$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: wonyBoFcSq2vrJy/QTbxiT1aQIAN45CE5PpPprBXYdY= Subject key identifier: 49:95:01:2B:F7:24:A2:9A:D0:EB:A7:B5:00:29:C7:2F:AB:D3:5A:84 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 22EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 22D4 Signing time: Sat 14 Jun 2025 15:49:38 +0000 Manifest this update: Sat 14 Jun 2025 15:49:38 +0000 Manifest next update: Sat 21 Jun 2025 15:49:38 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: GTiGs7KtQjH5GypHsJtf8wTYo/8jb8Ka4L7JScs650s=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8942 (0x22ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Jun 14 15:49:38 2025 GMT Not After : Jun 21 15:49:38 2025 GMT Subject: CN=684d9a12-a020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:70:37:fc:5a:10:39:8c:ff:dd:19:98:a7: d2:9a:7a:68:17:6f:3f:2c:0f:21:e8:f0:48:d4:e0: 6b:89:d2:d6:57:bc:4f:7d:6f:12:a6:de:5a:9f:1e: e6:b9:6e:ce:1f:82:7e:8a:61:c3:d4:c9:47:42:0c: cc:6f:6f:22:ac:50:6a:8e:b0:e5:4f:1a:45:0d:e4: 58:62:3f:99:8a:3e:db:a6:68:73:f1:c6:56:a2:8d: c5:f8:08:b9:fc:1a:fc:31:54:ab:c5:64:36:8e:3d: c4:2e:81:bf:ce:8b:bd:01:1c:cc:78:7b:a9:4e:2d: 46:c9:a4:58:6e:77:a8:24:b5:c9:90:7d:51:9b:60: 86:30:80:56:de:c9:ed:e2:d6:89:eb:32:4c:b8:ed: 09:b6:e1:50:e9:d3:79:2e:b4:e9:a0:3e:52:20:0e: db:bb:51:dc:75:87:54:f3:27:04:63:2b:f8:eb:f0: 4d:af:f5:8a:80:7d:fd:e7:81:71:8a:58:a3:d9:3a: 0a:35:6f:6f:4e:f7:a2:f6:bf:84:32:b9:f0:7f:c4: f7:6f:ab:bf:ba:8e:6d:8f:13:a0:f0:36:c0:b2:9a: 86:06:95:57:0c:34:82:b4:23:b2:b8:9c:29:14:3d: 01:f8:fe:08:7a:8e:82:c8:a6:4b:dc:5c:ef:ba:ef: ef:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:95:01:2B:F7:24:A2:9A:D0:EB:A7:B5:00:29:C7:2F:AB:D3:5A:84 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0f:db:96:11:e0:69:c0:e0:3e:ea:30:15:1e:21:80:1e:43: c5:d9:19:27:e4:19:56:16:2d:d5:94:09:ad:50:61:29:22:e2: 04:0c:11:4c:0e:2c:fd:c0:76:93:a0:95:cc:55:fb:d4:db:98: 62:1e:24:f2:9c:f5:20:d4:4f:9f:2c:f3:f6:b2:df:01:1d:6c: 32:7a:a9:00:3e:3f:1e:03:6c:6b:ce:47:9b:d9:cd:97:9f:5a: c2:c6:52:00:bd:53:50:00:6b:a8:21:0c:b1:e0:f8:6f:1b:e3: 81:63:15:d1:72:b6:dd:73:a5:17:88:7d:9d:fe:f1:4b:aa:1c: 33:70:fa:a6:f4:a6:5c:2c:65:e7:a9:55:54:c8:ef:d7:e9:a2: c6:d5:ac:f9:82:af:04:d2:eb:4e:ae:26:11:3a:d2:73:d0:4d: c7:5c:d0:b9:60:4c:cd:f5:c1:1d:62:18:dd:31:9b:7a:95:74: a0:ad:7d:78:b0:0a:0e:90:de:53:70:5e:0a:e1:71:3a:b8:95: 5e:b3:2e:00:99:e3:fe:cc:17:eb:43:f0:b6:ea:e9:37:da:96: 63:a4:9f:11:df:3a:d5:16:f4:78:d0:07:67:dd:e6:3e:6d:c5: e5:72:1b:a1:bb:4f:33:5a:78:ca:3a:eb:e8:fa:d2:66:07:49: 5a:87:8f:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwNjE0MTU0OTM4WhcNMjUwNjIxMTU0OTM4WjAYMRYwFAYD VQQDEw02ODRkOWExMi1hMDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIJwN/xaEDmM/90ZmKfSmnpoF28/LA8h6PBI1OBridLWV7xPfW8Spt5anx7m uW7OH4J+imHD1MlHQgzMb28irFBqjrDlTxpFDeRYYj+Zij7bpmhz8cZWoo3F+Ai5 /Br8MVSrxWQ2jj3ELoG/zou9ARzMeHupTi1GyaRYbneoJLXJkH1Rm2CGMIBW3snt 4taJ6zJMuO0JtuFQ6dN5LrTpoD5SIA7bu1HcdYdU8ycEYyv46/BNr/WKgH3954Fx ilij2ToKNW9vTvei9r+EMrnwf8T3b6u/uo5tjxOg8DbAspqGBpVXDDSCtCOyuJwp FD0B+P4Ieo6CyKZL3Fzvuu/vgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmVASv3 JKKa0OuntQApxy+r01qEMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHD9uWEeBpwOA+6jAVHiGAHkPF2Rkn5BlWFi3VlAmtUGEpIuIEDBFM Diz9wHaToJXMVfvU25hiHiTynPUg1E+fLPP2st8BHWwyeqkAPj8eA2xrzkeb2c2X n1rCxlIAvVNQAGuoIQyx4PhvG+OBYxXRcrbdc6UXiH2d/vFLqhwzcPqm9KZcLGXn qVVUyO/X6aLG1az5gq8E0utOriYROtJz0E3HXNC5YEzN9cEdYhjdMZt6lXSgrX14 sAoOkN5TcF4K4XE6uJVesy4AmeP+zBfrQ/C26uk32pZjpJ8R3zrVFvR40Adn3eY+ bcXlchuhu08zWnjKOuvo+tJmB0lah4+e -----END CERTIFICATE-----Generated at Sun Jun 15 09:45:12 2025 by rpki-client