$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: HHsg1awsFpTSC/M3BYiC/9VLrj0LNnJtAM8D4lAc6FQ= Subject key identifier: 52:6E:BD:07:33:85:39:8E:00:DE:AC:3B:80:7F:3E:C0:27:98:54:35 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E44 Signing time: Wed 18 Jun 2025 17:42:14 +0000 Manifest this update: Wed 18 Jun 2025 17:42:14 +0000 Manifest next update: Wed 25 Jun 2025 17:42:14 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: 8NH39nPk3u4/rv4+LFcqoZuMTtFLsDyQKC9BsTWP+b8=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3665 (0xe51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Jun 18 17:42:14 2025 GMT Not After : Jun 25 17:42:14 2025 GMT Subject: CN=6852fa76-72b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9c:b3:b9:87:1b:3a:fd:2b:aa:f5:1e:f7:8a: 51:c7:5c:b2:7d:c0:3d:ea:10:e9:c9:88:c8:c6:0e: d4:69:4b:78:df:f4:ff:8f:db:14:f0:8d:01:b6:f6: 74:78:07:75:62:c5:9f:8f:84:3d:26:41:b0:52:e6: 78:57:26:c8:85:e9:be:4c:d8:a9:83:af:d9:ce:7e: 3d:0b:d0:68:7e:14:19:0e:d9:de:59:b0:13:56:d1: f1:01:36:ac:72:5d:13:97:bc:56:f6:ee:01:b8:d0: dc:0b:67:fc:c1:9b:c7:6a:42:35:0b:4a:90:dd:fe: e8:d5:2c:3e:46:6d:ee:02:4f:ae:51:f5:bc:77:a7: 5f:6e:cb:d9:6d:ee:fa:fe:d5:3f:15:d6:0a:a2:22: f5:35:79:70:18:89:0b:c9:ea:50:c9:99:8b:6a:01: bc:2e:38:ce:76:80:ec:33:e8:e4:bc:9c:d3:c4:ea: 50:80:8d:b1:bb:b9:4c:3d:09:3f:1b:df:1f:4a:ee: 22:93:5c:59:ac:a0:f5:1e:66:30:56:dc:76:af:df: ab:bd:38:02:64:c8:14:fb:56:87:4e:6d:74:a5:7b: d5:1d:fb:ee:7b:67:33:fa:f9:49:b1:b8:b5:16:4a: b5:5a:f3:e9:ff:e6:4b:5f:8b:d1:a9:2c:72:b9:d7: 64:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:6E:BD:07:33:85:39:8E:00:DE:AC:3B:80:7F:3E:C0:27:98:54:35 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:5f:65:90:14:28:91:c1:ae:da:fc:f6:2d:fb:67:23:4a:d6: ab:33:0f:1e:49:2e:e0:2e:05:9e:9b:d0:ce:86:35:f6:53:c8: 57:73:43:71:29:2c:d2:23:a1:68:72:12:29:ef:31:8d:fb:78: 0e:62:c2:de:9a:2a:e0:b9:2f:ae:f6:13:06:51:ca:87:59:1f: 48:df:ec:a8:6a:5a:94:ec:e0:60:74:3d:cb:70:b5:ea:f6:58: 66:92:0e:f9:3c:71:a8:b7:57:76:f5:8e:32:3f:e0:29:fa:ad: d3:99:80:1f:ed:65:82:53:19:59:0a:fb:0f:64:ec:8b:d8:e3: 74:f0:18:b8:45:7a:1a:9d:79:2c:31:f7:92:be:00:8f:db:c2: 93:84:61:07:4f:5d:50:ab:7c:83:95:f3:56:23:50:a4:f9:0a: 01:9c:81:6e:08:83:c5:8b:d1:4b:01:70:0e:f3:29:ec:60:e3: cb:e6:44:3a:bb:15:0c:ad:42:3e:d4:9f:5c:c9:98:e7:3c:6d: 18:db:c0:7b:53:ca:6f:f3:97:9f:ae:70:c1:67:12:ef:5d:56: e5:6f:f8:73:3e:38:d7:26:7a:4d:65:b7:1b:36:03:07:3c:45: 0e:dc:d1:d7:c1:78:3a:39:98:9e:69:5d:ee:f4:c5:d6:7c:d4: ba:c4:77:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUwNjE4MTc0MjE0WhcNMjUwNjI1MTc0MjE0WjAYMRYwFAYD VQQDEw02ODUyZmE3Ni03MmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlpyzuYcbOv0rqvUe94pRx1yyfcA96hDpyYjIxg7UaUt43/T/j9sU8I0BtvZ0 eAd1YsWfj4Q9JkGwUuZ4VybIhem+TNipg6/Zzn49C9BofhQZDtneWbATVtHxATas cl0Tl7xW9u4BuNDcC2f8wZvHakI1C0qQ3f7o1Sw+Rm3uAk+uUfW8d6dfbsvZbe76 /tU/FdYKoiL1NXlwGIkLyepQyZmLagG8LjjOdoDsM+jkvJzTxOpQgI2xu7lMPQk/ G98fSu4ik1xZrKD1HmYwVtx2r9+rvTgCZMgU+1aHTm10pXvVHfvue2cz+vlJsbi1 Fkq1WvPp/+ZLX4vRqSxyuddkvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJuvQcz hTmOAN6sO4B/PsAnmFQ1MB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJX2WQFCiRwa7a/PYt+2cjStarMw8eSS7gLgWem9DOhjX2U8hXc0Nx KSzSI6FochIp7zGN+3gOYsLemirguS+u9hMGUcqHWR9I3+yoalqU7OBgdD3LcLXq 9lhmkg75PHGot1d29Y4yP+Ap+q3TmYAf7WWCUxlZCvsPZOyL2ON08Bi4RXoanXks MfeSvgCP28KThGEHT11Qq3yDlfNWI1Ck+QoBnIFuCIPFi9FLAXAO8ynsYOPL5kQ6 uxUMrUI+1J9cyZjnPG0Y28B7U8pv85efrnDBZxLvXVblb/hzPjjXJnpNZbcbNgMH PEUO3NHXwXg6OZieaV3u9MXWfNS6xHd7 -----END CERTIFICATE-----Generated at Thu Jun 19 09:18:06 2025 by rpki-client