$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: 1CTWO3pLDWIiVnNpVy0PaNDxo17ngaHxpeJRkxUJxDs= Subject key identifier: BB:76:4B:84:2F:7B:E2:79:08:AE:AE:5C:05:AD:35:E2:08:05:30:A2 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2511 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2511 Signing time: Mon 16 Jun 2025 14:31:56 +0000 Manifest this update: Mon 16 Jun 2025 14:31:56 +0000 Manifest next update: Mon 23 Jun 2025 14:31:56 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: xhRxriDTavLYBKQkHRidiu3zWn4Og3AvOELqm/HbUNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9489 (0x2511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jun 16 14:31:56 2025 GMT Not After : Jun 23 14:31:56 2025 GMT Subject: CN=68502adc-85e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:c6:c1:0f:cb:b2:cc:0e:a3:11:3f:d4:5e: 94:d2:b1:3d:8f:0b:1c:74:b8:9f:d6:cc:cc:c5:81: 3c:13:12:8f:db:7b:25:c9:0a:bb:85:1a:70:65:30: 55:b3:14:a0:0b:32:c6:1e:33:93:45:b8:4e:b0:4e: f6:6f:b8:86:f5:27:4b:0c:2c:6d:b5:76:0e:21:4d: 7c:29:d8:a4:d3:f0:a9:31:ab:e1:be:2a:84:21:6e: a2:3c:b1:35:e5:07:1c:ab:f0:5e:33:83:2a:87:0f: a2:04:61:51:01:ef:29:c8:de:2c:9e:ba:71:71:05: 7b:3e:70:d8:84:98:4a:ad:e2:1e:00:57:8c:30:f6: 01:4e:98:9c:f9:40:86:3d:eb:f4:7b:3c:fc:88:1e: a2:82:3b:4f:2e:16:52:c7:e1:84:ea:91:96:25:19: a5:2d:30:e2:02:93:48:86:f3:2b:e4:d9:9d:d4:8a: dd:62:0a:ba:7c:3a:60:75:8a:78:4f:ec:fa:2e:7e: 27:a5:c2:46:8f:b5:41:5e:9d:6c:76:74:0e:07:95: 69:8f:03:21:ca:08:ba:b3:a2:1d:2b:7f:61:eb:7f: a2:77:4f:d2:ef:3c:43:87:b8:cb:a0:07:ac:a6:45: 86:75:38:7a:7f:f3:04:9b:ca:2e:ab:b6:45:8f:e4: 03:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:76:4B:84:2F:7B:E2:79:08:AE:AE:5C:05:AD:35:E2:08:05:30:A2 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:54:56:1b:85:05:23:97:a1:82:9a:97:4e:76:92:cb:08:e2: 38:1c:42:23:0d:ca:cd:88:56:73:5f:12:75:7c:c9:99:61:f8: 46:56:5d:51:28:09:0f:4a:6f:72:10:44:b3:b5:70:47:90:be: 3f:9f:92:32:74:77:73:c3:1a:05:b1:6b:d5:e6:24:f6:e1:49: f7:c6:e8:3e:ad:ec:ef:1f:26:ab:3b:30:88:70:1f:1e:87:73: 41:ce:96:b8:64:09:ad:e0:02:5e:4d:3f:a2:34:a0:e2:94:c7: 39:0a:e4:19:24:7d:73:75:9d:86:8b:b8:6a:f5:87:81:f6:b3: e0:8c:b1:71:fc:4e:65:53:68:ac:fe:66:45:75:23:d3:ce:5c: d7:4f:2a:fb:35:4f:ee:3e:a4:4a:e8:ac:12:ea:04:8a:9f:af: 5f:f4:51:07:6b:a1:ef:1a:6f:9d:f7:c6:7c:2d:5f:4c:8f:ee: 5c:72:46:37:d6:df:05:72:a0:8c:8d:00:f5:8c:33:c8:e8:75: c9:6a:67:47:c6:24:98:01:f9:36:74:77:1a:11:08:17:9a:14: 59:7a:99:00:9b:17:9d:1d:e0:8d:44:7b:0a:55:ea:e3:15:14: be:d0:87:1a:ad:5f:2b:3e:ad:6b:96:63:0f:81:e9:da:fc:ea: 2a:ea:7f:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNjE2MTQzMTU2WhcNMjUwNjIzMTQzMTU2WjAYMRYwFAYD VQQDEw02ODUwMmFkYy04NWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttrGwQ/LsswOoxE/1F6U0rE9jwscdLif1szMxYE8ExKP23slyQq7hRpwZTBV sxSgCzLGHjOTRbhOsE72b7iG9SdLDCxttXYOIU18Kdik0/CpMavhviqEIW6iPLE1 5Qccq/BeM4Mqhw+iBGFRAe8pyN4snrpxcQV7PnDYhJhKreIeAFeMMPYBTpic+UCG Pev0ezz8iB6igjtPLhZSx+GE6pGWJRmlLTDiApNIhvMr5Nmd1IrdYgq6fDpgdYp4 T+z6Ln4npcJGj7VBXp1sdnQOB5VpjwMhygi6s6IdK39h63+id0/S7zxDh7jLoAes pkWGdTh6f/MEm8ouq7ZFj+QD0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLt2S4Qv e+J5CK6uXAWtNeIIBTCiMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3VFYbhQUjl6GCmpdOdpLLCOI4HEIjDcrNiFZzXxJ1fMmZYfhGVl1R KAkPSm9yEESztXBHkL4/n5IydHdzwxoFsWvV5iT24Un3xug+rezvHyarOzCIcB8e h3NBzpa4ZAmt4AJeTT+iNKDilMc5CuQZJH1zdZ2Gi7hq9YeB9rPgjLFx/E5lU2is /mZFdSPTzlzXTyr7NU/uPqRK6KwS6gSKn69f9FEHa6HvGm+d98Z8LV9Mj+5cckY3 1t8FcqCMjQD1jDPI6HXJamdHxiSYAfk2dHcaEQgXmhRZepkAmxedHeCNRHsKVerj FRS+0IcarV8rPq1rlmMPgena/Ooq6n/5 -----END CERTIFICATE-----Generated at Wed Jun 18 15:17:32 2025 by rpki-client