$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: 17ARIjEyuOA86NkQH+W7L8ECM7tLBVopQGAxpK4E37o= Subject key identifier: D9:B4:86:29:6A:6F:13:0B:86:08:3D:CF:C6:7E:F2:AD:71:21:4F:5B Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 01BD Signing time: Tue 17 Jun 2025 02:11:35 +0000 Manifest this update: Tue 17 Jun 2025 02:11:35 +0000 Manifest next update: Tue 24 Jun 2025 02:11:35 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: g+zwxQKI+6N2Jm20aUoL6L8xZPxILwfEEfApDVNnyLA=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: 9FynllD8H+NI8HSEXg9Jjmq002CiTaGo7ZssucPUw/c=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: pf/aq5LQ2SyN9nQK//wVXk1HeFtnOQFOhE/br9mZqh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Jun 17 02:11:35 2025 GMT Not After : Jun 24 02:11:35 2025 GMT Subject: CN=6850ced7-cb8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9c:d2:f0:c5:1e:c5:84:8d:43:62:c9:7e:70: 23:95:84:8b:08:5d:11:67:5b:fa:f4:ac:f1:3d:f4: 69:5e:3c:68:f4:58:cb:e8:98:d0:5f:d7:27:f4:ed: ba:12:7a:69:9b:3d:35:13:a5:0e:88:49:96:d1:69: 96:07:70:f1:35:2e:cb:91:6c:32:1d:ca:8f:90:99: 94:d1:4a:9d:76:b3:8d:f2:37:49:25:c5:f4:24:66: a9:74:e8:50:34:d0:b4:01:de:19:9b:00:93:d2:e5: 55:d0:12:54:0f:bc:e5:85:0a:c2:1f:3b:8c:0a:63: 6f:bd:eb:24:3f:72:b0:e1:25:b3:65:10:60:08:41: e7:eb:9b:d5:cd:57:44:0a:94:7e:a0:51:29:80:f8: 19:e1:5e:d1:ed:23:30:9e:c6:f0:6f:a8:cd:76:66: c4:02:7f:1c:3e:90:e5:e6:cb:0c:7c:b8:78:3f:d6: fb:0e:a9:b7:4a:04:79:4f:bd:36:1c:3b:14:e9:03: 8a:19:f0:57:5a:88:28:cf:2b:db:b7:b1:5b:14:9b: 45:70:a0:2d:ba:67:82:da:28:42:26:ad:a6:22:f9: 05:81:01:a7:af:1a:03:48:ce:07:fa:63:e4:88:7b: f3:ae:5f:3f:b9:fb:bc:2c:76:c4:cc:33:f4:c0:58: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B4:86:29:6A:6F:13:0B:86:08:3D:CF:C6:7E:F2:AD:71:21:4F:5B X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:af:1d:80:5d:2d:87:60:63:62:19:30:e1:84:e9:d3:e8:ec: 41:cf:6d:02:4e:6e:3c:24:58:0c:95:a4:da:a1:2b:7e:4a:12: 11:49:d2:be:8a:8b:91:e6:ac:19:5f:a4:be:cd:e4:0f:6e:2d: 0e:5d:5e:85:aa:3e:65:b0:0e:10:62:01:75:0d:46:19:5e:2c: 9d:d7:00:a7:56:89:3b:e1:83:7a:61:b6:c5:57:af:16:91:67: e9:76:22:f8:82:8b:e9:ce:d0:c2:25:6d:67:56:01:af:51:e3: ef:ca:3a:b9:5d:62:1e:f7:b7:70:2e:b7:3f:71:ff:26:67:2e: be:a0:5c:cd:e4:50:19:7b:a9:90:6b:7f:4b:5e:a6:dc:df:8c: ba:b1:22:c7:08:df:ad:fc:ed:6e:8a:93:19:fb:02:f7:20:3b: 31:33:54:04:c9:7d:e6:fb:e0:aa:0a:e4:4b:08:9c:15:7d:bc: 83:1f:a1:3a:e9:bb:3b:de:e1:5b:15:0d:08:00:e6:c3:19:c0: 55:34:00:a0:94:86:c3:a8:e5:59:21:12:14:2d:57:15:b7:cb: 6a:1a:1c:69:d6:18:c8:25:92:1c:ad:a4:24:50:76:b8:43:03: 39:79:93:fa:83:d7:a9:a5:37:b3:9f:bb:20:c5:3a:31:94:9d: 6a:77:0e:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUwNjE3MDIxMTM1WhcNMjUwNjI0MDIxMTM1WjAYMRYwFAYD VQQDEw02ODUwY2VkNy1jYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JzS8MUexYSNQ2LJfnAjlYSLCF0RZ1v69KzxPfRpXjxo9FjL6JjQX9cn9O26 Enppmz01E6UOiEmW0WmWB3DxNS7LkWwyHcqPkJmU0UqddrON8jdJJcX0JGapdOhQ NNC0Ad4ZmwCT0uVV0BJUD7zlhQrCHzuMCmNvveskP3Kw4SWzZRBgCEHn65vVzVdE CpR+oFEpgPgZ4V7R7SMwnsbwb6jNdmbEAn8cPpDl5ssMfLh4P9b7Dqm3SgR5T702 HDsU6QOKGfBXWogozyvbt7FbFJtFcKAtumeC2ihCJq2mIvkFgQGnrxoDSM4H+mPk iHvzrl8/ufu8LHbEzDP0wFgmiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNm0hilq bxMLhgg9z8Z+8q1xIU9bMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/rx2AXS2HYGNiGTDhhOnT6OxBz20CTm48JFgMlaTaoSt+ShIRSdK+ iouR5qwZX6S+zeQPbi0OXV6Fqj5lsA4QYgF1DUYZXiyd1wCnVok74YN6YbbFV68W kWfpdiL4govpztDCJW1nVgGvUePvyjq5XWIe97dwLrc/cf8mZy6+oFzN5FAZe6mQ a39LXqbc34y6sSLHCN+t/O1uipMZ+wL3IDsxM1QEyX3m++CqCuRLCJwVfbyDH6E6 6bs73uFbFQ0IAObDGcBVNACglIbDqOVZIRIULVcVt8tqGhxp1hjIJZIcraQkUHa4 QwM5eZP6g9eppTezn7sgxToxlJ1qdw5Y -----END CERTIFICATE-----Generated at Wed Jun 18 06:35:43 2025 by rpki-client