$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: 7KL46JtS4UBP2oYHQJN7Qso0S8tQF2sUNqf1HXMpE3Y= Subject key identifier: 3F:EB:E5:2A:D8:5B:2E:FA:8C:7A:43:E2:D9:74:6C:50:83:E3:C2:95 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: E7 Signing time: Sat 21 Jun 2025 04:30:49 +0000 Manifest this update: Sat 21 Jun 2025 04:30:49 +0000 Manifest next update: Sat 28 Jun 2025 04:30:49 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: I9d1h7aXdmMEAWTBirw2q3SupYJNVno5nncSKP5jnHM=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 04:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Jun 21 04:30:49 2025 GMT Not After : Jun 28 04:30:49 2025 GMT Subject: CN=68563579-4e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:7a:de:8d:ed:21:77:68:c0:31:60:42:fb: 4d:6d:82:a4:94:46:ce:83:a4:d0:ef:20:17:a5:ad: 26:bc:50:17:86:c2:fc:8c:3a:5a:dd:13:07:75:3f: dc:0a:8f:d5:8c:7e:57:bd:25:e7:ca:74:e2:a6:ce: 61:bc:9a:63:4d:ec:ef:ba:93:dc:38:e2:6b:67:ec: 54:68:15:e9:85:08:b3:22:0e:1d:8e:e9:a5:5b:4e: 32:28:48:6b:48:e2:1d:75:5e:cd:9a:3b:eb:65:95: bc:8c:c7:d1:b2:29:7a:24:0f:8e:6e:10:5b:ac:f4: d3:49:66:6b:59:16:28:f5:8a:2a:bb:69:f7:45:25: 83:99:04:50:c7:b9:51:17:df:df:b6:e8:f0:c1:a6: 43:c0:b4:f6:6b:a6:95:cf:53:47:db:3e:37:83:f6: 81:13:d5:6d:e1:e2:db:f8:18:77:20:a8:80:66:21: f1:a1:0e:fc:a1:db:23:6a:42:28:05:f7:ec:60:b4: c2:64:7f:02:d0:c7:20:f9:05:13:9b:0e:f7:72:0c: 68:d0:29:b2:38:e1:5b:e7:57:c5:10:9c:c6:35:6d: f0:c9:e5:77:b2:bd:b0:b0:bd:b5:b2:06:76:1a:45: 47:e7:47:a4:60:ab:11:41:66:a6:ef:94:3f:29:e0: 80:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EB:E5:2A:D8:5B:2E:FA:8C:7A:43:E2:D9:74:6C:50:83:E3:C2:95 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:be:9d:bb:fa:ed:3c:c0:e1:8e:15:ed:7c:91:b1:9d:7d:28: 90:38:7d:7e:b5:c0:a2:a8:c5:09:7f:81:3e:f4:78:df:92:34: fc:6f:3c:0c:76:fa:cc:1a:59:73:53:76:9b:85:cd:2a:e1:af: 58:6b:a1:b8:ad:5c:64:59:df:ce:b5:05:9f:c5:b0:23:df:4b: aa:37:dc:d3:32:c9:cb:d8:2f:a0:53:3e:e2:c0:ff:71:85:85: 15:dd:a9:46:49:1c:9a:64:f4:06:41:90:e2:57:96:e4:ad:b0: c6:dd:40:11:2c:3a:75:34:3f:4f:db:91:52:23:69:b2:c8:c0: 61:49:64:dc:51:3e:61:b4:30:e8:c5:6d:02:3d:27:17:28:33: c0:da:48:a4:73:45:4a:78:a2:2b:24:ba:c2:45:f3:80:b2:19: ba:27:bc:a8:b1:79:a0:f4:6a:60:b0:c1:08:1c:09:06:63:f8: bc:67:75:af:1a:48:95:f6:d6:d3:01:67:51:24:21:e9:dc:07: 75:36:ee:9b:af:3e:e5:31:d0:dc:7c:15:8f:2c:1e:64:57:78: f8:84:83:12:f1:58:93:d1:8d:d0:41:1a:7e:b0:8c:7f:f3:67: 06:66:84:dd:73:a6:44:b5:cf:6f:2e:2a:f1:8c:8b:96:c4:cb: 77:cc:78:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwNjIxMDQzMDQ5WhcNMjUwNjI4MDQzMDQ5WjAYMRYwFAYD VQQDEw02ODU2MzU3OS00ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvN63o3tIXdowDFgQvtNbYKklEbOg6TQ7yAXpa0mvFAXhsL8jDpa3RMHdT/c Co/VjH5XvSXnynTips5hvJpjTezvupPcOOJrZ+xUaBXphQizIg4djumlW04yKEhr SOIddV7NmjvrZZW8jMfRsil6JA+ObhBbrPTTSWZrWRYo9Yoqu2n3RSWDmQRQx7lR F9/ftujwwaZDwLT2a6aVz1NH2z43g/aBE9Vt4eLb+Bh3IKiAZiHxoQ78odsjakIo BffsYLTCZH8C0Mcg+QUTmw73cgxo0CmyOOFb51fFEJzGNW3wyeV3sr2wsL21sgZ2 GkVH50ekYKsRQWam75Q/KeCA0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/r5SrY Wy76jHpD4tl0bFCD48KVMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKvp27+u08wOGOFe18kbGdfSiQOH1+tcCiqMUJf4E+9HjfkjT8bzwM dvrMGllzU3abhc0q4a9Ya6G4rVxkWd/OtQWfxbAj30uqN9zTMsnL2C+gUz7iwP9x hYUV3alGSRyaZPQGQZDiV5bkrbDG3UARLDp1ND9P25FSI2myyMBhSWTcUT5htDDo xW0CPScXKDPA2kikc0VKeKIrJLrCRfOAshm6J7yosXmg9GpgsMEIHAkGY/i8Z3Wv GkiV9tbTAWdRJCHp3Ad1Nu6brz7lMdDcfBWPLB5kV3j4hIMS8ViT0Y3QQRp+sIx/ 82cGZoTdc6ZEtc9vLirxjIuWxMt3zHjm -----END CERTIFICATE-----Generated at Sat Jun 21 23:52:03 2025 by rpki-client