$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: X805TLz++jkaCxVgUdiI8bFTNbaqfwxmoYIhhz24jH4= Subject key identifier: B0:EC:7D:BB:3F:7C:0F:D9:C2:28:61:D8:DD:7E:F1:9E:A9:C6:C0:64 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0725 Signing time: Wed 18 Jun 2025 21:43:15 +0000 Manifest this update: Wed 18 Jun 2025 21:43:15 +0000 Manifest next update: Wed 25 Jun 2025 21:43:15 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: cevJyh/Ch0Y35DowtujzroIxzW0u0ypVBd8WtwF37oM=) 2: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: ibMAngc6C4+JXufdc4UjRpgLZzdehYxv7hgLysgCefA=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: lBgqnjRJBGsZ0mPwDni4pJ8lC/MwfA0PzYZAuDKaQP0=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: B3TtfKIV8qBTfY8o/1C3LKcqpx/TLDJeKafLYgXCPS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Jun 18 21:43:15 2025 GMT Not After : Jun 25 21:43:15 2025 GMT Subject: CN=685332f3-b193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:20:5b:1d:5c:10:b0:6e:d8:ef:ae:0e:44: 85:2a:ed:5c:5a:d3:3b:5b:ad:33:35:73:ef:9d:32: 07:a3:3e:92:52:03:ee:d5:89:86:94:26:5f:a9:88: 63:66:ab:07:31:eb:77:5f:b7:37:e9:1f:19:61:94: b0:b8:1e:6c:2d:6b:64:8f:5b:90:7c:bf:12:a6:f5: ce:b3:b5:9e:81:e9:6f:b3:3e:83:8b:8b:f0:15:12: de:06:83:1b:33:04:c0:5a:1d:ef:66:53:9b:2a:1c: 0c:15:67:94:67:ce:f5:63:62:35:2f:aa:a3:9a:d9: 8c:8d:ce:f4:8a:3d:83:fe:2e:4b:1d:23:e5:a4:de: 53:db:98:0e:35:1c:73:7d:c7:70:90:a1:e5:d7:2b: 71:36:ac:06:92:82:48:e4:46:16:f0:ac:e0:77:c3: ef:7b:42:1e:f3:40:0c:04:80:70:85:08:74:ad:10: d0:ab:51:a4:07:b6:5a:36:91:47:a8:36:d5:34:d3: a9:d2:fe:c3:40:0a:49:e8:28:f8:6d:b8:2d:b2:d4: 36:d2:57:de:dd:04:7c:97:55:a4:16:32:83:07:bb: 28:19:98:20:27:b6:ca:da:a6:9d:dc:0d:63:9b:52: b5:ea:bf:aa:06:14:8b:b8:1d:13:a2:9d:60:20:c3: 7c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EC:7D:BB:3F:7C:0F:D9:C2:28:61:D8:DD:7E:F1:9E:A9:C6:C0:64 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:91:d5:8c:2c:5e:74:d2:a6:b8:3c:35:77:da:70:1d:29:f8: ca:51:6a:af:92:cc:58:4b:21:0d:0c:9e:d7:43:55:29:1f:52: cc:9c:3c:12:2c:e4:d4:3c:b6:da:13:e9:1a:b1:1a:69:6f:e5: a8:43:81:dd:80:e0:10:60:76:f8:4d:b5:83:43:b5:5f:20:a1: d9:a8:7a:b1:40:50:0a:2f:b4:23:e6:94:e8:94:c5:4e:17:b9: b2:d9:38:59:00:4c:db:4f:01:9b:5f:51:7a:09:b3:22:89:c2: 02:b5:60:cd:22:64:b7:56:ec:3d:f4:50:4b:ff:53:8e:3e:fa: df:30:1e:c0:7a:7d:d3:5d:dc:5c:27:22:25:9f:fa:1c:59:41: 8a:ca:14:a6:98:78:be:5e:d4:3d:e8:a2:22:88:7d:32:27:a0: 87:5b:6b:a4:57:39:7f:02:ff:27:b4:38:b8:11:01:c4:4b:00: 19:6a:28:19:aa:76:af:a6:e9:2e:e8:4b:5b:63:1e:7a:39:33: ff:1e:20:98:c1:9a:11:03:76:69:d8:00:f5:fb:34:28:f9:f4: ad:55:e3:14:5b:a3:f7:5a:f9:c3:d3:70:4b:64:67:dd:49:1a: 67:ba:b9:57:a7:6d:d0:fc:35:88:cc:f8:c9:70:ef:31:99:66: e1:f1:14:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwNjE4MjE0MzE1WhcNMjUwNjI1MjE0MzE1WjAYMRYwFAYD VQQDEw02ODUzMzJmMy1iMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVEgWx1cELBu2O+uDkSFKu1cWtM7W60zNXPvnTIHoz6SUgPu1YmGlCZfqYhj ZqsHMet3X7c36R8ZYZSwuB5sLWtkj1uQfL8SpvXOs7Wegelvsz6Di4vwFRLeBoMb MwTAWh3vZlObKhwMFWeUZ871Y2I1L6qjmtmMjc70ij2D/i5LHSPlpN5T25gONRxz fcdwkKHl1ytxNqwGkoJI5EYW8Kzgd8Pve0Ie80AMBIBwhQh0rRDQq1GkB7ZaNpFH qDbVNNOp0v7DQApJ6Cj4bbgtstQ20lfe3QR8l1WkFjKDB7soGZggJ7bK2qad3A1j m1K16r+qBhSLuB0Top1gIMN8HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDsfbs/ fA/Zwihh2N1+8Z6pxsBkMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIkdWMLF500qa4PDV32nAdKfjKUWqvksxYSyENDJ7XQ1UpH1LMnDwS LOTUPLbaE+kasRppb+WoQ4HdgOAQYHb4TbWDQ7VfIKHZqHqxQFAKL7Qj5pTolMVO F7my2ThZAEzbTwGbX1F6CbMiicICtWDNImS3Vuw99FBL/1OOPvrfMB7Aen3TXdxc JyIln/ocWUGKyhSmmHi+XtQ96KIiiH0yJ6CHW2ukVzl/Av8ntDi4EQHESwAZaigZ qnavpuku6EtbYx56OTP/HiCYwZoRA3Zp2AD1+zQo+fStVeMUW6P3WvnD03BLZGfd SRpnurlXp23Q/DWIzPjJcO8xmWbh8RQV -----END CERTIFICATE-----Generated at Fri Jun 20 22:27:40 2025 by rpki-client