$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: V4PgZ59pG/dI7AE7ZbJoWwATm9tC3LH0XGXyG7d/pi0= Subject key identifier: 35:B9:A4:16:D4:63:74:1D:48:63:47:A0:17:F2:FF:D0:57:17:27:F4 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 015B Signing time: Tue 17 Jun 2025 03:25:25 +0000 Manifest this update: Tue 17 Jun 2025 03:25:25 +0000 Manifest next update: Tue 24 Jun 2025 03:25:25 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: EuWVZJk2IRSLrfTzifXOZildcQV+kCOhe5ztqiCF+nE=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: VRlasPmFdnGQ7jXmsGRiZ9YkkvB4UEQJbRXUpRC4bL8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: Qgji862kow2VwzLmbLL0a0Y2hhvgFChH2ZT0r4kSTl8=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: qOQvPOfqQOexW3Sxvhsqmm5W1KEN72YTFSt5Z0QktXg=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: pidH+xtb8OXyN3SlmzLiBUdr0SQho8QbaXQpLP6w5rQ=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: LMxslHx0hj+eRPegweO/Q77RiY35syFR40MU3J+sT8s=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: Wa8VD0lmDOwdth5KoUIOfMLBdB57aoMl1cYAfCOjMXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Jun 17 03:25:25 2025 GMT Not After : Jun 24 03:25:25 2025 GMT Subject: CN=6850e025-4a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:72:0c:25:89:f0:bf:ad:ae:df:f1:0d:56: 4a:9d:8d:96:e2:f9:68:61:da:28:ec:cd:f8:18:1f: 29:f4:40:62:7c:62:de:f8:9a:63:08:35:69:65:71: 46:eb:c9:16:60:8f:8a:a3:c4:ba:04:5a:f6:76:94: ff:77:d9:6d:b4:8c:b2:36:48:e2:b0:4b:3a:8b:e7: 6b:dd:9f:09:b8:ca:d4:cc:a9:b5:25:b6:d8:d8:34: 41:58:e6:01:95:03:48:ea:b2:c8:e2:8f:ee:73:f7: a9:33:c7:f7:03:86:3e:4c:3a:88:c9:8c:19:6f:9a: 10:d6:c9:91:4a:fd:0e:e8:be:6f:b9:e6:04:a3:be: ba:01:5b:e4:71:fb:6e:8a:3d:63:74:bf:46:b6:a6: 52:4e:82:b6:ce:b8:2c:1e:0b:a0:55:b0:74:2f:7c: 37:17:19:57:93:57:7f:5e:81:aa:5f:6a:73:f0:08: 78:2c:19:09:1c:92:d6:65:7b:39:1e:f7:3f:32:72: fa:c0:bb:8c:0a:e5:82:40:85:84:7b:06:09:c3:8b: 86:f0:55:20:5e:e3:d0:0b:56:a1:ef:2b:57:d8:63: 68:38:15:7e:6b:22:ca:95:4d:b4:3c:e7:5f:66:3f: 74:87:ce:cd:27:e4:54:4d:fc:04:a4:90:b9:af:40: cb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B9:A4:16:D4:63:74:1D:48:63:47:A0:17:F2:FF:D0:57:17:27:F4 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f7:6c:0e:69:5e:92:a1:6b:35:00:60:fc:92:e8:a3:56:4d: 6a:ec:de:22:fc:38:47:99:4a:b8:8d:da:a2:e3:a7:46:b5:8b: 2a:6a:88:79:b5:81:68:2f:25:61:35:c2:27:8f:18:4d:6c:63: f8:67:2b:99:d2:20:ff:16:65:ea:51:a7:fd:1c:f6:cb:40:7a: 13:21:79:97:f1:3d:26:3f:2e:4d:0b:80:be:45:34:bd:04:21: 67:9d:14:67:6a:14:f0:1b:70:df:28:ca:df:b6:a7:a8:f8:c4: 67:48:7b:9d:21:c9:17:9f:3b:5b:1e:f8:8e:6c:33:90:6d:25: b7:61:53:6a:79:27:22:27:59:6b:80:65:46:4c:bc:d4:fe:74: ae:c1:ef:fb:48:6c:5f:6e:0c:87:e8:09:aa:bc:fd:7f:c5:c2: 44:4b:b4:30:cb:55:b5:ff:5e:ea:19:83:d7:05:8a:d6:46:8d: c2:4d:7b:79:f5:b3:c6:10:27:87:8d:9a:5b:79:89:eb:cc:5b: e2:75:8b:27:35:f2:ed:71:1f:15:17:18:4e:44:9e:c7:b7:89: a8:b7:97:47:2b:9d:a6:8c:dd:3f:57:d0:22:e6:0a:6e:46:7f: 15:1d:f8:5e:70:25:07:bc:3a:14:4e:26:b7:a2:a8:79:1e:53: 17:7f:09:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwNjE3MDMyNTI1WhcNMjUwNjI0MDMyNTI1WjAYMRYwFAYD VQQDEw02ODUwZTAyNS00YTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz11yDCWJ8L+trt/xDVZKnY2W4vloYdoo7M34GB8p9EBifGLe+JpjCDVpZXFG 68kWYI+Ko8S6BFr2dpT/d9lttIyyNkjisEs6i+dr3Z8JuMrUzKm1JbbY2DRBWOYB lQNI6rLI4o/uc/epM8f3A4Y+TDqIyYwZb5oQ1smRSv0O6L5vueYEo766AVvkcftu ij1jdL9GtqZSToK2zrgsHgugVbB0L3w3FxlXk1d/XoGqX2pz8Ah4LBkJHJLWZXs5 Hvc/MnL6wLuMCuWCQIWEewYJw4uG8FUgXuPQC1ah7ytX2GNoOBV+ayLKlU20POdf Zj90h87NJ+RUTfwEpJC5r0DLhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDW5pBbU Y3QdSGNHoBfy/9BXFyf0MB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC92wOaV6SoWs1AGD8kuijVk1q7N4i/DhHmUq4jdqi46dGtYsqaoh5 tYFoLyVhNcInjxhNbGP4ZyuZ0iD/FmXqUaf9HPbLQHoTIXmX8T0mPy5NC4C+RTS9 BCFnnRRnahTwG3DfKMrftqeo+MRnSHudIckXnztbHviObDOQbSW3YVNqeSciJ1lr gGVGTLzU/nSuwe/7SGxfbgyH6AmqvP1/xcJES7Qwy1W1/17qGYPXBYrWRo3CTXt5 9bPGECeHjZpbeYnrzFvidYsnNfLtcR8VFxhORJ7Ht4mot5dHK52mjN0/V9Ai5gpu Rn8VHfhecCUHvDoUTia3oqh5HlMXfwkd -----END CERTIFICATE-----Generated at Wed Jun 18 08:59:40 2025 by rpki-client