$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: JDAcfG59eaTt/R5vzBGP7WD6uqZ0uLv0BxqLiQNNK+8= Subject key identifier: 87:0D:B7:50:17:CE:74:45:05:C3:BD:92:2A:8C:61:3A:31:C6:90:F1 Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 040B Signing time: Tue 17 Jun 2025 00:06:37 +0000 Manifest this update: Tue 17 Jun 2025 00:06:37 +0000 Manifest next update: Tue 24 Jun 2025 00:06:37 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: 3yk8R0eu/EzLlBxC376mcdyM/aNjy2fJcP2N37tyegE=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: JDhvBxRe3WYJ1iKQKnxqCUD2z2C21JJ9nqsXsWXBpYM=) 3: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: QNRRPIEXpBXbzOjvogyb/5EofzlDIH5pOqmalYkDTHw=) 4: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0=) 5: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: QSRbYccf6zSEHa0HsQVgKCVz5nS1O8L5U8Elot2Xz40=) 6: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478=) 7: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU=) 8: 5F14A15442D111EF8424E65BC4F9AE02.roa (hash: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs=) 9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7KI+xGonwsZRICria/4CZwlDNlRIuXU/wVts22Crf9U=) 10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: fPCfFsxMUqOAvLJmkWjc+RPsiCNLjQ233XGNCqOiY/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 00:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Jun 17 00:06:37 2025 GMT Not After : Jun 24 00:06:37 2025 GMT Subject: CN=6850b18d-6e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8b:a0:27:2b:8a:08:85:e9:86:4f:57:3b:90: 38:13:25:23:79:1c:32:cd:fb:d1:b1:36:14:e0:fe: 68:73:8b:9b:4f:66:bc:72:3f:91:96:cb:44:4a:a5: b3:be:aa:95:7c:9b:6d:71:41:9f:7a:e3:63:40:58: e6:3c:f4:66:ba:b9:e7:e0:18:fc:a3:b8:23:4e:7c: 4f:ad:34:14:65:28:b6:e6:38:f3:bc:96:f0:69:b6: e1:ee:19:dd:c9:14:54:69:54:77:95:1a:ef:d2:91: e5:ad:38:7a:f1:63:63:d3:18:dd:4b:fd:13:21:1c: 3c:a5:42:93:9e:9d:4f:65:09:69:52:4e:f3:ac:c6: 02:86:55:fe:bc:99:e2:43:6f:be:e8:20:41:27:e9: 3b:21:e4:c9:5e:e5:a5:24:8a:a1:9c:49:46:86:59: 1a:93:0d:f8:31:c0:22:e0:e4:a8:72:af:f0:84:2f: 88:3c:b4:3d:ed:0d:fd:f7:df:5a:ee:10:92:65:8d: 35:d0:89:be:2f:71:a7:5d:84:15:26:73:98:1c:67: 21:10:cc:57:55:a2:ce:ea:58:19:49:c2:85:ce:93: 41:1e:46:f1:68:c0:98:73:20:ee:29:8e:5c:90:0f: a0:0c:d7:cd:51:43:03:58:0c:75:a0:cb:e3:92:b9: fe:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0D:B7:50:17:CE:74:45:05:C3:BD:92:2A:8C:61:3A:31:C6:90:F1 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:23:19:b7:ae:a5:99:1d:83:14:08:0c:1f:73:87:78:96:42: ae:a2:8a:9a:c9:7c:70:0d:80:93:d0:90:7b:8c:eb:f8:9d:3f: 42:2c:20:fb:5d:fa:88:c5:93:7e:0b:f9:44:7d:2a:78:20:9d: 8c:ae:8b:24:7c:74:19:c9:3c:31:d2:13:b3:5b:c7:0c:4c:82: 8c:87:b8:57:4e:91:c2:d3:41:9f:4a:21:c7:db:2f:15:cc:4c: 9f:b9:7e:c8:2a:90:e9:98:a9:74:0e:42:f9:e1:90:38:8d:51: 0d:1f:a6:37:90:36:aa:77:64:5a:68:b1:92:58:52:0e:7d:9f: ec:71:2d:8a:8a:3d:f5:cf:ae:78:87:4c:1c:3f:fe:42:51:7a: 08:71:86:2c:d3:44:3d:8f:71:61:d0:f7:44:ed:39:a1:f2:65: 6f:ad:b5:de:ce:39:0e:fc:93:8c:3f:a0:6a:31:6c:dd:f2:ef: 89:d8:e9:b4:6e:56:a3:ae:a3:d5:7d:a9:7c:c1:db:eb:f9:3d: ac:72:5d:4a:31:d6:d8:dc:05:94:b1:65:5a:6b:0d:e9:10:79: c6:c0:66:45:a3:d3:24:ba:14:8d:a8:bf:1b:d5:70:cb:0b:32: fe:32:10:9c:7f:d8:89:28:31:14:1d:f7:5c:9b:fe:e2:a7:9a: 4e:05:b0:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwNjE3MDAwNjM3WhcNMjUwNjI0MDAwNjM3WjAYMRYwFAYD VQQDEw02ODUwYjE4ZC02ZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIugJyuKCIXphk9XO5A4EyUjeRwyzfvRsTYU4P5oc4ubT2a8cj+RlstESqWz vqqVfJttcUGfeuNjQFjmPPRmurnn4Bj8o7gjTnxPrTQUZSi25jjzvJbwabbh7hnd yRRUaVR3lRrv0pHlrTh68WNj0xjdS/0TIRw8pUKTnp1PZQlpUk7zrMYChlX+vJni Q2++6CBBJ+k7IeTJXuWlJIqhnElGhlkakw34McAi4OSocq/whC+IPLQ97Q39999a 7hCSZY010Im+L3GnXYQVJnOYHGchEMxXVaLO6lgZScKFzpNBHkbxaMCYcyDuKY5c kA+gDNfNUUMDWAx1oMvjkrn+JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcNt1AX znRFBcO9kiqMYToxxpDxMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEIxm3rqWZHYMUCAwfc4d4lkKuooqayXxwDYCT0JB7jOv4nT9CLCD7 XfqIxZN+C/lEfSp4IJ2MroskfHQZyTwx0hOzW8cMTIKMh7hXTpHC00GfSiHH2y8V zEyfuX7IKpDpmKl0DkL54ZA4jVENH6Y3kDaqd2RaaLGSWFIOfZ/scS2Kij31z654 h0wcP/5CUXoIcYYs00Q9j3Fh0PdE7Tmh8mVvrbXezjkO/JOMP6BqMWzd8u+J2Om0 blajrqPVfal8wdvr+T2scl1KMdbY3AWUsWVaaw3pEHnGwGZFo9MkuhSNqL8b1XDL CzL+MhCcf9iJKDEUHfdcm/7ip5pOBbDX -----END CERTIFICATE-----Generated at Wed Jun 18 03:17:49 2025 by rpki-client