$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: S5fCw1o6odTjDFU/6+pFXos7ahuWqfB2GjncHO8LctE= Subject key identifier: 5D:B0:3C:A4:5A:B2:66:1E:58:71:8B:A0:7F:2C:C5:E6:10:4E:A9:FC Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 0E Signing time: Thu 19 Jun 2025 07:26:49 +0000 Manifest this update: Thu 19 Jun 2025 07:26:48 +0000 Manifest next update: Thu 26 Jun 2025 07:26:48 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: g7j6VJXlo706jDeFLDK5yQ14gAAZbMsDqiyB1451Tjw=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: uKfaLXcOCNJdE2XGkLLuO2/nisMUjVXsuFOacDhWkTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Jun 19 07:26:48 2025 GMT Not After : Jun 26 07:26:48 2025 GMT Subject: CN=6853bbb9-46aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:aa:6e:b1:85:e9:34:c6:4c:f9:fb:71:a8:f1: 47:20:68:b3:e7:2b:77:c6:29:d3:e2:ee:18:4c:8c: 52:61:77:d9:ed:4d:3a:96:c1:b2:20:62:cb:ff:2a: 2f:ee:11:1a:54:41:48:fa:99:d0:82:03:5c:77:5a: b0:9c:75:2a:3e:b9:1c:9b:42:4c:9f:59:04:ca:15: ad:72:74:7e:d3:1f:5e:62:3f:3b:ad:35:10:6c:e1: 83:ce:b3:ba:97:b9:60:d5:da:9b:76:ae:89:c6:5e: b3:33:6e:c3:7b:10:fd:08:fb:73:b5:6b:e2:dc:27: 56:30:3a:62:39:08:65:1c:51:41:dc:60:d3:b7:87: 6c:84:bc:35:ba:e5:97:73:cc:e5:a8:f6:a2:f5:22: 98:0c:fe:a6:42:cc:a8:f7:c1:98:93:68:bc:6c:59: 18:2c:d7:d1:a4:6c:e6:7f:3e:7e:a1:fa:8f:cb:3d: 18:91:10:70:4c:3a:26:9e:c8:7c:3b:3e:96:8b:72: 0a:dc:49:04:8d:cb:57:d5:ee:cc:9c:31:62:2f:49: d2:24:83:ba:ae:7a:28:fb:41:93:25:1d:cb:b0:06: 4a:6f:41:4a:14:22:92:46:49:ea:94:ff:6a:9e:51: e0:e6:ba:0c:00:46:92:a7:84:55:67:8d:ff:7b:cb: 34:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B0:3C:A4:5A:B2:66:1E:58:71:8B:A0:7F:2C:C5:E6:10:4E:A9:FC X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a6:b8:a7:6c:94:b1:ce:ba:83:70:7e:a1:45:a2:ec:f8:a2: 2c:b7:22:f5:8f:ce:7d:f6:8d:5a:0c:59:99:0f:2f:69:6e:72: d8:4c:50:58:46:b9:e2:79:c0:9d:04:b0:dc:8b:45:12:77:b4: 48:3f:04:d6:35:e3:a8:9e:cf:1e:5c:e8:73:55:e7:62:cd:a3: 43:bf:13:d7:08:60:3b:ef:11:60:17:99:d1:b9:c3:f9:3d:6e: 7f:62:09:16:55:d1:ea:62:4b:43:4e:26:f9:81:9a:ac:ba:64: 0f:c4:1d:12:a2:95:8b:7c:bb:75:15:d9:7e:29:a2:1e:5a:8a: db:07:ca:ae:79:f5:f5:cc:3c:e5:c4:f4:0b:cc:97:03:6d:96: a3:79:de:65:bc:b8:95:6d:9a:58:b9:db:97:c2:22:42:0e:26: 63:78:04:17:64:f8:c6:b3:82:e5:f5:ce:e2:e7:f5:6e:6e:65: 24:a7:10:ca:aa:99:41:ee:71:00:79:74:79:51:5a:44:94:64: 41:6f:dd:c2:83:71:86:65:c4:75:0c:bd:0f:cf:81:fe:0d:f8: 21:fc:c9:c8:9f:0b:4d:a0:07:83:b8:43:0a:fe:9f:0d:54:4f: e8:93:67:31:fd:b8:1d:f9:fc:b8:47:f2:30:79:22:ca:69:1e: 77:91:83:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoNUVDNUZCMzM0RUU1MkI5MDA5Q0I5MjNDNjkzQkQyMEYw NDc4QTE0NDAeFw0yNTA2MTkwNzI2NDhaFw0yNTA2MjYwNzI2NDhaMBgxFjAUBgNV BAMTDTY4NTNiYmI5LTQ2YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZqm6xhek0xkz5+3Go8UcgaLPnK3fGKdPi7hhMjFJhd9ntTTqWwbIgYsv/Ki/u ERpUQUj6mdCCA1x3WrCcdSo+uRybQkyfWQTKFa1ydH7TH15iPzutNRBs4YPOs7qX uWDV2pt2ronGXrMzbsN7EP0I+3O1a+LcJ1YwOmI5CGUcUUHcYNO3h2yEvDW65Zdz zOWo9qL1IpgM/qZCzKj3wZiTaLxsWRgs19GkbOZ/Pn6h+o/LPRiREHBMOiaeyHw7 PpaLcgrcSQSNy1fV7sycMWIvSdIkg7queij7QZMlHcuwBkpvQUoUIpJGSeqU/2qe UeDmugwARpKnhFVnjf97yzS/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXbA8pFqy Zh5YcYugfyzF5hBOqfwwHwYDVR0jBBgwFoAUXsX7M07lK5AJy5I8aTvSDwR4oUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzM0MDA4MDIyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9V US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHNYN00wN2xLNUFKeTVJOGFUdlNEd1I0b1VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF Rjg3LzM0MDA4MDIyMzhCMzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVB Snk1SThhVHZTRHdSNG9VUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJGmuKdslLHOuoNwfqFFouz4oiy3IvWPzn32jVoMWZkPL2lucthMUFhG ueJ5wJ0EsNyLRRJ3tEg/BNY146iezx5c6HNV52LNo0O/E9cIYDvvEWAXmdG5w/k9 bn9iCRZV0epiS0NOJvmBmqy6ZA/EHRKilYt8u3UV2X4poh5aitsHyq559fXMPOXE 9AvMlwNtlqN53mW8uJVtmli525fCIkIOJmN4BBdk+MazguX1zuLn9W5uZSSnEMqq mUHucQB5dHlRWkSUZEFv3cKDcYZlxHUMvQ/Pgf4N+CH8ycifC02gB4O4Qwr+nw1U T+iTZzH9uB35/LhH8jB5IsppHneRg4w= -----END CERTIFICATE-----Generated at Fri Jun 20 02:53:33 2025 by rpki-client