$ rpki-client -vvf rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft File: xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft (raw, json) Hash identifier: K1rZVQ1IkPcA8NatY8HHRqV2KdaGwxTr/kNVKKBgnkg= Subject key identifier: 11:C6:39:03:D1:19:44:7A:C5:C5:76:C1:B2:9D:A4:73:78:61:77:90 Authority key identifier: C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF Certificate issuer: /CN=A91E37D1/serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft Manifest number: 0192 Signing time: Tue 17 Jun 2025 02:34:22 +0000 Manifest this update: Tue 17 Jun 2025 02:34:21 +0000 Manifest next update: Tue 24 Jun 2025 02:34:21 +0000 Files and hashes: 1: xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl (hash: 97f3L4nVS97KT7SQOxca6NDAXrGsxIELK/xsAMOxjG4=) 2: 59A00A402C7111EFA821586AC4F9AE02.roa (hash: 0JcJhlyjlF7wNse9vwSRpqDIz9jgkXs09QG/XtA+FYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E37D1, serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Validity Not Before: Jun 17 02:34:21 2025 GMT Not After : Jun 24 02:34:21 2025 GMT Subject: CN=6850d42e-b4a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:61:7b:01:93:53:f3:9e:b3:04:f6:81:c0:6a: 0d:fc:82:fc:7c:69:ae:d0:bb:e9:ee:f4:85:71:2d: c0:d3:26:01:36:ed:b9:87:75:d3:54:37:b4:da:11: ec:f9:cd:2d:1b:93:7b:e6:e0:0c:e4:e2:89:a8:9b: a8:be:08:d0:b8:fe:4b:df:e2:53:34:a3:63:d4:eb: 2f:40:4f:04:5b:f1:1d:25:af:29:d7:46:0a:ec:36: 7a:b2:9f:71:01:a6:99:b1:98:47:0c:1d:62:33:ef: 80:83:d1:cb:62:96:03:a3:db:2a:b4:55:ee:5f:09: 72:71:0a:65:80:e3:7e:e5:e0:93:df:5e:03:46:8c: 38:21:6b:56:cc:ab:33:ad:a0:c9:8c:1b:05:02:20: 24:ee:6e:d3:71:bc:0d:2c:79:6d:39:4b:2c:64:47: 9f:72:5b:c2:b8:5b:65:aa:d7:53:c6:ee:79:f0:c1: 3e:f0:80:7e:6a:c3:34:fa:58:73:4c:cb:ab:41:4f: 72:b2:82:bb:9b:2b:bb:73:ec:7f:ee:10:99:ef:97: 32:27:d6:4e:f4:17:b1:f2:24:38:b1:64:fc:bc:a9: 77:89:27:aa:91:5f:aa:2c:c0:9b:68:d7:33:44:10: b2:ec:98:13:db:1d:93:b8:66:0d:2e:0e:94:89:ac: 1e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C6:39:03:D1:19:44:7A:C5:C5:76:C1:B2:9D:A4:73:78:61:77:90 X509v3 Authority Key Identifier: keyid:C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:6d:5d:d0:01:40:60:fe:a1:3d:8e:a2:cc:ee:4d:3d:f8:5e: 16:48:c1:fa:47:84:de:87:9a:10:42:78:a6:71:5b:f0:eb:53: 2c:4b:6e:de:f1:78:2d:94:cf:87:ec:95:8d:a5:f7:5d:d7:80: 05:cf:24:63:d0:af:14:81:ef:1a:bf:0e:be:de:a0:f2:ad:e0: 50:31:9b:18:b3:0b:1f:7a:b3:99:5d:3f:05:a1:a2:77:ae:3a: ee:47:a7:a6:6d:28:07:c0:e8:00:7d:53:0b:52:d8:17:b0:88: f7:08:9d:62:ab:73:da:5b:cd:a5:af:f6:62:b9:df:ab:b8:21: bf:cb:33:50:f1:5f:81:a4:70:5e:94:24:eb:8d:6d:41:f1:28: 3c:65:32:25:5b:51:95:29:68:44:dd:91:7a:ca:65:ee:31:07: 2f:16:fc:34:35:5e:28:46:d6:53:c8:bb:36:36:10:6b:07:f8: ba:7f:8c:97:e6:6c:8d:8d:b7:37:c2:ff:b9:85:d1:9f:c2:58: 1a:54:e1:21:c5:19:47:78:21:ed:e6:a0:03:e2:f9:ef:cd:8b: a4:9a:e0:9e:c7:48:1e:62:a5:f5:4d:6e:3b:ad:fd:b6:f2:2c: 87:85:ff:f9:1e:75:87:b4:c3:9c:85:8c:25:fb:44:60:fc:6e: 5f:32:b4:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3RDExMTAvBgNVBAUTKEM1QkQ4QTUwQ0FENUEwNUVGRTU3N0M0OUM0NzE0RTVE OUFCQjdGRUYwHhcNMjUwNjE3MDIzNDIxWhcNMjUwNjI0MDIzNDIxWjAYMRYwFAYD VQQDEw02ODUwZDQyZS1iNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2F7AZNT856zBPaBwGoN/IL8fGmu0Lvp7vSFcS3A0yYBNu25h3XTVDe02hHs +c0tG5N75uAM5OKJqJuovgjQuP5L3+JTNKNj1OsvQE8EW/EdJa8p10YK7DZ6sp9x AaaZsZhHDB1iM++Ag9HLYpYDo9sqtFXuXwlycQplgON+5eCT314DRow4IWtWzKsz raDJjBsFAiAk7m7TcbwNLHltOUssZEefclvCuFtlqtdTxu558ME+8IB+asM0+lhz TMurQU9ysoK7myu7c+x/7hCZ75cyJ9ZO9Bex8iQ4sWT8vKl3iSeqkV+qLMCbaNcz RBCy7JgT2x2TuGYNLg6UiaweTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHGOQPR GUR6xcV2wbKdpHN4YXeQMB8GA1UdIwQYMBaAFMW9ilDK1aBe/ld8ScRxTl2au3/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzdEMS8wNUE5OEYwRUUz QjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9GNy1WM3hKeEhGT1hacTdm LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiMktVTXJWb0Y3LVYzeEp4SEZPWFpxN2YtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzdEMS8wNUE5OEYwRUUzQjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9G Ny1WM3hKeEhGT1hacTdmLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmbV3QAUBg/qE9jqLM7k09+F4WSMH6R4Teh5oQQnimcVvw61MsS27e 8XgtlM+H7JWNpfdd14AFzyRj0K8Uge8avw6+3qDyreBQMZsYswsferOZXT8FoaJ3 rjruR6embSgHwOgAfVMLUtgXsIj3CJ1iq3PaW82lr/Ziud+ruCG/yzNQ8V+BpHBe lCTrjW1B8Sg8ZTIlW1GVKWhE3ZF6ymXuMQcvFvw0NV4oRtZTyLs2NhBrB/i6f4yX 5myNjbc3wv+5hdGfwlgaVOEhxRlHeCHt5qAD4vnvzYukmuCex0geYqX1TW47rf22 8iyHhf/5HnWHtMOchYwl+0Rg/G5fMrTV -----END CERTIFICATE-----Generated at Tue Jun 17 12:07:07 2025 by rpki-client