$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft File: xzON8bdowFB0za7Q_bGkwUrfuLU.mft (raw, json) Hash identifier: yq9hSpgrYSztAGXnQOtpz+NfWISM2V+LkwA0U4KsNBI= Subject key identifier: 36:6C:AE:F6:D3:20:0E:A4:BF:FD:9A:65:C0:7D:17:D8:15:DA:04:17 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft Manifest number: 0125 Signing time: Tue 17 Jun 2025 04:07:24 +0000 Manifest this update: Tue 17 Jun 2025 04:07:24 +0000 Manifest next update: Tue 24 Jun 2025 04:07:24 +0000 Files and hashes: 1: xzON8bdowFB0za7Q_bGkwUrfuLU.crl (hash: 2dagRqUIwcVSbd5H6GBjKKg0k1Wr+wfBkFl+E7UC/tE=) 2: 7DA50F9C3E0B11F09779DF13C4F9AE02.roa (hash: aOphwoAXL9FkkZUfHxiPd8GBXzpRzX5FSynk8bgMuYk=) 3: A2516E42DE4511EF8C37E320C4F9AE02.roa (hash: XfIHm/MhIPSh6jZecIK72twugLDWV563OBM4HVySVuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Jun 17 04:07:24 2025 GMT Not After : Jun 24 04:07:24 2025 GMT Subject: CN=6850e9fc-a2b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:6c:4e:cb:49:bb:83:82:2e:92:86:77:61: 16:78:fc:9d:5a:1e:38:10:44:2d:33:a5:aa:d7:60: 86:6f:6e:7f:52:20:a5:85:a0:98:d9:27:21:58:9c: 60:6e:4e:84:a8:97:98:45:10:ca:74:d2:67:c8:ce: 17:ee:2d:e6:62:61:a6:a6:0b:ac:5f:16:04:b1:6d: 58:19:8c:8d:6a:99:ef:4f:a4:e5:63:8d:22:74:f8: f7:6f:e7:70:32:e2:d3:26:91:1e:69:5a:52:11:66: 6f:7c:af:cc:f6:5e:a5:c3:78:fb:01:26:5c:80:e3: 8e:02:0a:5c:46:4a:f7:d2:5e:df:2f:2e:d5:73:33: da:27:99:3f:f2:d0:b5:be:a5:63:ad:83:c4:07:6b: f5:65:20:c8:95:cb:70:7c:24:92:e8:aa:f5:65:2f: 04:c2:98:2d:ed:36:78:4c:17:4d:74:0d:1f:ca:86: 10:7a:bb:a2:b4:74:1f:4e:8c:6b:4f:6e:74:60:56: 32:e2:12:41:18:09:a6:c8:b5:f8:1c:19:75:0f:b7: 4f:2c:3a:ec:18:6d:77:66:cc:3a:cf:5f:8a:c6:92: 57:b9:40:63:44:0c:3b:3b:b5:01:0f:f1:0a:5d:7b: 30:73:6a:f1:d8:a4:bc:62:82:22:10:7a:84:6c:15: 10:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6C:AE:F6:D3:20:0E:A4:BF:FD:9A:65:C0:7D:17:D8:15:DA:04:17 X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:7a:e6:a2:65:02:0a:34:ed:75:9d:e8:7a:57:37:1b:81:9d: 65:62:97:ea:ee:2d:f9:44:d7:20:76:e5:db:09:3a:16:85:79: 65:8c:2d:1b:f0:0d:f3:b2:46:83:32:a6:36:6e:5f:d3:1f:ff: fc:8e:ff:fb:43:78:fb:13:5f:de:4a:55:c7:5d:91:53:79:c0: 98:e3:0d:5c:0a:ba:2b:c7:44:d1:ff:b9:67:5c:ab:19:7b:42: 29:73:c2:2c:ba:b0:7c:af:16:88:a3:ec:32:09:24:52:e6:90: c8:a4:b5:49:3d:a2:7e:4c:d0:66:95:72:fd:d4:62:43:d4:67: b4:7a:39:52:f1:82:42:b4:9d:a3:a9:c8:83:85:e0:4f:b3:4c: 4a:77:51:c8:a7:1b:48:ad:e4:c4:d4:8a:f2:ef:fe:a2:af:20: 4c:90:a2:b4:7e:ab:39:7f:7b:77:35:86:53:6a:97:90:6c:95: 2c:fc:ab:51:b1:b0:92:6e:bf:7b:3b:a8:e7:e1:c2:a7:92:74: 6c:52:f2:b2:d3:6c:0d:c9:d7:78:e1:4f:12:1e:fa:c8:ae:00: 9a:78:f8:2b:c9:fb:1a:35:94:89:84:b7:2b:8c:32:96:44:7b: c4:ff:68:e1:99:2f:a6:f5:76:23:89:b3:af:2a:60:e3:91:dc: b3:7c:97:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUwNjE3MDQwNzI0WhcNMjUwNjI0MDQwNzI0WjAYMRYwFAYD VQQDEw02ODUwZTlmYy1hMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc9sTstJu4OCLpKGd2EWePydWh44EEQtM6Wq12CGb25/UiClhaCY2SchWJxg bk6EqJeYRRDKdNJnyM4X7i3mYmGmpgusXxYEsW1YGYyNapnvT6TlY40idPj3b+dw MuLTJpEeaVpSEWZvfK/M9l6lw3j7ASZcgOOOAgpcRkr30l7fLy7VczPaJ5k/8tC1 vqVjrYPEB2v1ZSDIlctwfCSS6Kr1ZS8Ewpgt7TZ4TBdNdA0fyoYQeruitHQfToxr T250YFYy4hJBGAmmyLX4HBl1D7dPLDrsGG13Zsw6z1+KxpJXuUBjRAw7O7UBD/EK XXswc2rx2KS8YoIiEHqEbBUQLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZsrvbT IA6kv/2aZcB9F9gV2gQXMB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri80QUFCN0JDQUM0N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dG QjB6YTdRX2JHa3dVcmZ1TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAeuaiZQIKNO11neh6VzcbgZ1lYpfq7i35RNcgduXbCToWhXlljC0b 8A3zskaDMqY2bl/TH//8jv/7Q3j7E1/eSlXHXZFTecCY4w1cCrorx0TR/7lnXKsZ e0Ipc8IsurB8rxaIo+wyCSRS5pDIpLVJPaJ+TNBmlXL91GJD1Ge0ejlS8YJCtJ2j qciDheBPs0xKd1HIpxtIreTE1Iry7/6iryBMkKK0fqs5f3t3NYZTapeQbJUs/KtR sbCSbr97O6jn4cKnknRsUvKy02wNydd44U8SHvrIrgCaePgryfsaNZSJhLcrjDKW RHvE/2jhmS+m9XYjibOvKmDjkdyzfJeu -----END CERTIFICATE-----Generated at Thu Jun 19 02:59:24 2025 by rpki-client