$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: 9TfzeX5pVBuK7vBIyABDgZ8MjLeByodUX2vghXho5uE= Subject key identifier: D0:2A:CB:85:5A:77:AC:D8:77:F3:50:84:15:EE:F3:50:8A:62:6F:5C Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: F1 Signing time: Fri 13 Jun 2025 04:13:44 +0000 Manifest this update: Fri 13 Jun 2025 04:13:43 +0000 Manifest next update: Fri 20 Jun 2025 04:13:43 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: VU7UZ17cO42EawlpooGIHpP8YngEBDGEiRHSRehgoFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Jun 13 04:13:43 2025 GMT Not After : Jun 20 04:13:43 2025 GMT Subject: CN=684ba578-48c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:86:16:a5:38:0b:19:f8:7a:27:58:0d:96: ac:61:e8:25:5f:97:5e:c5:30:cf:14:c7:d9:a4:c8: ef:46:4b:a0:d1:f8:04:d6:0b:70:1b:b6:94:cd:4f: f8:a2:58:ec:fa:22:42:8a:63:e0:36:9c:b4:61:33: 2f:71:ec:b5:b2:91:4b:ca:cb:be:ea:e4:04:27:e3: a8:d4:63:1c:ea:5b:e6:fb:16:b6:2b:40:01:37:cb: 4d:01:1e:25:67:62:5a:7a:b5:f0:67:fc:f1:15:44: 3d:2c:6c:fb:28:0d:e3:4f:d8:5a:2f:28:fc:75:9e: a5:ea:2f:f7:2b:15:54:a4:5d:9f:30:65:6c:e3:97: ea:39:37:5e:d8:b0:0e:94:f7:d0:68:b9:c2:99:61: 4c:05:15:64:8a:04:63:52:b4:52:5e:03:c3:ed:bc: 5b:b9:0e:37:91:5b:4b:50:65:20:1f:ce:49:79:ba: 3a:7f:6a:ce:58:87:93:f6:55:c9:f9:36:46:5d:7c: 3e:18:13:7a:8d:00:60:0f:9c:22:73:9c:3b:2b:08: 29:cf:21:19:96:02:80:6d:3c:07:4e:6c:d3:b7:66: 3b:56:67:b2:b2:b9:d6:53:ed:3a:ef:79:7b:07:21: e3:92:a0:81:d8:ec:4e:0d:93:cc:cc:12:bc:a6:d0: ef:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2A:CB:85:5A:77:AC:D8:77:F3:50:84:15:EE:F3:50:8A:62:6F:5C X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:e3:e6:00:f2:5c:59:1c:57:ef:89:60:23:b5:1c:ff:c8:b6: a9:61:a1:bb:67:83:58:a5:db:dc:3d:0a:6b:08:9c:c4:9e:5b: 7c:77:7b:c5:ba:36:92:00:0f:4e:7b:39:d3:32:14:16:46:91: 63:88:db:4b:0d:2c:64:61:f4:1f:35:9a:67:87:ac:d1:21:2d: 1f:bb:e9:e2:f6:33:78:c0:a9:14:82:f0:bd:3b:d3:27:b2:b1: 10:9f:74:26:f6:82:fb:ab:b4:bc:f1:23:68:1d:8d:57:e6:d0: 30:1b:e5:61:47:4d:68:1b:65:9c:76:05:7b:6e:35:81:f3:1f: e6:93:47:e3:96:b5:21:d2:72:c3:90:e0:08:e8:d0:06:b2:9e: df:e3:9c:4b:21:53:99:d2:73:12:65:9b:bb:e7:e1:ba:63:3f: 32:01:ad:bd:47:94:78:74:f7:c6:a3:dd:e9:60:be:8b:86:46: fa:23:e6:94:07:ef:39:78:65:7e:84:fa:39:67:6f:2b:78:94: 8f:50:76:23:83:49:cc:0c:08:8c:3c:d4:7c:2f:42:a3:82:9d: ab:40:7e:65:0e:cf:56:f2:64:c5:9b:8a:a7:a0:42:8e:78:00: 18:53:64:c8:ab:8d:36:96:c9:bf:17:ad:fa:08:ce:f0:13:09: 85:0a:a0:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUwNjEzMDQxMzQzWhcNMjUwNjIwMDQxMzQzWjAYMRYwFAYD VQQDEw02ODRiYTU3OC00OGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqKGFqU4Cxn4eidYDZasYeglX5dexTDPFMfZpMjvRkug0fgE1gtwG7aUzU/4 oljs+iJCimPgNpy0YTMvcey1spFLysu+6uQEJ+Oo1GMc6lvm+xa2K0ABN8tNAR4l Z2JaerXwZ/zxFUQ9LGz7KA3jT9haLyj8dZ6l6i/3KxVUpF2fMGVs45fqOTde2LAO lPfQaLnCmWFMBRVkigRjUrRSXgPD7bxbuQ43kVtLUGUgH85Jebo6f2rOWIeT9lXJ +TZGXXw+GBN6jQBgD5wic5w7KwgpzyEZlgKAbTwHTmzTt2Y7VmeysrnWU+0673l7 ByHjkqCB2OxODZPMzBK8ptDviwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAqy4Va d6zYd/NQhBXu81CKYm9cMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg4+YA8lxZHFfviWAjtRz/yLapYaG7Z4NYpdvcPQprCJzEnlt8d3vF ujaSAA9OeznTMhQWRpFjiNtLDSxkYfQfNZpnh6zRIS0fu+ni9jN4wKkUgvC9O9Mn srEQn3Qm9oL7q7S88SNoHY1X5tAwG+VhR01oG2WcdgV7bjWB8x/mk0fjlrUh0nLD kOAI6NAGsp7f45xLIVOZ0nMSZZu75+G6Yz8yAa29R5R4dPfGo93pYL6Lhkb6I+aU B+85eGV+hPo5Z28reJSPUHYjg0nMDAiMPNR8L0Kjgp2rQH5lDs9W8mTFm4qnoEKO eAAYU2TIq402lsm/F636CM7wEwmFCqAn -----END CERTIFICATE-----Generated at Sat Jun 14 19:08:04 2025 by rpki-client