$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: CLRK/YV8QpiIDqkUVpFGF9TNYQQHLFpSXKr+I6Ega3I= Subject key identifier: 78:EB:31:A1:D3:32:A3:F0:39:CA:DC:1C:88:D2:F9:EC:FB:AE:ED:52 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 046D Signing time: Thu 12 Jun 2025 23:41:28 +0000 Manifest this update: Thu 12 Jun 2025 23:41:28 +0000 Manifest next update: Thu 19 Jun 2025 23:41:28 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: fAE9sOoxDm+0c1yBP6a7fRyNLPbJV2YCNLguBZmpBUk=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: IcEuGPt4GTNEbPQpjAanlaif3gO8wRzi48eufGxQr4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Jun 12 23:41:28 2025 GMT Not After : Jun 19 23:41:28 2025 GMT Subject: CN=684b65a8-32a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:ec:bf:a9:d5:b0:c7:7b:9e:5b:c6:cd:6d: 0f:0c:04:36:53:37:6a:66:a3:bf:ed:1f:ed:5e:cd: bc:37:46:d7:7d:36:a2:6d:ad:6b:35:ab:f9:7f:d2: 01:84:9b:70:74:1f:45:b5:c1:ce:5a:34:a0:e1:1f: 05:d1:ee:3b:bb:da:95:69:97:94:72:7d:44:e0:9d: f4:a6:2f:29:e3:89:b4:5f:84:2a:17:b9:73:3b:a4: a8:78:4d:db:a4:7a:28:cb:fe:ed:64:8e:c9:4c:8d: 50:5c:74:0d:42:75:d9:f3:4e:3e:49:52:51:db:b8: 7b:78:01:83:76:a7:d2:69:68:fc:ac:f0:ce:bf:66: 86:b3:c7:4f:cc:a5:f5:4a:25:27:6f:df:af:73:9a: a8:9b:7d:2e:80:42:5f:f6:da:dc:86:fa:b2:50:3c: 19:65:ac:0e:18:86:fb:e2:36:d8:15:3e:7e:08:de: d5:b8:30:d8:a2:92:56:81:f6:aa:4d:d9:78:f3:63: 2d:41:51:ba:09:cc:d2:93:4f:50:ee:bf:7f:0e:c9: e5:0e:ae:81:fa:dc:ea:32:9a:4c:54:91:9b:90:cc: fb:eb:a4:94:66:0e:1a:dd:69:36:db:78:7a:25:21: 93:d0:8a:d9:6c:33:c1:e1:54:83:a3:f1:e4:c8:aa: 13:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:EB:31:A1:D3:32:A3:F0:39:CA:DC:1C:88:D2:F9:EC:FB:AE:ED:52 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e1:48:77:40:47:cc:af:66:23:a3:65:d4:0a:46:7b:f9:53: c3:7f:25:e6:dc:33:76:af:58:d0:3f:a8:cf:87:5f:69:39:bf: c4:28:eb:0e:32:56:d4:ff:30:d0:df:b2:0d:c6:4f:4e:e6:e5: 68:c3:ac:10:f8:4f:24:3f:0d:23:51:a8:ab:5d:0b:50:96:29: f4:63:43:40:9f:fc:a7:b6:6a:31:e1:83:d3:1b:f0:e0:5d:24: ed:65:f6:f5:ba:33:6c:73:91:ba:83:72:c1:76:9a:41:70:4b: 89:a7:58:8f:5b:a7:66:d2:c4:9e:e7:63:9c:18:12:ba:a7:ed: 4c:73:ef:bf:7b:44:8e:0c:43:f4:8d:a5:2a:bb:80:46:2c:81: 15:85:b8:bd:c2:e0:ca:2d:d7:8a:63:6b:81:0f:68:64:b2:5e: 09:5f:07:76:a9:d0:0f:e6:55:5d:af:3d:19:22:bf:3f:91:b9: b5:9c:33:54:7c:02:21:c3:c6:b2:ef:5c:ce:e8:cf:da:20:7c: 99:84:8a:02:11:a5:a0:3a:b5:5a:3b:97:17:10:1f:c3:57:67: 57:fa:71:1a:6b:12:b3:9a:fa:fa:74:e5:2b:83:68:c2:5a:a5: b1:c6:ee:25:0c:b3:b6:bf:2c:ac:10:a1:5a:bd:a9:da:1b:72: 84:eb:cd:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUwNjEyMjM0MTI4WhcNMjUwNjE5MjM0MTI4WjAYMRYwFAYD VQQDEw02ODRiNjVhOC0zMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNPsv6nVsMd7nlvGzW0PDAQ2UzdqZqO/7R/tXs28N0bXfTaiba1rNav5f9IB hJtwdB9FtcHOWjSg4R8F0e47u9qVaZeUcn1E4J30pi8p44m0X4QqF7lzO6SoeE3b pHooy/7tZI7JTI1QXHQNQnXZ804+SVJR27h7eAGDdqfSaWj8rPDOv2aGs8dPzKX1 SiUnb9+vc5qom30ugEJf9trchvqyUDwZZawOGIb74jbYFT5+CN7VuDDYopJWgfaq Tdl482MtQVG6CczSk09Q7r9/DsnlDq6B+tzqMppMVJGbkMz766SUZg4a3Wk223h6 JSGT0IrZbDPB4VSDo/HkyKoTIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjrMaHT MqPwOcrcHIjS+ez7ru1SMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB04Uh3QEfMr2Yjo2XUCkZ7+VPDfyXm3DN2r1jQP6jPh19pOb/EKOsO MlbU/zDQ37INxk9O5uVow6wQ+E8kPw0jUairXQtQlin0Y0NAn/yntmox4YPTG/Dg XSTtZfb1ujNsc5G6g3LBdppBcEuJp1iPW6dm0sSe52OcGBK6p+1Mc++/e0SODEP0 jaUqu4BGLIEVhbi9wuDKLdeKY2uBD2hksl4JXwd2qdAP5lVdrz0ZIr8/kbm1nDNU fAIhw8ay71zO6M/aIHyZhIoCEaWgOrVaO5cXEB/DV2dX+nEaaxKzmvr6dOUrg2jC WqWxxu4lDLO2vyysEKFavanaG3KE681V -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:32 2025 by rpki-client