$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: cnPXkI8tsDgQOV+HWRG1HxyWShW9bygg7W0kRiUS2CE= Subject key identifier: 7A:79:55:F3:C1:D9:F4:80:D4:B5:1A:1F:A9:B2:BF:F3:E8:42:B6:A3 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 02B5 Signing time: Fri 13 Jun 2025 00:57:35 +0000 Manifest this update: Fri 13 Jun 2025 00:57:34 +0000 Manifest next update: Fri 20 Jun 2025 00:57:34 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: eLohpQUk6xKeHW0O3s+B+FpnieMjnxVrLYIddJQ/gCc=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: jZodcyxZ4nUw78pUbwh5qrFajwuNLHaye10ReDwTgoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Jun 13 00:57:34 2025 GMT Not After : Jun 20 00:57:34 2025 GMT Subject: CN=684b777f-626f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2e:1e:1d:84:36:ed:ac:c0:5e:78:f9:7f:c8: 84:22:f7:c1:2e:ef:69:94:9a:6f:f1:0f:f7:ac:e8: 85:a5:0b:fa:03:d7:2c:89:8c:97:54:73:eb:34:7e: d7:ac:19:3c:b3:e2:83:c7:c4:14:a9:7a:96:3f:d7: 25:a2:52:69:36:32:6d:27:53:b9:ef:66:36:0d:0f: c1:e8:d1:e1:51:6d:cd:74:48:4a:0f:03:1f:8d:83: 83:aa:7c:54:94:49:19:83:e3:1c:65:95:09:93:9d: d8:96:b6:b9:2b:d7:f0:d0:33:13:b5:3a:49:c8:33: f1:43:21:33:c8:e3:74:54:9c:fd:e9:c4:2a:14:7b: 4b:1c:7a:a0:86:e4:b7:ba:52:40:89:6a:7e:82:20: f6:48:7c:e8:e2:82:84:f3:af:9e:80:77:3a:a5:49: 21:47:db:64:38:02:ca:9e:c9:82:e8:29:b7:80:e3: de:6a:78:e7:7d:a5:2e:0a:a5:29:31:71:2d:73:c0: 98:d7:0d:f6:e8:d7:5a:d6:a0:b5:c3:5e:fd:79:19: 12:9a:c8:63:ce:ff:0f:18:f9:23:d0:20:bf:43:28: 31:cf:e9:1a:08:b1:82:27:43:e9:7d:db:aa:91:59: c9:c3:cf:21:6c:4a:b5:6e:cd:25:6c:3d:ea:b5:83: e0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:79:55:F3:C1:D9:F4:80:D4:B5:1A:1F:A9:B2:BF:F3:E8:42:B6:A3 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:2e:51:53:8d:1c:54:62:31:6b:9f:99:6e:86:a1:cf:2e:3c: f8:23:7a:2e:d8:b8:5b:49:6e:37:0a:6b:21:48:56:41:12:82: 44:f1:2e:79:23:2f:ab:d7:ea:35:c4:53:3e:81:22:df:1c:bc: a1:25:7e:70:48:cd:50:ea:18:a7:cb:2c:94:b7:80:0c:1d:06: 32:af:54:9b:3c:34:12:6e:1d:1c:a4:e2:4c:9a:99:60:80:a1: 10:a8:f2:9a:2b:e9:b9:46:98:01:09:9f:33:77:09:78:e9:32: eb:77:83:74:db:9c:87:c7:b8:5a:57:ef:6a:8f:98:8f:76:18: 31:fe:4e:eb:be:0a:b9:a5:3e:56:79:cd:90:ce:f0:e7:1c:92: e9:d7:ce:85:c3:4c:6c:96:60:32:04:ce:4e:aa:4b:04:26:0d: d9:52:c0:93:9b:73:69:ce:ac:24:6c:a0:b2:a1:e9:3a:28:2e: 53:58:ac:87:dc:ce:4e:75:36:9a:b0:ac:ef:d9:15:77:3e:cb: 22:a3:d8:3c:4a:f9:f6:e0:a2:a3:87:86:bd:ed:ab:02:fe:00: f8:d4:6a:9a:b5:3f:7b:81:00:dd:da:38:34:f6:a2:2c:dc:7d: 4c:4e:ef:4d:cc:50:be:76:3f:e5:b3:13:bc:ff:b0:7a:7c:08: 2d:5c:1b:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUwNjEzMDA1NzM0WhcNMjUwNjIwMDA1NzM0WjAYMRYwFAYD VQQDEw02ODRiNzc3Zi02MjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy4eHYQ27azAXnj5f8iEIvfBLu9plJpv8Q/3rOiFpQv6A9csiYyXVHPrNH7X rBk8s+KDx8QUqXqWP9clolJpNjJtJ1O572Y2DQ/B6NHhUW3NdEhKDwMfjYODqnxU lEkZg+McZZUJk53Ylra5K9fw0DMTtTpJyDPxQyEzyON0VJz96cQqFHtLHHqghuS3 ulJAiWp+giD2SHzo4oKE86+egHc6pUkhR9tkOALKnsmC6Cm3gOPeanjnfaUuCqUp MXEtc8CY1w326Nda1qC1w179eRkSmshjzv8PGPkj0CC/Qygxz+kaCLGCJ0Ppfduq kVnJw88hbEq1bs0lbD3qtYPg4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHp5VfPB 2fSA1LUaH6myv/PoQrajMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDLlFTjRxUYjFrn5luhqHPLjz4I3ou2LhbSW43CmshSFZBEoJE8S55 Iy+r1+o1xFM+gSLfHLyhJX5wSM1Q6hinyyyUt4AMHQYyr1SbPDQSbh0cpOJMmplg gKEQqPKaK+m5RpgBCZ8zdwl46TLrd4N025yHx7haV+9qj5iPdhgx/k7rvgq5pT5W ec2QzvDnHJLp186Fw0xslmAyBM5OqksEJg3ZUsCTm3NpzqwkbKCyoek6KC5TWKyH 3M5OdTaasKzv2RV3Pssio9g8Svn24KKjh4a97asC/gD41GqatT97gQDd2jg09qIs 3H1MTu9NzFC+dj/lsxO8/7B6fAgtXBtR -----END CERTIFICATE-----Generated at Sat Jun 14 19:23:14 2025 by rpki-client