$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft File: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft (raw, json) Hash identifier: 8rXGLPQ86Z4HQrN2+dTRflt8L91Hf/XzlHBBi+h1aQI= Subject key identifier: D1:C6:E4:B9:C2:37:00:2C:DF:F1:E7:67:28:0E:2B:23:E6:2E:AA:AA Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 078A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft Manifest number: 0784 Signing time: Wed 18 Jun 2025 21:17:19 +0000 Manifest this update: Wed 18 Jun 2025 21:17:19 +0000 Manifest next update: Wed 25 Jun 2025 21:17:19 +0000 Files and hashes: 1: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl (hash: Ae8km92pEhPemRiL6ZIt9SoXktrINu88iVVxc7XQV6U=) 2: B89D979A13F411EB8BF49553C4F9AE02.roa (hash: uA//4m9RZCjXQutR/xTMIccaTwt8NsdxBBjUfw2F3iI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1930 (0x78a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Jun 18 21:17:19 2025 GMT Not After : Jun 25 21:17:19 2025 GMT Subject: CN=68532cdf-0830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fd:c0:4c:db:14:17:c0:d3:fa:b3:bb:88:f3: fa:7d:73:0c:1a:48:05:32:e7:af:4b:a5:18:28:f6: 9c:3c:c0:c8:54:33:a2:0e:4f:43:26:6a:d7:6c:6e: 39:d8:81:44:f1:7a:0a:b8:a5:fd:70:9c:bc:1a:7b: 9b:66:91:0f:13:f6:19:1d:ff:76:25:6b:db:44:96: 2a:34:78:7c:13:5e:14:2a:a0:22:7e:99:e4:dc:ed: 3e:76:8f:0b:93:bb:1c:82:34:04:cf:38:fa:3c:2f: e2:b5:93:78:14:f1:99:b5:c3:75:28:ad:ba:e0:8b: fa:b7:a0:b5:24:c7:63:8d:f0:97:3a:2d:83:1d:3a: 8f:a2:53:0a:1c:3e:83:20:8f:f4:97:6b:74:9e:4c: 79:62:b0:01:2c:ed:63:ed:f9:39:4f:3e:04:a7:13: b7:5d:d2:60:a7:6b:ea:b4:be:f8:b1:d0:7e:6d:90: 36:4e:cf:2d:ca:79:f2:fe:12:6d:29:97:10:c5:48: 54:31:b5:a0:70:71:bc:8f:99:a5:55:60:63:3d:88: 4d:35:1a:13:a1:b4:83:ed:06:d1:7f:27:2f:de:62: 91:16:29:2f:93:0f:30:4a:0d:40:cc:ff:2f:d3:ad: 10:0f:9e:23:4e:2d:e1:5c:4c:b8:dd:6f:59:52:31: fd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C6:E4:B9:C2:37:00:2C:DF:F1:E7:67:28:0E:2B:23:E6:2E:AA:AA X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:90:6a:a2:52:ca:30:9b:e3:89:c4:45:11:9b:aa:03:9c:96: bb:26:6b:0b:51:e7:cd:8a:9a:76:46:48:38:56:b7:56:eb:20: 8e:fa:e0:fd:71:ab:c1:e8:5d:fd:ac:32:79:ef:38:29:b8:75: 58:0d:64:a9:09:a4:1c:a0:e5:5a:44:a4:f2:81:35:35:f2:d1: 1d:91:99:4a:5d:17:5a:98:11:1a:23:15:57:c2:5c:d4:6b:8f: 57:2b:2b:bb:dd:73:ac:74:39:66:56:27:b5:9a:d5:fb:f4:a8: 17:01:6c:9c:51:04:98:5f:6f:70:5b:ee:f9:8a:14:a3:6f:2c: cc:cb:fb:54:68:7e:d7:39:35:4f:24:b3:1e:8b:05:48:9b:da: 6d:17:0a:4b:a1:95:91:9f:89:e1:c7:b2:0e:b5:da:9f:b3:af: 7a:98:56:39:e9:67:36:39:47:8d:79:d0:30:c5:d0:14:b5:94: f9:47:8c:ed:14:6f:0e:f9:f0:ea:44:0a:9e:ba:68:cd:30:a3: 52:58:99:95:e3:35:6c:dd:16:ae:cc:5c:1a:83:2c:85:9d:5b: ec:62:3d:d9:f9:40:63:fa:8b:d3:81:85:c3:e1:1f:b6:cb:6d: 03:0d:85:90:14:2b:38:dc:dc:10:7c:e4:03:67:73:86:15:83: ea:43:be:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjUwNjE4MjExNzE5WhcNMjUwNjI1MjExNzE5WjAYMRYwFAYD VQQDEw02ODUzMmNkZi0wODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1P3ATNsUF8DT+rO7iPP6fXMMGkgFMuevS6UYKPacPMDIVDOiDk9DJmrXbG45 2IFE8XoKuKX9cJy8GnubZpEPE/YZHf92JWvbRJYqNHh8E14UKqAifpnk3O0+do8L k7scgjQEzzj6PC/itZN4FPGZtcN1KK264Iv6t6C1JMdjjfCXOi2DHTqPolMKHD6D II/0l2t0nkx5YrABLO1j7fk5Tz4EpxO3XdJgp2vqtL74sdB+bZA2Ts8tynny/hJt KZcQxUhUMbWgcHG8j5mlVWBjPYhNNRoTobSD7QbRfycv3mKRFikvkw8wSg1AzP8v 060QD54jTi3hXEy43W9ZUjH96QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHG5LnC NwAs3/HnZygOKyPmLqqqMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVCRi9GMTMzQkRBQzEzRjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1v RzNhT2lSQ0ZNVVRmSHVWVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2kGqiUsowm+OJxEURm6oDnJa7JmsLUefNipp2Rkg4VrdW6yCO+uD9 cavB6F39rDJ57zgpuHVYDWSpCaQcoOVaRKTygTU18tEdkZlKXRdamBEaIxVXwlzU a49XKyu73XOsdDlmVie1mtX79KgXAWycUQSYX29wW+75ihSjbyzMy/tUaH7XOTVP JLMeiwVIm9ptFwpLoZWRn4nhx7IOtdqfs696mFY56Wc2OUeNedAwxdAUtZT5R4zt FG8O+fDqRAqeumjNMKNSWJmV4zVs3RauzFwagyyFnVvsYj3Z+UBj+ovTgYXD4R+2 y20DDYWQFCs43NwQfOQDZ3OGFYPqQ76C -----END CERTIFICATE-----Generated at Thu Jun 19 05:54:16 2025 by rpki-client