$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: 7+f4LZechRPbkUuRuAUDhznU5i9Szna6yuM4ulfz4Mw= Subject key identifier: 93:4B:1B:30:2C:9F:1E:E5:5F:9F:C6:03:67:7C:F5:F8:3A:71:B9:AF Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 34AF Signing time: Sat 14 Jun 2025 14:19:24 +0000 Manifest this update: Sat 14 Jun 2025 14:19:24 +0000 Manifest next update: Sat 21 Jun 2025 14:19:24 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: m951OAwk9nr5ColcknplSeR6mbbepGmso4UU9R2ZHao=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13519 (0x34cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Jun 14 14:19:24 2025 GMT Not After : Jun 21 14:19:24 2025 GMT Subject: CN=684d84ec-a1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:81:a7:06:a9:a6:f7:61:f8:57:1e:38:54:7a: 13:ad:c7:0b:9d:87:68:c7:18:ea:d5:7f:69:22:46: 59:ac:a7:84:c0:5c:f6:8b:6b:2e:82:1a:d9:89:6d: 3c:6e:31:90:05:c8:a5:fe:ed:2c:69:43:8c:2d:de: 14:b3:db:91:95:eb:96:5c:ee:89:c4:5b:df:19:10: 2a:ca:ad:b9:f0:10:51:52:b2:45:83:b2:fb:de:97: cc:ca:a3:39:5b:96:a3:d5:da:dc:22:2b:8b:e7:ac: c9:d6:01:b6:15:5a:5e:67:7a:05:be:d0:84:5f:1d: 6f:ca:d3:b6:09:91:de:40:dd:a9:47:74:1a:09:87: 07:c7:da:a7:47:0b:a1:04:36:89:39:2b:cb:36:da: c6:4c:19:66:38:81:ad:b3:58:58:41:0d:1c:b1:34: a6:dd:8f:58:2c:2e:2a:1d:c0:34:de:43:1d:b6:50: 68:dd:7a:be:ea:e1:a8:d0:f4:34:d5:62:01:34:09: 2e:1b:5a:33:33:07:21:2b:77:1c:ab:7f:78:f7:41: 55:05:a9:d3:84:d2:45:2e:93:c9:65:04:3d:b9:42: a3:0b:30:0e:4e:0c:55:4d:9e:a9:a8:33:31:94:65: f3:ed:ec:26:86:12:13:da:b2:65:2f:0c:b9:9a:1d: 4f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4B:1B:30:2C:9F:1E:E5:5F:9F:C6:03:67:7C:F5:F8:3A:71:B9:AF X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:79:46:30:85:bc:d2:08:eb:95:3f:c4:ce:96:aa:2b:a8:a9: 44:30:b4:32:bd:64:b0:bd:49:c5:fe:99:14:38:ac:61:ee:52: f2:2c:36:bd:67:c3:0b:ab:ca:a9:10:46:fb:37:90:59:93:7c: 1b:c8:8b:1f:ac:c5:ca:de:8c:e9:51:39:43:f4:e8:bd:64:4c: d5:b8:12:90:18:7d:1a:11:24:d7:dc:0e:d0:06:5a:d9:a2:46: 63:77:3d:6a:f4:52:bd:1c:76:ef:d2:57:e7:25:01:96:27:d9: c2:b0:f0:41:5d:cb:48:7c:6e:d0:f5:86:e1:ef:20:04:d0:84: 76:6d:d6:f5:16:0a:8f:b0:31:0c:27:ce:24:3e:1d:1c:c3:b5: ae:6a:be:1e:54:eb:94:96:c7:df:f3:bb:88:8a:25:c4:b2:97: a3:8e:96:3a:ce:a4:27:10:b4:56:be:f3:6f:b4:dd:0c:7f:bc: 85:59:2a:af:7f:27:d8:a6:84:5c:46:54:f2:af:2f:13:4e:a7: 32:87:dd:34:8f:53:6e:7d:e1:6d:b1:9f:8d:3b:ce:20:fe:39: ef:50:53:a6:7f:08:be:6c:d8:05:c1:04:85:80:fd:8f:27:a4: 5d:98:fe:c1:5f:20:f3:00:b5:73:36:9e:d1:73:ac:ca:92:7a: bf:17:f3:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNjE0MTQxOTI0WhcNMjUwNjIxMTQxOTI0WjAYMRYwFAYD VQQDEw02ODRkODRlYy1hMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoGnBqmm92H4Vx44VHoTrccLnYdoxxjq1X9pIkZZrKeEwFz2i2sughrZiW08 bjGQBcil/u0saUOMLd4Us9uRleuWXO6JxFvfGRAqyq258BBRUrJFg7L73pfMyqM5 W5aj1drcIiuL56zJ1gG2FVpeZ3oFvtCEXx1vytO2CZHeQN2pR3QaCYcHx9qnRwuh BDaJOSvLNtrGTBlmOIGts1hYQQ0csTSm3Y9YLC4qHcA03kMdtlBo3Xq+6uGo0PQ0 1WIBNAkuG1ozMwchK3ccq39490FVBanThNJFLpPJZQQ9uUKjCzAOTgxVTZ6pqDMx lGXz7ewmhhIT2rJlLwy5mh1PTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNLGzAs nx7lX5/GA2d89fg6cbmvMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzeUYwhbzSCOuVP8TOlqorqKlEMLQyvWSwvUnF/pkUOKxh7lLyLDa9 Z8MLq8qpEEb7N5BZk3wbyIsfrMXK3ozpUTlD9Oi9ZEzVuBKQGH0aESTX3A7QBlrZ okZjdz1q9FK9HHbv0lfnJQGWJ9nCsPBBXctIfG7Q9Ybh7yAE0IR2bdb1FgqPsDEM J84kPh0cw7Wuar4eVOuUlsff87uIiiXEspejjpY6zqQnELRWvvNvtN0Mf7yFWSqv fyfYpoRcRlTyry8TTqcyh900j1NufeFtsZ+NO84g/jnvUFOmfwi+bNgFwQSFgP2P J6RdmP7BXyDzALVzNp7Rc6zKknq/F/Pn -----END CERTIFICATE-----Generated at Sat Jun 14 18:44:26 2025 by rpki-client