$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: bHMR05JD5F4vxWOz8dH4TOkI+jTkoq3Mwpt5ZnJ9w6U= Subject key identifier: 3B:39:BB:0B:F1:BD:AA:AA:CB:94:1F:01:74:AA:33:ED:03:96:44:51 Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 13E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 13DC Signing time: Thu 12 Jun 2025 16:52:54 +0000 Manifest this update: Thu 12 Jun 2025 16:52:54 +0000 Manifest next update: Thu 19 Jun 2025 16:52:54 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: V7496QVJbxW5jzlWiNJD6yU8X0VlwOjtHu7B24FT7DQ=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: dlJ7zH1d3oXPs3S0YirZQi1hSZzUrfDhpzP6MZkDSDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5095 (0x13e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Jun 12 16:52:54 2025 GMT Not After : Jun 19 16:52:54 2025 GMT Subject: CN=684b05e6-3c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1e:0b:44:8d:77:89:88:39:cc:c9:d2:0c:96: 47:4f:17:ef:d2:76:fc:a5:37:0a:a4:d9:93:15:2f: 95:ad:45:8f:2d:ab:bc:24:71:ab:9b:43:64:8d:18: 8b:30:8a:f1:4b:4e:d6:56:a0:b2:90:e6:7e:f7:19: fe:d0:97:7b:27:f2:cd:af:7f:cc:c8:d1:11:eb:4a: db:60:78:73:80:8c:4d:bc:69:ae:39:25:5a:4c:c6: 6e:42:b3:76:50:87:fa:65:82:3f:09:c9:b6:d8:ae: 20:77:5d:a8:d4:9c:11:36:5b:ea:aa:de:44:4d:a8: 8b:6f:3f:ec:e7:32:e4:55:77:35:1d:de:07:e7:4e: ae:25:1d:e7:b0:03:85:e6:f4:3e:fa:5a:ee:49:a1: 53:4d:f2:e0:5b:c6:e0:49:27:ce:53:eb:f5:e8:21: 76:b7:39:0b:aa:9f:5e:7d:b6:2c:68:3f:53:04:55: 42:a9:48:a8:f0:23:a2:1d:df:76:34:1e:9f:6a:48: c1:04:1a:f0:59:c3:74:8f:bb:9d:00:d3:43:a4:57: e7:b5:c0:fc:f4:8b:4f:a3:a0:ba:32:91:e0:ae:0a: 0b:cf:1d:ed:31:f0:62:ee:2f:86:f5:0e:6b:d7:77: 57:f2:af:61:84:4d:4c:e1:c4:67:49:22:11:f4:48: 36:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:39:BB:0B:F1:BD:AA:AA:CB:94:1F:01:74:AA:33:ED:03:96:44:51 X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e2:d6:82:66:b4:e3:46:d6:9d:f5:68:38:62:0e:d0:e6:78: 26:6c:35:9d:aa:1d:51:f6:d5:c4:7c:ab:4d:98:02:7d:ce:b6: 3a:2c:e7:6f:60:5a:b8:53:21:c5:5c:73:8e:d7:70:72:dc:eb: 48:ed:78:71:94:d9:24:10:38:9c:af:de:41:32:e8:5e:26:a1: 09:d7:8f:51:1d:c9:91:d9:35:bf:35:ff:1b:1e:19:b4:d4:79: ea:c8:fd:5d:1e:83:3f:70:77:4d:58:bf:78:cf:52:b4:62:e3: f6:20:e5:67:9e:e7:38:dc:84:5f:60:0f:6e:8c:58:d6:c8:f4: d5:0f:f9:f4:cb:80:3b:a3:40:17:04:5e:21:ff:22:54:b7:79: e0:da:cc:62:66:be:97:f0:d3:db:e4:68:81:35:4c:49:ca:7a: 2e:9c:74:43:b9:79:29:fa:a2:99:30:93:b2:89:cf:32:6a:26: 68:54:e4:f9:61:46:c5:8a:bd:d5:ae:a1:ec:0c:d4:d9:ea:5d: b1:d0:6f:ec:cc:cc:ae:6e:55:88:9e:8e:b9:6b:a6:34:b7:44: a5:a9:c9:cc:6e:6e:ce:54:6a:66:8c:be:59:43:5f:16:89:e6: 1b:86:0f:19:93:ce:c7:fb:de:ea:c1:f9:32:3d:70:89:49:66: 53:aa:be:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUwNjEyMTY1MjU0WhcNMjUwNjE5MTY1MjU0WjAYMRYwFAYD VQQDEw02ODRiMDVlNi0zYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0x4LRI13iYg5zMnSDJZHTxfv0nb8pTcKpNmTFS+VrUWPLau8JHGrm0NkjRiL MIrxS07WVqCykOZ+9xn+0Jd7J/LNr3/MyNER60rbYHhzgIxNvGmuOSVaTMZuQrN2 UIf6ZYI/Ccm22K4gd12o1JwRNlvqqt5ETaiLbz/s5zLkVXc1Hd4H506uJR3nsAOF 5vQ++lruSaFTTfLgW8bgSSfOU+v16CF2tzkLqp9efbYsaD9TBFVCqUio8COiHd92 NB6fakjBBBrwWcN0j7udANNDpFfntcD89ItPo6C6MpHgrgoLzx3tMfBi7i+G9Q5r 13dX8q9hhE1M4cRnSSIR9Eg2twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs5uwvx vaqqy5QfAXSqM+0DlkRRMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh4taCZrTjRtad9Wg4Yg7Q5ngmbDWdqh1R9tXEfKtNmAJ9zrY6LOdv YFq4UyHFXHOO13By3OtI7XhxlNkkEDicr95BMuheJqEJ149RHcmR2TW/Nf8bHhm0 1HnqyP1dHoM/cHdNWL94z1K0YuP2IOVnnuc43IRfYA9ujFjWyPTVD/n0y4A7o0AX BF4h/yJUt3ng2sxiZr6X8NPb5GiBNUxJynounHRDuXkp+qKZMJOyic8yaiZoVOT5 YUbFir3VrqHsDNTZ6l2x0G/szMyublWIno65a6Y0t0SlqcnMbm7OVGpmjL5ZQ18W ieYbhg8Zk87H+97qwfkyPXCJSWZTqr6t -----END CERTIFICATE-----Generated at Sat Jun 14 19:05:46 2025 by rpki-client