$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft File: 5xqfIU6Aybw7LSOf-LmqtxP27bc.mft (raw, json) Hash identifier: XA7tM+KKrLdwFhGzjFC0kCGeicGrzhMIvBeM5Tmvxm0= Subject key identifier: 4C:B3:C4:1F:3C:34:78:4E:C7:2C:33:60:EB:71:2A:BF:7E:63:08:6D Authority key identifier: E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 Certificate issuer: /CN=A91E8525/serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Certificate serial: 19DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft Manifest number: 19CA Signing time: Sat 14 Jun 2025 16:21:14 +0000 Manifest this update: Sat 14 Jun 2025 16:21:14 +0000 Manifest next update: Sat 21 Jun 2025 16:21:14 +0000 Files and hashes: 1: 5xqfIU6Aybw7LSOf-LmqtxP27bc.crl (hash: xGzHHk+6KZ4/LnGQkPsw0Ck0qVXhpw5L0K2wLy8xtnE=) 2: 3A21C144E51211EBB1225278C4F9AE02.roa (hash: nW5GBU8+whiRwJPpyl+4Uvg+meP7sM49SIVv5JyITRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6621 (0x19dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8525, serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Validity Not Before: Jun 14 16:21:14 2025 GMT Not After : Jun 21 16:21:14 2025 GMT Subject: CN=684da17a-bca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8a:b0:a2:57:96:72:70:76:02:98:69:39:92: a9:21:18:27:66:ac:60:a3:ad:43:fe:14:77:e1:29: 63:ca:37:d3:5a:30:4d:28:76:59:3b:32:ce:6d:b0: 39:74:3d:69:08:0f:93:4e:09:1d:37:06:ca:83:41: c7:e7:6e:0b:9f:a2:95:83:fb:c9:90:ca:b9:68:d3: 0d:de:e3:2c:09:2e:23:27:aa:b7:2c:bb:f6:b3:22: be:4a:1d:7b:11:4d:25:39:8c:03:28:34:5c:b7:77: da:41:1a:d7:10:16:b1:58:aa:84:0a:33:cd:59:04: 6a:e5:71:27:f3:25:53:15:9a:24:0b:73:41:02:76: 9b:2f:c7:82:9d:a4:82:0c:a6:5c:ee:2d:25:af:1c: cd:61:98:2c:b6:12:e8:b2:96:64:90:73:29:51:90: 1a:e4:87:95:88:57:eb:53:d0:1e:c0:78:b7:aa:63: 8d:ae:43:ac:99:bd:2b:0b:71:6e:dc:fe:35:dc:d7: 26:0b:a3:25:f7:27:37:eb:40:a7:9a:7a:df:bf:46: 55:a6:8b:ac:da:55:86:8e:4b:33:0b:dc:28:5c:51: 32:97:96:11:7c:e2:37:e7:eb:21:79:ce:8a:47:07: 35:fe:5b:d7:66:d1:a7:d1:c0:f9:23:02:56:19:97: f0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B3:C4:1F:3C:34:78:4E:C7:2C:33:60:EB:71:2A:BF:7E:63:08:6D X509v3 Authority Key Identifier: keyid:E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c5:05:fc:d9:49:af:71:b4:28:df:61:65:7f:ca:91:bd:b4: 1b:8e:59:39:e0:6b:34:d1:c0:e4:d4:98:87:1f:5a:33:d5:be: 52:fe:a6:95:52:f5:74:d4:54:ff:97:fc:7d:f9:fd:e0:38:80: 96:78:63:e6:9a:fb:39:1e:e2:e5:66:b5:be:ec:9b:ba:b6:3f: 36:45:f3:08:f6:2c:27:88:f6:b2:42:52:6d:21:f3:73:17:ff: ec:89:33:6f:bc:8f:0a:8c:b6:ae:74:e7:d6:d8:d6:0b:7d:5f: 15:3f:c6:cf:01:a8:e8:9a:30:f6:45:7d:4b:bb:dd:3a:df:6d: 10:e4:b4:5b:d0:84:6e:03:e5:a2:57:46:75:e0:0b:e5:a4:12: be:eb:a7:ec:83:6b:50:b7:8e:55:90:9d:fd:e9:4b:df:db:c7: 86:23:63:08:df:5f:df:00:b3:eb:9c:d0:6d:27:63:44:f8:4a: 31:66:09:a5:ae:35:f5:5c:d3:33:88:a4:a6:65:dd:31:78:db: c3:1b:72:77:27:b9:ef:31:9d:32:8b:5e:f8:6e:a6:64:dc:23: 64:81:d4:be:69:d8:8d:5d:73:0c:82:66:8f:7a:54:ce:1d:0e: db:23:02:86:83:6c:4a:be:21:76:d2:74:3f:bd:ee:1d:df:a0: 0c:c9:f3:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1MjUxMTAvBgNVBAUTKEU3MUE5RjIxNEU4MEM5QkMzQjJEMjM5RkY4QjlBQUI3 MTNGNkVEQjcwHhcNMjUwNjE0MTYyMTE0WhcNMjUwNjIxMTYyMTE0WjAYMRYwFAYD VQQDEw02ODRkYTE3YS1iY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oqwoleWcnB2AphpOZKpIRgnZqxgo61D/hR34SljyjfTWjBNKHZZOzLObbA5 dD1pCA+TTgkdNwbKg0HH524Ln6KVg/vJkMq5aNMN3uMsCS4jJ6q3LLv2syK+Sh17 EU0lOYwDKDRct3faQRrXEBaxWKqECjPNWQRq5XEn8yVTFZokC3NBAnabL8eCnaSC DKZc7i0lrxzNYZgsthLospZkkHMpUZAa5IeViFfrU9AewHi3qmONrkOsmb0rC3Fu 3P413NcmC6Ml9yc360Cnmnrfv0ZVpous2lWGjkszC9woXFEyl5YRfOI35+shec6K Rwc1/lvXZtGn0cD5IwJWGZfwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyzxB88 NHhOxywzYOtxKr9+YwhtMB8GA1UdIwQYMBaAFOcanyFOgMm8Oy0jn/i5qrcT9u23 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODUyNS81MjIxMjYxMDYx MkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXlidzdMU09mLUxtcXR4UDI3 YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4cWZJVTZBeWJ3N0xTT2YtTG1xdHhQMjdiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODUyNS81MjIxMjYxMDYxMkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXli dzdMU09mLUxtcXR4UDI3YmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKxQX82UmvcbQo32Flf8qRvbQbjlk54Gs00cDk1JiHH1oz1b5S/qaV UvV01FT/l/x9+f3gOICWeGPmmvs5HuLlZrW+7Ju6tj82RfMI9iwniPayQlJtIfNz F//siTNvvI8KjLaudOfW2NYLfV8VP8bPAajomjD2RX1Lu906320Q5LRb0IRuA+Wi V0Z14AvlpBK+66fsg2tQt45VkJ396Uvf28eGI2MI31/fALPrnNBtJ2NE+EoxZgml rjX1XNMziKSmZd0xeNvDG3J3J7nvMZ0yi174bqZk3CNkgdS+adiNXXMMgmaPelTO HQ7bIwKGg2xKviF20nQ/ve4d36AMyfO6 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:43 2025 by rpki-client