$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft File: xvdY7N3EybD3LwZcNa1UaXQycRs.mft (raw, json) Hash identifier: fGDW6F1T8hNX8WRUcPtIx6iIonk0hdM9RSWjMU4/yVo= Subject key identifier: B8:E1:11:5F:72:E1:54:76:7B:D0:8C:87:8A:D0:D4:8F:4E:EE:65:A7 Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft Manifest number: 37 Signing time: Sun 15 Jun 2025 06:41:00 +0000 Manifest this update: Sun 15 Jun 2025 06:40:59 +0000 Manifest next update: Sun 22 Jun 2025 06:40:59 +0000 Files and hashes: 1: xvdY7N3EybD3LwZcNa1UaXQycRs.crl (hash: ukB1Ky6pGUvlueOQVKpavoIVDuM0lspUvfYi+19YrAs=) 2: 8F9B067EF96011EF89D9E37DC4F9AE02.roa (hash: C4f1DGgr88zvtZI01sEk4X9+P0XVPyTaQ0X1w0t3gJE=) 3: 8F350932F96011EF89D9E37DC4F9AE02.roa (hash: EiButkFaJmxH2f9GmfvH+3lmi0BQDdaX71kUaJ4cIPE=) 4: 8EB1E9BCF96011EF89D9E37DC4F9AE02.roa (hash: ckgf3xD+pqJNwNoVSxIFNqkicDtbDleG9nDMcEDte9Q=) 5: 8E321A2AF96011EF89D9E37DC4F9AE02.roa (hash: /HkRVF6I9zCORm5qImKmX7p9VJKW5R3gl/2f3lxVKBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Jun 15 06:40:59 2025 GMT Not After : Jun 22 06:40:59 2025 GMT Subject: CN=684e6afb-34e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:c7:46:24:ec:92:8c:4d:b7:e3:44:7a:5e: 2a:46:db:6a:4d:63:35:02:a3:a9:98:91:5d:7f:d3: 8c:ed:c6:7f:66:c1:89:57:5a:05:7c:04:5f:ad:58: b1:04:16:04:21:38:36:82:c8:e7:f4:56:5e:fa:e3: fc:a6:fd:8e:ed:d0:62:e5:d0:4a:2d:55:4e:e4:e6: 7c:19:61:79:87:dd:2f:8b:72:74:bc:6b:00:14:fe: c7:1f:8d:2f:a0:2c:d9:e6:bd:01:34:02:ca:7d:5f: 7d:01:d6:77:32:b0:d4:7b:c9:f3:3e:04:19:3f:0d: f3:ee:f8:a8:c1:37:e3:4b:f1:72:55:b0:22:77:cd: 38:45:e1:db:da:2b:ac:8a:1a:b1:e8:11:17:41:69: 34:9f:b2:57:1a:4c:a1:3e:e0:cb:e7:7f:60:95:32: 02:40:2d:82:aa:3d:ea:c7:2e:9e:cd:1d:6d:62:3c: 41:34:d1:8a:96:f6:43:3a:8b:4a:b0:76:6d:8d:25: 66:ff:86:d4:b1:bb:86:26:0f:fb:c5:d2:d6:05:5f: 79:68:c1:27:14:6e:a5:f0:5a:79:b4:f2:22:43:ea: 85:d1:24:8e:00:4d:0f:d2:75:8e:10:a5:f3:25:78: 84:28:ba:59:4e:41:33:c9:1d:9c:6d:84:0f:f6:7c: 74:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E1:11:5F:72:E1:54:76:7B:D0:8C:87:8A:D0:D4:8F:4E:EE:65:A7 X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:d8:4c:d8:a0:0b:d3:1f:04:a9:93:55:69:84:45:81:97:de: f8:a6:bb:45:33:1d:21:44:e9:7c:c5:91:a3:bd:f6:3c:ef:1f: 12:42:e3:64:a1:1c:1e:35:e4:e0:ea:1b:22:d4:dc:80:ec:e0: fe:1f:9c:db:b4:9a:e5:19:7c:27:30:fe:c7:5c:0e:b5:fb:1b: f6:b4:a4:ca:69:1d:00:b0:82:9d:67:e5:2f:01:fd:6f:35:1f: 50:07:c9:65:40:12:a8:f6:29:20:af:24:8b:57:4f:95:99:79: b9:5b:45:60:c4:d1:d0:06:ff:22:99:63:6a:4c:d8:77:07:b9: 65:01:ba:79:8d:79:bc:47:f3:89:ae:a8:9a:dd:4a:22:7e:2e: c2:8f:e1:83:8b:51:0a:63:dd:e0:18:b9:6f:9d:27:57:df:3d: e0:fd:a6:e0:42:70:ce:40:35:dd:b5:79:be:19:a3:50:e2:69: 86:aa:31:9a:9f:3b:74:2a:72:6e:b2:b0:9a:ab:7b:af:87:7b: 84:6d:e4:a9:e1:5e:06:10:78:7e:ef:20:de:4c:3d:a2:51:fb: 48:03:c8:8d:e3:bf:a7:0c:6a:b6:4a:b4:61:8d:9d:b8:cd:87: c8:97:e4:ef:fd:b1:6e:11:9b:08:76:76:ce:28:af:be:0a:39: a9:cf:85:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OERGNTExMC8GA1UEBRMoQzZGNzU4RUNEREM0QzlCMEY3MkYwNjVDMzVBRDU0Njk3 NDMyNzExQjAeFw0yNTA2MTUwNjQwNTlaFw0yNTA2MjIwNjQwNTlaMBgxFjAUBgNV BAMTDTY4NGU2YWZiLTM0ZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2JcdGJOySjE2340R6XipG22pNYzUCo6mYkV1/04ztxn9mwYlXWgV8BF+tWLEE FgQhODaCyOf0Vl764/ym/Y7t0GLl0EotVU7k5nwZYXmH3S+LcnS8awAU/scfjS+g LNnmvQE0Asp9X30B1ncysNR7yfM+BBk/DfPu+KjBN+NL8XJVsCJ3zThF4dvaK6yK GrHoERdBaTSfslcaTKE+4Mvnf2CVMgJALYKqPerHLp7NHW1iPEE00YqW9kM6i0qw dm2NJWb/htSxu4YmD/vF0tYFX3lowScUbqXwWnm08iJD6oXRJI4ATQ/SdY4QpfMl eIQoullOQTPJHZxthA/2fHTrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuOERX3Lh VHZ70IyHitDUj07uZacwHwYDVR0jBBgwFoAUxvdY7N3EybD3LwZcNa1UaXQycRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4REY1LzMxRTBGMTZBRjk2 MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHZkWTdOM0V5YkQzTHdaY05hMVVhWFF5Y1JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 REY1LzMxRTBGMTZBRjk2MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJE M0x3WmNOYTFVYVhReWNScy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM3YTNigC9MfBKmTVWmERYGX3vimu0UzHSFE6XzFkaO99jzvHxJC42Sh HB415ODqGyLU3IDs4P4fnNu0muUZfCcw/sdcDrX7G/a0pMppHQCwgp1n5S8B/W81 H1AHyWVAEqj2KSCvJItXT5WZeblbRWDE0dAG/yKZY2pM2HcHuWUBunmNebxH84mu qJrdSiJ+LsKP4YOLUQpj3eAYuW+dJ1ffPeD9puBCcM5ANd21eb4Zo1DiaYaqMZqf O3Qqcm6ysJqre6+He4Rt5KnhXgYQeH7vIN5MPaJR+0gDyI3jv6cMarZKtGGNnbjN h8iX5O/9sW4Rmwh2ds4or74KOanPhcg= -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:33 2025 by rpki-client