$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: /GFcYM3Tou8i1mLxmdSbJlWIyLMD3zMZG1kQ+nV3K6Q= Subject key identifier: DA:6A:07:B4:F8:39:3F:5D:F7:84:00:56:C8:D0:7E:87:EF:9D:F7:72 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 34C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 34AE Signing time: Wed 18 Jun 2025 14:45:33 +0000 Manifest this update: Wed 18 Jun 2025 14:45:32 +0000 Manifest next update: Wed 25 Jun 2025 14:45:32 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: c0MrQjYLzBD8um3Q7AWeVsmftxvlqYDcsKANT9lGtyA=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: LT0aNSmVv5vvmR7dpu4yqP0BpA8hfoKsmy5XfMM5RqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Jun 18 14:45:32 2025 GMT Not After : Jun 25 14:45:32 2025 GMT Subject: CN=6852d10c-95fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:bb:40:72:e4:c2:0e:57:65:ae:51:59:5f: fc:11:b0:09:b4:c4:0f:78:62:05:9f:d7:27:02:69: f4:13:79:3f:11:29:2b:64:ef:33:36:90:44:88:30: 22:ae:30:6a:12:0f:a7:ea:22:5b:f6:ce:5d:43:6e: 53:5b:f8:4e:23:ad:8f:43:b7:fb:49:65:32:34:96: 6d:8e:41:4c:31:cf:d4:09:79:eb:e2:2f:54:1c:69: b6:3c:ab:68:c1:0a:f7:73:40:97:9e:cd:be:01:db: 79:56:8a:2c:e7:70:b9:81:81:a2:ef:99:0c:a9:28: fe:b3:e4:fa:2c:c1:c8:b2:81:9a:e9:8d:82:3e:e1: 1a:0a:8f:6a:be:bf:86:10:46:2e:d5:9c:4b:50:2e: f6:83:e7:ac:68:2d:ac:91:09:c4:c5:18:10:8f:be: e0:0c:84:7f:36:56:db:22:12:13:ca:9e:9e:96:d9: 86:62:8a:3f:68:29:af:c3:de:70:2d:ad:00:99:fd: 0c:ce:82:fe:03:db:ad:4c:69:9e:03:62:d3:0c:7e: 90:58:1b:71:9e:79:93:0a:e3:56:3b:8b:02:54:45: 4d:fa:5a:f9:b7:76:e4:cc:c6:a7:97:96:8a:1e:51: 48:ce:5b:64:1e:86:ad:b1:f8:d9:56:f3:eb:71:9b: de:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:6A:07:B4:F8:39:3F:5D:F7:84:00:56:C8:D0:7E:87:EF:9D:F7:72 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5b:74:0e:cd:fe:d6:2c:fd:74:f2:96:24:6b:57:a0:ab:4a: 25:7b:7b:ae:f9:5d:25:53:4a:70:a4:e9:e8:bf:fc:14:0b:f1: 4b:dc:10:e5:e7:3f:6a:b5:0f:b4:6b:3c:5d:c0:2a:1c:1a:6e: d5:cf:93:03:b8:ac:bf:ff:bd:e7:c1:44:ba:ff:22:25:18:49: 3f:3f:f3:2f:4e:e5:e2:6e:59:5d:ae:cc:c6:b1:2e:ef:18:0d: 95:2c:f4:3c:85:5b:d2:16:69:01:bc:8d:e4:3c:6d:8b:46:fc: 3b:fc:fd:ce:85:3e:6a:94:c1:4f:b7:39:64:9a:15:64:06:a2: 28:ac:7d:f3:3c:dd:dd:63:83:8b:3c:b5:62:c8:7c:6c:1d:3d: 63:ec:ad:66:5a:7a:66:cf:ca:3a:cc:72:92:af:91:98:af:77: fa:ae:c1:f2:7a:06:45:e7:a3:b2:14:85:2a:00:21:19:55:2e: 19:e5:c2:59:a2:e7:5b:6a:67:16:00:44:18:ed:e2:b3:a1:f0: 3d:82:61:65:f5:35:57:50:d6:0e:b2:14:94:37:a4:46:52:b1: c9:9a:6e:4d:2a:5b:9d:c4:29:f0:c7:65:35:80:a2:54:ac:4d: 2a:cd:b9:68:ff:9d:14:c5:c8:c1:bf:34:2f:3e:bc:ee:aa:e3: a6:bf:90:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUwNjE4MTQ0NTMyWhcNMjUwNjI1MTQ0NTMyWjAYMRYwFAYD VQQDEw02ODUyZDEwYy05NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoa7QHLkwg5XZa5RWV/8EbAJtMQPeGIFn9cnAmn0E3k/ESkrZO8zNpBEiDAi rjBqEg+n6iJb9s5dQ25TW/hOI62PQ7f7SWUyNJZtjkFMMc/UCXnr4i9UHGm2PKto wQr3c0CXns2+Adt5Voos53C5gYGi75kMqSj+s+T6LMHIsoGa6Y2CPuEaCo9qvr+G EEYu1ZxLUC72g+esaC2skQnExRgQj77gDIR/NlbbIhITyp6eltmGYoo/aCmvw95w La0Amf0MzoL+A9utTGmeA2LTDH6QWBtxnnmTCuNWO4sCVEVN+lr5t3bkzManl5aK HlFIzltkHoatsfjZVvPrcZveDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpqB7T4 OT9d94QAVsjQfofvnfdyMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMW3QOzf7WLP108pYka1egq0ole3uu+V0lU0pwpOnov/wUC/FL3BDl 5z9qtQ+0azxdwCocGm7Vz5MDuKy//73nwUS6/yIlGEk/P/MvTuXiblldrszGsS7v GA2VLPQ8hVvSFmkBvI3kPG2LRvw7/P3OhT5qlMFPtzlkmhVkBqIorH3zPN3dY4OL PLViyHxsHT1j7K1mWnpmz8o6zHKSr5GYr3f6rsHyegZF56OyFIUqACEZVS4Z5cJZ oudbamcWAEQY7eKzofA9gmFl9TVXUNYOshSUN6RGUrHJmm5NKludxCnwx2U1gKJU rE0qzblo/50UxcjBvzQvPrzuquOmv5Cz -----END CERTIFICATE-----Generated at Thu Jun 19 05:57:24 2025 by rpki-client