$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json) Hash identifier: bP6VY54xkKWh7tf1qRNQQ7iyGMZ+Q9Ids7rFLvdq20c= Subject key identifier: 4A:4D:BC:63:24:DA:4F:7A:0A:C0:B8:F8:9A:F2:59:DC:0D:8B:54:03 Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Certificate serial: 0759 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft Manifest number: 0753 Signing time: Wed 18 Jun 2025 21:29:12 +0000 Manifest this update: Wed 18 Jun 2025 21:29:12 +0000 Manifest next update: Wed 25 Jun 2025 21:29:12 +0000 Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: Q2AWDU5Jv1i28GqRpUtFnvQ430BgmX+lfg6J+ULWIDU=) 2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: wsrS8Hj9tlKWrRYJKi3rNPfDpEOnN9QMK0e9qX0Cib4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FEB, serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Validity Not Before: Jun 18 21:29:12 2025 GMT Not After : Jun 25 21:29:12 2025 GMT Subject: CN=68532fa8-8a50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2c:2c:54:96:d8:c2:9f:04:01:46:39:ce:56: ad:f1:9e:87:3d:60:28:dc:93:f9:4b:f0:f4:ec:85: d8:92:7d:41:05:de:c8:c7:10:ba:2d:1a:a5:f0:b6: 3b:bc:4a:27:df:55:cf:2c:e1:59:87:75:63:6d:94: cb:43:4e:ac:49:e9:89:45:8c:28:a7:6f:57:ab:eb: a3:5a:9b:f2:5d:e3:3c:8f:23:1b:2e:56:61:f4:1f: a5:39:4c:a9:0a:bd:8e:76:42:c0:16:75:21:2f:63: 78:d4:02:8b:30:92:6b:6a:72:23:65:4e:79:e5:c3: bf:66:35:6b:b5:30:cf:4d:19:5d:80:17:91:6c:33: 3f:70:cc:6b:86:2a:e7:88:8b:5e:31:9c:bc:2a:e2: 72:a8:0c:ca:9e:1e:63:21:ac:db:b7:5c:0f:03:c3: b9:b2:2a:f0:c9:e2:df:9a:bd:11:07:2b:22:e9:95: 42:99:cf:3b:d1:ed:d6:06:cb:06:f9:37:e1:83:57: a4:75:98:80:e0:b6:8e:52:c2:b7:3a:2e:18:17:3f: 94:2b:22:5b:3a:3c:88:87:fa:29:72:c6:95:6b:05: a0:e2:2c:16:24:2e:ab:05:6d:60:e5:ca:34:49:49: 89:38:69:98:c8:a3:cc:43:4b:fb:c8:e7:84:33:10: c0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4D:BC:63:24:DA:4F:7A:0A:C0:B8:F8:9A:F2:59:DC:0D:8B:54:03 X509v3 Authority Key Identifier: keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:cf:37:22:2a:39:de:29:36:6b:d6:8f:85:70:95:d5:05:3a: a4:d6:14:83:35:f5:d2:41:32:45:fe:df:8e:cb:7e:2a:be:49: cd:aa:07:3c:9b:fc:12:f0:d4:37:87:82:1e:d5:ca:51:2b:42: a3:4a:8a:ac:b3:a7:01:50:51:28:ff:dc:74:a9:8e:cd:bc:ea: 38:de:90:87:52:0d:28:25:21:8b:b2:69:8e:3f:68:a7:68:cb: b3:3b:b3:07:92:94:68:eb:17:98:13:44:4a:b8:be:b1:47:87: a0:2c:a2:c0:b9:d9:66:af:79:d6:26:f5:55:37:dd:f0:85:38: fe:2e:13:ac:16:98:a7:a8:43:39:4b:87:ae:4f:c6:7c:f7:00: 5e:78:ed:1c:3c:b4:49:6c:93:60:06:30:25:58:df:47:8c:45: 1b:aa:d9:b1:e9:b0:61:35:ba:f8:8e:7f:02:8a:42:2a:35:62: df:9a:f5:82:8b:8e:3b:93:fc:6f:fa:5d:22:3d:2d:c6:2e:87: 92:c3:3a:8b:ee:53:97:e2:0e:bb:6e:89:b9:df:13:e3:f0:5d: 49:6c:db:05:1f:9b:08:4d:2b:f8:cf:a6:9a:9e:32:c6:87:75: 9d:0d:33:98:b6:fd:cf:8f:6a:fd:d4:d7:c9:19:72:45:3c:d9: c3:28:06:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2 OUUxRkFDRkQwHhcNMjUwNjE4MjEyOTEyWhcNMjUwNjI1MjEyOTEyWjAYMRYwFAYD VQQDEw02ODUzMmZhOC04YTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ywsVJbYwp8EAUY5zlat8Z6HPWAo3JP5S/D07IXYkn1BBd7IxxC6LRql8LY7 vEon31XPLOFZh3VjbZTLQ06sSemJRYwop29Xq+ujWpvyXeM8jyMbLlZh9B+lOUyp Cr2OdkLAFnUhL2N41AKLMJJranIjZU555cO/ZjVrtTDPTRldgBeRbDM/cMxrhirn iIteMZy8KuJyqAzKnh5jIazbt1wPA8O5sirwyeLfmr0RBysi6ZVCmc870e3WBssG +Tfhg1ekdZiA4LaOUsK3Oi4YFz+UKyJbOjyIh/opcsaVawWg4iwWJC6rBW1g5co0 SUmJOGmYyKPMQ0v7yOeEMxDASwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpNvGMk 2k96CsC4+JryWdwNi1QDMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5 MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQzzciKjneKTZr1o+FcJXVBTqk1hSDNfXSQTJF/t+Oy34qvknNqgc8 m/wS8NQ3h4Ie1cpRK0KjSoqss6cBUFEo/9x0qY7NvOo43pCHUg0oJSGLsmmOP2in aMuzO7MHkpRo6xeYE0RKuL6xR4egLKLAudlmr3nWJvVVN93whTj+LhOsFpinqEM5 S4euT8Z89wBeeO0cPLRJbJNgBjAlWN9HjEUbqtmx6bBhNbr4jn8CikIqNWLfmvWC i447k/xv+l0iPS3GLoeSwzqL7lOX4g67bom53xPj8F1JbNsFH5sITSv4z6aanjLG h3WdDTOYtv3Pj2r91NfJGXJFPNnDKAac -----END CERTIFICATE-----Generated at Thu Jun 19 12:45:33 2025 by rpki-client