$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: y0Ujs7vBeqq156R1jTdjPXbkrjuk9k6Cm+8xeSRwHK4= Subject key identifier: E0:92:A9:80:B2:4E:0B:47:93:77:FC:6A:AF:B1:58:07:3F:BE:78:F2 Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 063E Signing time: Mon 16 Jun 2025 22:20:26 +0000 Manifest this update: Mon 16 Jun 2025 22:20:26 +0000 Manifest next update: Mon 23 Jun 2025 22:20:26 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: DK/N95dbu9UQPve2clKrEj6SxbuYQUWps8YKDNb7CTo=) 2: 6E1BCBC495BD11EB89199F37C4F9AE02.roa (hash: 6VtKNEIG9FeALH3s40nNCwARNeebdE67fF6D4UlnLsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Jun 16 22:20:26 2025 GMT Not After : Jun 23 22:20:26 2025 GMT Subject: CN=685098aa-f259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:9d:e1:db:a9:e5:3f:a0:56:13:f8:c4:db: cd:16:e9:9c:a7:1c:f2:ab:64:97:8e:c0:c2:5b:45: 37:45:48:55:78:6f:cc:82:6d:fb:d5:8d:63:45:a7: 88:ec:2a:50:06:17:b5:5a:f7:50:92:33:cf:62:6f: 62:7c:6f:12:43:fc:4e:20:d9:0d:27:d8:ef:96:fd: 95:bb:97:a8:df:63:de:82:3f:d8:34:5d:14:15:ed: d1:f6:13:dc:9a:b5:89:b7:ba:d7:cb:b0:dd:d1:e1: c3:6d:b7:f4:03:00:39:03:9e:0a:ef:d1:8e:92:b5: e3:bf:f8:cb:08:10:0f:a2:6b:e3:10:f0:69:c9:ab: 2f:97:1f:25:49:56:87:e1:08:2b:b6:91:eb:e5:2d: da:e4:24:78:69:22:03:f6:44:54:dd:48:ed:61:c2: 9f:e2:b3:ca:9c:5d:8c:8f:7c:da:51:df:51:2e:cd: 6f:66:f6:f8:65:d9:85:23:8e:5c:c2:19:24:2a:89: 94:a3:8a:e8:4d:d2:6c:56:a1:95:1a:a3:9c:b6:c7: b8:fb:df:db:ba:7b:ff:f5:6c:fd:aa:02:08:75:c9: c0:3a:f5:a6:d9:2c:4e:2e:59:88:7e:48:32:46:11: 4a:9c:2a:d1:12:ff:7c:c7:de:7d:1a:47:1e:7c:b8: aa:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:92:A9:80:B2:4E:0B:47:93:77:FC:6A:AF:B1:58:07:3F:BE:78:F2 X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:4c:3e:56:24:72:85:39:40:9e:48:bd:af:9c:74:fe:02:f5: 0d:67:cd:8c:e3:9b:90:9a:04:e1:f7:bf:81:d0:5c:5d:ae:59: f3:ea:b6:67:c5:39:1e:13:df:da:fe:ca:e0:db:f7:ab:74:c8: 5a:31:f6:37:10:74:a2:2e:30:e7:62:7d:f1:c9:7a:78:81:af: 92:04:22:d7:94:86:6b:00:5c:03:ad:44:4e:62:1f:79:de:2b: bd:19:6f:12:dd:28:23:0e:aa:ca:76:bc:cf:3c:00:6b:54:dd: a8:b7:6a:70:0e:e8:d9:d8:2d:37:ae:ee:b0:67:51:57:0c:45: 37:42:8d:29:a4:fc:3f:ef:13:c6:0f:fa:94:f4:cb:3f:2c:71: a8:c9:8e:01:ea:ee:56:8c:40:7e:42:27:4c:28:74:ee:85:7c: fa:d9:5e:fa:ff:10:86:7c:59:35:f0:fb:91:69:08:96:45:ad: d1:48:ea:6b:03:01:a1:dc:00:44:9e:4b:79:07:4b:01:ea:09: f3:b1:c1:67:ac:80:dd:06:89:f7:60:60:18:ce:cf:51:21:39: de:e0:91:e5:10:a1:ea:cb:53:21:4f:5b:b3:0d:13:8e:e7:e1: d1:25:73:35:3c:1e:a6:90:e5:ad:c9:e2:ad:1b:a4:8c:5f:88: 7a:dd:f6:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUwNjE2MjIyMDI2WhcNMjUwNjIzMjIyMDI2WjAYMRYwFAYD VQQDEw02ODUwOThhYS1mMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEOd4dup5T+gVhP4xNvNFumcpxzyq2SXjsDCW0U3RUhVeG/Mgm371Y1jRaeI 7CpQBhe1WvdQkjPPYm9ifG8SQ/xOINkNJ9jvlv2Vu5eo32Pegj/YNF0UFe3R9hPc mrWJt7rXy7Dd0eHDbbf0AwA5A54K79GOkrXjv/jLCBAPomvjEPBpyasvlx8lSVaH 4QgrtpHr5S3a5CR4aSID9kRU3UjtYcKf4rPKnF2Mj3zaUd9RLs1vZvb4ZdmFI45c whkkKomUo4roTdJsVqGVGqOctse4+9/bunv/9Wz9qgIIdcnAOvWm2SxOLlmIfkgy RhFKnCrREv98x959GkcefLiqhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCSqYCy TgtHk3f8aq+xWAc/vnjyMB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/TD5WJHKFOUCeSL2vnHT+AvUNZ82M45uQmgTh97+B0Fxdrlnz6rZn xTkeE9/a/srg2/erdMhaMfY3EHSiLjDnYn3xyXp4ga+SBCLXlIZrAFwDrUROYh95 3iu9GW8S3SgjDqrKdrzPPABrVN2ot2pwDujZ2C03ru6wZ1FXDEU3Qo0ppPw/7xPG D/qU9Ms/LHGoyY4B6u5WjEB+QidMKHTuhXz62V76/xCGfFk18PuRaQiWRa3RSOpr AwGh3ABEnkt5B0sB6gnzscFnrIDdBon3YGAYzs9RITne4JHlEKHqy1MhT1uzDROO 5+HRJXM1PB6mkOWtyeKtG6SMX4h63fY4 -----END CERTIFICATE-----Generated at Tue Jun 17 23:34:38 2025 by rpki-client