$ rpki-client -vvf rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft File: _XxIEch8Vm71Xtqw50P_BmufqGY.mft (raw, json) Hash identifier: 1zFO5xBFaEXoqSNw6kH8XFU1tBqYjz4v0WlZVXIsVWo= Subject key identifier: 2A:DC:F2:FB:78:D7:A9:95:03:C2:CE:E8:98:BB:C0:06:2E:FD:B6:5C Authority key identifier: FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 Certificate issuer: /CN=A91935EA/serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Certificate serial: 16A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft Manifest number: 1696 Signing time: Wed 18 Jun 2025 16:40:35 +0000 Manifest this update: Wed 18 Jun 2025 16:40:34 +0000 Manifest next update: Wed 25 Jun 2025 16:40:34 +0000 Files and hashes: 1: _XxIEch8Vm71Xtqw50P_BmufqGY.crl (hash: DkFHW7at5i3xiJq9zeWaDyFEVvAqN28J/wvpJkaYxlQ=) 2: 01B2AC1E064111E8A62EF586C4F9AE02.roa (hash: rgg5mb9NaJrKC43B9kmiIIRXNUmpRJVP8cl+RRNBMZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5794 (0x16a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91935EA, serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Validity Not Before: Jun 18 16:40:34 2025 GMT Not After : Jun 25 16:40:34 2025 GMT Subject: CN=6852ec02-0743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:4a:6b:bf:64:e5:be:1e:92:6e:87:37:5b: 06:0d:a5:3e:4d:79:86:26:97:9e:9a:b5:3d:3c:77: d2:9a:15:be:7e:bd:54:8c:6e:34:1f:09:5f:fa:7d: 48:70:20:53:2e:75:64:82:cc:d1:a6:58:1a:e1:e0: b9:dd:bc:42:0b:c9:0c:b2:49:1e:ee:88:cf:31:86: 90:01:46:7d:e8:a4:f0:34:66:dc:29:de:88:dc:82: 4d:78:c9:74:df:a0:67:40:76:28:92:21:b6:81:cf: f0:cf:0c:16:08:de:bc:74:cb:5d:d2:84:97:fe:9e: 27:31:89:3d:6b:e0:f2:87:9b:05:43:d8:4f:1f:cc: 01:78:92:1e:25:ac:6d:f4:ff:4a:f9:4a:9f:0f:89: 40:c2:24:30:38:7a:61:6f:7d:35:69:2f:ee:9c:02: 9d:45:8b:2d:6f:dd:ea:16:10:a5:5d:cd:9a:12:d1: 75:54:c4:35:f9:f7:a2:c9:78:be:26:8f:17:4e:36: 84:7d:a1:8d:d7:54:6b:d0:0a:f9:ae:1f:7f:3c:09: 3f:e7:f4:46:7d:f4:cf:c9:39:ef:d1:ec:b3:03:aa: ab:43:1c:d3:5f:d6:20:c3:54:55:90:ff:fe:01:e7: d0:21:8b:bf:ef:f5:e1:ba:aa:9e:ab:d2:96:72:05: f4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:DC:F2:FB:78:D7:A9:95:03:C2:CE:E8:98:BB:C0:06:2E:FD:B6:5C X509v3 Authority Key Identifier: keyid:FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:18:d3:6e:de:57:6c:a5:b5:06:29:a3:30:98:81:3d:9a:6a: 44:c3:a9:80:05:cd:88:f7:64:94:d1:24:05:c4:f4:d0:45:9e: 55:8e:2f:4c:b6:ac:e8:09:c4:4f:80:b1:ee:93:b1:5f:fd:fc: d6:3c:ca:4d:50:71:28:49:e6:73:03:b4:8a:de:6e:7f:d3:a2: 01:72:7b:6e:1b:83:6a:6c:72:6a:35:a1:4d:c2:cd:23:fe:64: c2:68:e9:57:b0:1b:b1:1f:6a:4d:08:8b:03:2a:cc:dd:1f:7e: 8d:ed:06:3c:4b:5c:18:be:02:9f:f9:49:a3:8d:57:2f:97:83: b8:79:a6:a2:90:3c:47:0e:21:41:19:46:4d:53:00:39:ea:0c: 73:61:42:6e:29:5b:ce:05:a9:e9:70:18:d2:6e:78:91:44:27: c4:ae:b2:70:c4:92:2b:97:bf:fc:0d:37:83:3f:9b:4d:3e:94: 54:1b:64:e0:e5:04:b8:33:c5:40:c7:cc:06:26:2a:62:37:7b: c3:23:d8:2f:fe:14:20:ab:d3:54:62:88:36:70:c6:2b:c9:22: 3c:61:51:d8:91:f5:b3:86:41:96:3b:a9:72:d0:ef:57:22:92: 30:a7:20:31:32:d4:5a:c5:bf:02:b2:6b:69:ca:a4:6a:75:57: a9:be:d3:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM1RUExMTAvBgNVBAUTKEZEN0M0ODExQzg3QzU2NkVGNTVFREFCMEU3NDNGRjA2 NkI5RkE4NjYwHhcNMjUwNjE4MTY0MDM0WhcNMjUwNjI1MTY0MDM0WjAYMRYwFAYD VQQDEw02ODUyZWMwMi0wNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2ZKa79k5b4ekm6HN1sGDaU+TXmGJpeemrU9PHfSmhW+fr1UjG40Hwlf+n1I cCBTLnVkgszRplga4eC53bxCC8kMskke7ojPMYaQAUZ96KTwNGbcKd6I3IJNeMl0 36BnQHYokiG2gc/wzwwWCN68dMtd0oSX/p4nMYk9a+Dyh5sFQ9hPH8wBeJIeJaxt 9P9K+UqfD4lAwiQwOHphb301aS/unAKdRYstb93qFhClXc2aEtF1VMQ1+feiyXi+ Jo8XTjaEfaGN11Rr0Ar5rh9/PAk/5/RGffTPyTnv0eyzA6qrQxzTX9Ygw1RVkP/+ AefQIYu/7/Xhuqqeq9KWcgX0owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrc8vt4 16mVA8LO6Ji7wAYu/bZcMB8GA1UdIwQYMBaAFP18SBHIfFZu9V7asOdD/wZrn6hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzVFQS8xOURENDY3MDAw QUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZtNzFYdHF3NTBQX0JtdWZx R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YeElFY2g4Vm03MVh0cXc1MFBfQm11ZnFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzVFQS8xOURENDY3MDAwQUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZt NzFYdHF3NTBQX0JtdWZxR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/GNNu3ldspbUGKaMwmIE9mmpEw6mABc2I92SU0SQFxPTQRZ5Vji9M tqzoCcRPgLHuk7Ff/fzWPMpNUHEoSeZzA7SK3m5/06IBcntuG4NqbHJqNaFNws0j /mTCaOlXsBuxH2pNCIsDKszdH36N7QY8S1wYvgKf+UmjjVcvl4O4eaaikDxHDiFB GUZNUwA56gxzYUJuKVvOBanpcBjSbniRRCfErrJwxJIrl7/8DTeDP5tNPpRUG2Tg 5QS4M8VAx8wGJipiN3vDI9gv/hQgq9NUYog2cMYrySI8YVHYkfWzhkGWO6ly0O9X IpIwpyAxMtRaxb8CsmtpyqRqdVepvtMs -----END CERTIFICATE-----Generated at Thu Jun 19 16:09:20 2025 by rpki-client