$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: y8l/LtkTRhmZkw3si/Jyi6IBgKtXUNO5N2gb3NCawBo= Subject key identifier: 21:2F:68:A9:79:4F:95:D4:53:0C:6B:48:2F:56:94:84:F1:33:46:4B Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0906 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 08FF Signing time: Sat 14 Jun 2025 20:09:43 +0000 Manifest this update: Sat 14 Jun 2025 20:09:43 +0000 Manifest next update: Sat 21 Jun 2025 20:09:43 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: Wgig92Y61cCLi+Rq+OMQsCmm1Qf0cr70BEagy0pf3kE=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Jun 14 20:09:43 2025 GMT Not After : Jun 21 20:09:43 2025 GMT Subject: CN=684dd707-75d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:79:07:bc:ae:04:1c:a3:02:44:3d:72:5c: 69:59:2d:fa:be:0e:3a:d1:41:d4:6d:91:06:06:3b: 5b:11:45:b7:7d:7f:eb:27:bc:b3:5a:9f:a6:1d:12: 6b:68:34:f0:0d:ab:35:94:a2:e9:c6:31:19:70:66: 3c:f6:ee:3d:8a:71:3e:a8:31:a3:e3:5b:81:31:23: 75:6a:1f:d7:bd:6d:03:5a:65:f2:09:97:a4:90:05: 85:93:15:31:e3:bf:5c:9b:42:14:85:b1:3a:d3:cf: d1:93:00:dd:64:5f:d1:09:18:66:ed:a4:d5:ca:f0: 12:14:62:c8:97:6f:8f:30:ed:b3:e7:a8:d5:22:c8: 58:de:4e:5c:7f:a5:0a:2c:a9:64:d2:60:7a:d2:b2: 13:aa:58:da:34:f7:00:aa:9c:09:5f:95:59:59:38: 50:f4:07:61:73:7a:09:c5:ac:94:03:32:db:ef:68: 84:ec:61:36:ed:f9:39:e1:29:8b:07:72:cc:6e:64: fc:db:ae:73:ad:1f:af:b3:45:2c:30:fe:a2:e6:3a: 11:62:78:87:01:29:30:88:a5:48:6f:e6:8d:71:8d: 57:18:76:47:80:81:90:19:32:86:9c:11:d6:48:59: d5:44:3e:54:c3:36:05:a2:16:f1:e3:f5:6c:36:76: c8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2F:68:A9:79:4F:95:D4:53:0C:6B:48:2F:56:94:84:F1:33:46:4B X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:85:50:4d:8f:2f:55:f4:a3:e5:15:c6:d7:7d:06:f4:bf:47: 0c:04:b7:96:85:15:67:ac:52:28:01:dd:cf:f3:2a:80:03:27: 94:56:26:6f:db:9e:a7:43:51:fb:9a:49:cd:c4:50:64:e2:df: 43:ab:2d:90:5c:1d:08:b7:0c:15:c7:92:6d:b9:a2:3e:fd:f7: 28:e1:7f:0e:bd:7f:2a:16:83:82:71:3f:c5:e1:b7:b1:f7:b7: 3c:76:55:81:ff:6d:e2:e6:92:57:75:26:90:3f:49:8c:65:d8: 5c:b8:29:13:ca:c9:5a:b0:ca:5e:57:db:65:28:11:75:e5:35: f8:f6:2f:26:e3:83:62:3e:39:f5:2f:22:05:81:7a:e3:20:83: 21:87:36:7e:12:f9:16:6e:6d:28:05:f6:4d:23:41:60:5b:9c: 1f:d3:5d:20:61:18:48:82:fe:25:46:08:85:19:af:30:aa:75: e1:cd:74:7b:3b:5f:e3:9e:c3:bd:98:e7:eb:31:cf:01:47:65: b2:ad:3d:af:61:cc:3a:05:14:93:82:aa:33:28:b4:ec:d9:17: ab:b4:d7:00:a1:0f:c8:74:08:8a:04:11:6e:e8:60:bc:75:33: 2e:c3:f9:8c:c5:f3:20:15:e4:70:e7:4d:25:6c:49:57:78:90: 9a:95:bc:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUwNjE0MjAwOTQzWhcNMjUwNjIxMjAwOTQzWjAYMRYwFAYD VQQDEw02ODRkZDcwNy03NWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vZ5B7yuBByjAkQ9clxpWS36vg460UHUbZEGBjtbEUW3fX/rJ7yzWp+mHRJr aDTwDas1lKLpxjEZcGY89u49inE+qDGj41uBMSN1ah/XvW0DWmXyCZekkAWFkxUx 479cm0IUhbE608/RkwDdZF/RCRhm7aTVyvASFGLIl2+PMO2z56jVIshY3k5cf6UK LKlk0mB60rITqljaNPcAqpwJX5VZWThQ9Adhc3oJxayUAzLb72iE7GE27fk54SmL B3LMbmT8265zrR+vs0UsMP6i5joRYniHASkwiKVIb+aNcY1XGHZHgIGQGTKGnBHW SFnVRD5UwzYFohbx4/VsNnbI1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEvaKl5 T5XUUwxrSC9WlITxM0ZLMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOhVBNjy9V9KPlFcbXfQb0v0cMBLeWhRVnrFIoAd3P8yqAAyeUViZv 256nQ1H7mknNxFBk4t9Dqy2QXB0ItwwVx5JtuaI+/fco4X8OvX8qFoOCcT/F4bex 97c8dlWB/23i5pJXdSaQP0mMZdhcuCkTyslasMpeV9tlKBF15TX49i8m44NiPjn1 LyIFgXrjIIMhhzZ+EvkWbm0oBfZNI0FgW5wf010gYRhIgv4lRgiFGa8wqnXhzXR7 O1/jnsO9mOfrMc8BR2WyrT2vYcw6BRSTgqozKLTs2RertNcAoQ/IdAiKBBFu6GC8 dTMuw/mMxfMgFeRw500lbElXeJCalbww -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:52 2025 by rpki-client