$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: tCyqqfdpRdrTgCl3k5JNEGjKhKjP/OhjhFo3hLfc+uk= Subject key identifier: C9:19:5F:AE:7B:DF:EC:F1:56:F5:66:08:DE:81:14:E1:C6:5F:0E:74 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 09C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09BC Signing time: Sat 14 Jun 2025 19:49:49 +0000 Manifest this update: Sat 14 Jun 2025 19:49:49 +0000 Manifest next update: Sat 21 Jun 2025 19:49:49 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: LX8ZCAoZXuH8+s8cqMHAWFYJhS1V7fysYjnhcuNlqz4=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2499 (0x9c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Jun 14 19:49:49 2025 GMT Not After : Jun 21 19:49:49 2025 GMT Subject: CN=684dd25d-5ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b9:ca:a4:5f:f2:7f:bc:66:6d:bb:ab:c5:dc: a5:57:42:44:46:cd:3f:15:a7:9f:ab:82:e3:ae:8c: b3:ab:9d:b2:46:cb:9a:68:46:70:89:74:03:a1:62: df:5b:a5:9e:d1:40:ff:1f:62:0b:cc:5f:68:f5:f0: dc:ec:39:3e:2f:77:11:a8:9c:c5:da:ef:b4:25:bc: ae:46:2a:41:10:9f:17:69:8f:92:79:47:0b:dc:d3: 7d:e3:12:6a:72:f0:33:c1:62:65:37:af:1a:62:2b: 24:01:b5:31:67:71:9e:1b:91:64:9a:02:95:d8:cc: 3b:bb:0f:51:23:37:9c:c4:0e:90:42:87:7d:4b:4f: 92:ee:bc:da:ab:6c:71:95:b7:08:b3:6c:56:29:11: f5:90:6d:9a:c4:74:1a:d7:4c:ce:3b:3b:0c:1c:fb: 9d:4e:5e:3d:29:f8:03:60:e9:db:0c:4d:63:61:12: c8:9a:65:23:65:c9:8c:f9:8f:33:92:26:12:ef:d1: b5:f7:24:be:0c:43:d6:01:9f:81:93:0b:11:48:51: 76:7d:d1:94:46:cf:20:4b:1d:7e:d6:fa:f7:f8:e2: 98:c5:91:f8:a0:2b:03:c8:29:23:0a:68:ac:36:9d: e8:bb:7d:14:f1:36:ff:d6:f1:53:e6:02:82:84:d2: 2f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:19:5F:AE:7B:DF:EC:F1:56:F5:66:08:DE:81:14:E1:C6:5F:0E:74 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:a0:04:12:48:86:bf:84:f9:3d:ad:e3:71:89:1f:35:d5:35: a0:21:33:b6:a8:5f:ae:b2:cb:fb:55:c0:56:74:ab:ad:31:d3: c1:21:05:89:99:38:fd:d4:6e:77:11:3b:5b:54:ba:8c:0e:65: 46:6f:e4:cf:42:fc:1a:91:76:50:47:7c:cd:fa:0e:a7:9d:4f: 87:39:27:35:8e:73:b5:f5:51:3b:a0:81:4d:d5:15:96:55:0c: 3c:ab:72:51:f4:5b:07:4b:7a:14:a9:85:43:b4:24:df:c6:eb: 1c:56:e1:f4:27:1c:84:b3:c5:97:62:93:14:31:ee:ed:42:a1: 0a:08:a1:b8:63:a4:60:05:6a:84:22:11:cf:19:6e:6e:c8:f3: bd:5b:3a:74:c5:1e:1e:f0:8a:88:32:7a:eb:03:8f:80:c2:28: e8:8a:40:8a:36:41:c9:cf:80:06:d1:4d:9d:49:65:8a:cd:2c: 7d:20:f7:40:00:bf:3d:6c:30:73:3f:d0:68:98:70:fb:d9:53: 5f:0c:ff:6e:a4:ab:62:f3:0e:df:53:ba:7d:db:41:2f:43:fc: d8:64:71:26:de:1d:6d:07:61:99:73:61:fe:a3:62:2b:c2:77: d7:16:8b:e8:65:24:2f:60:df:2c:96:72:86:05:72:b2:80:a4: bf:39:aa:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUwNjE0MTk0OTQ5WhcNMjUwNjIxMTk0OTQ5WjAYMRYwFAYD VQQDEw02ODRkZDI1ZC01ZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLnKpF/yf7xmbburxdylV0JERs0/Faefq4Ljroyzq52yRsuaaEZwiXQDoWLf W6We0UD/H2ILzF9o9fDc7Dk+L3cRqJzF2u+0JbyuRipBEJ8XaY+SeUcL3NN94xJq cvAzwWJlN68aYiskAbUxZ3GeG5FkmgKV2Mw7uw9RIzecxA6QQod9S0+S7rzaq2xx lbcIs2xWKRH1kG2axHQa10zOOzsMHPudTl49KfgDYOnbDE1jYRLImmUjZcmM+Y8z kiYS79G19yS+DEPWAZ+BkwsRSFF2fdGURs8gSx1+1vr3+OKYxZH4oCsDyCkjCmis Np3ou30U8Tb/1vFT5gKChNIvKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkZX657 3+zxVvVmCN6BFOHGXw50MB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzoAQSSIa/hPk9reNxiR811TWgITO2qF+ussv7VcBWdKutMdPBIQWJ mTj91G53ETtbVLqMDmVGb+TPQvwakXZQR3zN+g6nnU+HOSc1jnO19VE7oIFN1RWW VQw8q3JR9FsHS3oUqYVDtCTfxuscVuH0JxyEs8WXYpMUMe7tQqEKCKG4Y6RgBWqE IhHPGW5uyPO9Wzp0xR4e8IqIMnrrA4+AwijoikCKNkHJz4AG0U2dSWWKzSx9IPdA AL89bDBzP9BomHD72VNfDP9upKti8w7fU7p920EvQ/zYZHEm3h1tB2GZc2H+o2Ir wnfXFovoZSQvYN8slnKGBXKygKS/OapW -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:33 2025 by rpki-client