$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: Y4Wo2s2P71nt+5SAifW4Zr0edDE6dbB7bB7D82ECI0U= Subject key identifier: D1:E5:22:6A:C1:E5:A4:CC:1D:CF:89:CD:DD:69:6E:06:F9:A4:75:E2 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 1D Signing time: Fri 13 Jun 2025 06:47:46 +0000 Manifest this update: Fri 13 Jun 2025 06:47:46 +0000 Manifest next update: Fri 20 Jun 2025 06:47:46 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: XVMBLhAMhohBVI56+91cXPgXnxenz6UWVGpSLJLcMNc=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:47:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Jun 13 06:47:46 2025 GMT Not After : Jun 20 06:47:46 2025 GMT Subject: CN=684bc992-3c78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1b:61:65:a7:48:af:83:d3:09:8b:62:1b:da: da:bf:a4:20:2d:d8:6f:0d:b6:57:96:fd:81:7b:d9: cf:1e:3c:21:c9:ea:90:74:ba:57:73:49:af:7a:1b: b4:b2:26:be:8e:e8:09:cf:06:7b:9e:b2:5b:94:7d: e5:57:8f:38:7c:3f:ce:3f:f1:04:6a:c8:d7:36:0f: 6c:cd:e1:d7:00:bc:03:e0:43:72:61:e6:f8:71:15: c0:76:50:26:26:a9:7c:8e:98:35:7e:4c:58:09:38: b4:8f:54:82:57:df:ef:3b:9a:8b:60:ba:1a:de:fd: a8:07:96:44:0d:97:ea:51:a3:25:ec:e0:be:dd:9c: aa:85:e5:6a:12:84:51:ef:0e:2b:7a:22:f9:3c:60: a4:39:92:d4:1d:5b:b4:5a:11:3c:9e:2b:2b:66:91: 31:f3:bb:6a:d2:bb:57:35:d6:27:bc:ec:47:78:dc: be:9a:a6:ca:b2:63:ff:9d:be:fc:8a:83:39:4a:be: 1d:1c:36:d1:94:af:eb:44:63:4a:24:98:b1:6c:7b: 12:38:e6:7c:53:e6:3b:4e:d8:a0:8a:07:00:de:2f: a9:2a:3e:ca:2a:dc:73:26:56:46:25:9d:9a:89:00: 9d:72:68:62:59:e0:79:af:65:2d:21:4b:83:18:24: f8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E5:22:6A:C1:E5:A4:CC:1D:CF:89:CD:DD:69:6E:06:F9:A4:75:E2 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:f0:57:82:51:88:05:50:cb:70:28:af:77:ed:96:84:37:bf: 7e:1f:6e:92:fe:52:5f:68:e3:72:7e:22:e5:19:84:17:e7:06: bd:be:36:e9:fa:18:fa:61:81:91:f7:79:b2:d8:47:38:b9:43: da:c1:e3:4e:be:61:63:79:ca:e3:3d:b9:c5:c5:08:41:d0:d5: a3:c6:42:22:22:29:15:ea:2d:c9:d3:a5:08:4b:9b:8f:21:75: 41:4a:98:cc:6f:1e:77:4e:8f:4d:37:24:bc:df:aa:eb:83:7f: 00:fa:db:6b:a1:39:e2:7d:2c:90:95:2c:69:67:cb:38:c0:db: 07:e5:1a:68:ae:40:f8:3a:71:e8:08:43:fd:a2:c7:c6:7f:97: 81:c8:68:4a:6e:f4:c0:7a:6b:cb:df:dd:81:2d:d1:41:7f:0e: 72:18:c6:0c:06:de:2d:28:60:b7:ac:d5:1f:f5:b1:07:4c:13: c3:23:34:2d:b4:2f:12:6f:d4:29:3e:ec:6f:27:9f:9e:84:78: 43:9d:1e:ce:8d:6d:4b:58:d2:6e:cd:34:89:5e:a4:2e:85:34: e7:f3:be:08:2e:9e:21:23:f9:a8:b6:7a:0e:9b:e0:2a:33:2c: 8d:3d:fa:11:63:64:ac:a7:a8:07:e9:03:98:3a:c3:f0:10:fe: f1:a6:7c:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA2MTMwNjQ3NDZaFw0yNTA2MjAwNjQ3NDZaMBgxFjAUBgNV BAMTDTY4NGJjOTkyLTNjNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIG2Flp0ivg9MJi2Ib2tq/pCAt2G8NtleW/YF72c8ePCHJ6pB0uldzSa96G7Sy Jr6O6AnPBnuesluUfeVXjzh8P84/8QRqyNc2D2zN4dcAvAPgQ3Jh5vhxFcB2UCYm qXyOmDV+TFgJOLSPVIJX3+87motguhre/agHlkQNl+pRoyXs4L7dnKqF5WoShFHv Dit6Ivk8YKQ5ktQdW7RaETyeKytmkTHzu2rSu1c11ie87Ed43L6apsqyY/+dvvyK gzlKvh0cNtGUr+tEY0okmLFsexI45nxT5jtO2KCKBwDeL6kqPsoq3HMmVkYlnZqJ AJ1yaGJZ4HmvZS0hS4MYJPhdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0eUiasHl pMwdz4nN3WluBvmkdeIwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH3wV4JRiAVQy3Aor3ftloQ3v34fbpL+Ul9o43J+IuUZhBfnBr2+Nun6 GPphgZH3ebLYRzi5Q9rB406+YWN5yuM9ucXFCEHQ1aPGQiIiKRXqLcnTpQhLm48h dUFKmMxvHndOj003JLzfquuDfwD622uhOeJ9LJCVLGlnyzjA2wflGmiuQPg6cegI Q/2ix8Z/l4HIaEpu9MB6a8vf3YEt0UF/DnIYxgwG3i0oYLes1R/1sQdME8MjNC20 LxJv1Ck+7G8nn56EeEOdHs6NbUtY0m7NNIlepC6FNOfzvgguniEj+ai2eg6b4Coz LI09+hFjZKynqAfpA5g6w/AQ/vGmfHI= -----END CERTIFICATE-----Generated at Sun Jun 15 08:25:50 2025 by rpki-client