$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: Bs362US7OyS2aIJRfxwOwbIhZfkrtqLn3yz38Dm5Y0E= Subject key identifier: 8F:67:51:DA:A9:6B:13:BD:5E:F8:3A:25:00:EF:28:DE:5D:B3:8F:65 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: 73 Signing time: Thu 19 Jun 2025 06:12:41 +0000 Manifest this update: Thu 19 Jun 2025 06:12:40 +0000 Manifest next update: Thu 26 Jun 2025 06:12:40 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: cD/o/oYAGmaYGFOdgXVVe/7JYyZPXqLg6Vdd4yUvtZE=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: +tAlw28NvGVDo5cCezaQKFVIMHfW8hqdMwBD9HYIeLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Jun 19 06:12:40 2025 GMT Not After : Jun 26 06:12:40 2025 GMT Subject: CN=6853aa59-1bcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:42:9b:e3:a2:3a:12:1e:3f:65:e2:0c:f6:b2: 5e:37:f9:45:a6:36:ca:ea:bb:7e:1e:83:87:ab:25: e2:bc:23:83:52:42:ac:bd:44:f6:4b:54:ef:83:3d: 75:97:5d:b0:e4:46:7e:43:fc:ed:2c:27:b2:74:3c: 46:a3:fe:a7:24:d8:aa:a3:3f:7e:b4:1d:46:e2:cc: a7:5a:c7:6d:ed:1b:f2:00:cd:ee:e0:70:4a:84:16: f9:6a:fa:4e:08:dd:49:91:42:a9:f6:79:ce:3b:c4: ad:37:6c:a5:1c:d7:e3:45:4c:84:bc:63:b0:b3:4d: 55:81:ea:c2:d6:b0:fa:7f:cc:49:16:04:07:7f:df: 06:74:ea:17:9e:37:79:00:a5:cb:82:5f:22:4d:ee: bc:a2:86:93:04:49:68:7a:e9:3b:6f:22:8b:18:30: dc:46:e4:b1:ad:06:a2:17:82:0a:2f:f7:a4:00:9a: 96:9c:09:b2:66:b4:ed:b5:86:21:0a:1f:29:50:65: 89:4d:eb:47:d7:89:cc:d2:f2:29:64:73:d1:44:64: 2e:51:de:8e:fc:a3:9a:31:43:9c:97:d8:69:a2:03: c5:3e:1e:01:fa:22:38:e3:8b:64:37:8d:ff:6f:1d: 54:b1:44:c6:eb:06:71:4a:99:e4:0b:cc:83:86:75: b8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:67:51:DA:A9:6B:13:BD:5E:F8:3A:25:00:EF:28:DE:5D:B3:8F:65 X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f9:c6:09:be:da:a2:80:13:9d:1f:be:6f:d1:41:07:6c:0f: 12:82:8f:33:a0:7f:33:02:d5:c0:fe:14:a6:99:27:0c:be:a3: 46:b0:47:a1:49:78:c4:da:3d:b0:22:0d:a5:31:99:13:af:f5: 79:cf:4d:72:6b:12:3b:0d:67:7a:44:51:7d:91:7a:bb:b5:06: 45:2d:65:1d:8a:8b:51:90:f1:8b:b9:05:2d:ea:6a:e5:19:c9: f3:bf:bf:f9:27:04:9a:c5:11:f4:34:c5:7b:9e:47:c2:00:bb: 11:65:c0:b2:50:d6:50:e6:e1:a4:ac:68:c7:3c:63:0d:ba:33: 21:3f:a7:09:0c:35:ed:f2:1b:6a:0a:2b:c6:84:55:56:09:5c: 25:b1:36:4e:71:3d:77:25:18:9f:f8:3e:b6:4c:05:19:d1:c7: fd:0d:e7:a1:bb:39:5b:06:f0:9a:04:89:8b:ee:5a:25:8c:ef: 23:6b:cf:db:77:0c:4e:e6:5c:f9:c1:3b:ff:b4:51:6f:e1:76: 88:19:2b:77:79:98:66:0b:55:2d:e2:88:b6:f0:e6:fc:08:1e: 13:fb:39:47:1a:b5:3a:d3:21:71:97:b9:f0:5b:de:20:df:6d: 8c:a9:36:1e:54:b1:be:95:2c:08:87:02:4f:81:fe:44:3d:33: b2:a2:ff:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNTA2MTkwNjEyNDBaFw0yNTA2MjYwNjEyNDBaMBgxFjAUBgNV BAMTDTY4NTNhYTU5LTFiY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiQpvjojoSHj9l4gz2sl43+UWmNsrqu34eg4erJeK8I4NSQqy9RPZLVO+DPXWX XbDkRn5D/O0sJ7J0PEaj/qck2KqjP360HUbizKdax23tG/IAze7gcEqEFvlq+k4I 3UmRQqn2ec47xK03bKUc1+NFTIS8Y7CzTVWB6sLWsPp/zEkWBAd/3wZ06heeN3kA pcuCXyJN7ryihpMESWh66TtvIosYMNxG5LGtBqIXggov96QAmpacCbJmtO21hiEK HylQZYlN60fXiczS8ilkc9FEZC5R3o78o5oxQ5yX2GmiA8U+HgH6Ijjji2Q3jf9v HVSxRMbrBnFKmeQLzIOGdbg9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj2dR2qlr E71e+DolAO8o3l2zj2UwHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB OTQxLzlCM0QyNTQ4QTBBMDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQ TmxxZ1FTNVRlRDZSMUlSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIr5xgm+2qKAE50fvm/RQQdsDxKCjzOgfzMC1cD+FKaZJwy+o0awR6FJ eMTaPbAiDaUxmROv9XnPTXJrEjsNZ3pEUX2Reru1BkUtZR2Ki1GQ8Yu5BS3qauUZ yfO/v/knBJrFEfQ0xXueR8IAuxFlwLJQ1lDm4aSsaMc8Yw26MyE/pwkMNe3yG2oK K8aEVVYJXCWxNk5xPXclGJ/4PrZMBRnRx/0N56G7OVsG8JoEiYvuWiWM7yNrz9t3 DE7mXPnBO/+0UW/hdogZK3d5mGYLVS3iiLbw5vwIHhP7OUcatTrTIXGXufBb3iDf bYypNh5Usb6VLAiHAk+B/kQ9M7Ki/4A= -----END CERTIFICATE-----Generated at Fri Jun 20 11:33:54 2025 by rpki-client