlkkrrcLzOhR+UiB+H+M pavmGqK9r/EJ2ftC15BPPAaMsGAFB79bthvP0zA7cKtyq8qCUYtcVnpLqF0B75km E6aGAJ0BKYpQ0WY86MWXuHQ3QVzjK+1/f/hDDmRcMNILBVVmwfSsLvP8j9bUB0QH WZtlDTIru1MsH+1na6TQdwCQaVVbk133YLV9DtCXazWG7EU09Hvn0OLlsJs6Q9jX yh8QZ3cEVP6K3kyCSJTlcEiWDQ5bt8kI -----END CERTIFICATE-----Generated at Sat Jun 14 19:06:29 2025 by rpki-client