$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: vwVfnp//eyc66KVVQM0WcmotthY9uXucQaGtkdvBZIM= Subject key identifier: DF:D9:24:88:AC:AB:B7:D0:84:EA:6D:3B:3F:82:E7:8B:FC:D2:43:DC Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 05E0 Signing time: Mon 16 Jun 2025 22:39:39 +0000 Manifest this update: Mon 16 Jun 2025 22:39:38 +0000 Manifest next update: Mon 23 Jun 2025 22:39:38 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: +E/bqpWkmnuIO2JTj8+jyG9A2X+FwqDCzJAkW0QleWc=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: bgQvr2Jdprt2Ja1Usi3GgYGC5SiLxAPy60mdKqHu2RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Jun 16 22:39:38 2025 GMT Not After : Jun 23 22:39:38 2025 GMT Subject: CN=68509d2a-233c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c7:2c:d1:a7:71:1b:42:59:73:0c:30:b5:98: ad:b1:ba:6c:a2:01:1c:c2:64:82:1b:58:a9:e1:67: 4e:0b:dc:c0:e1:ef:de:83:e2:5c:73:1e:1c:57:42: c3:69:56:97:d5:14:b1:60:fb:b5:18:14:3f:ff:70: b7:26:59:ac:fa:e2:52:3c:d2:c5:97:61:d0:11:0e: b8:62:36:6f:9e:42:cc:02:17:9f:5a:7b:80:02:b5: 04:9a:59:54:cd:1e:57:91:fd:c2:ad:44:cf:15:08: b5:43:b8:07:37:34:af:aa:9c:7f:57:43:0d:f5:5d: 69:fb:95:1f:fd:73:e0:0e:1d:5a:20:d2:20:95:08: aa:a7:4b:35:db:98:90:e1:d9:75:da:1f:a4:a5:e4: 5b:e4:58:48:b2:70:d9:03:ba:42:9d:d0:35:14:a8: ad:df:4f:cc:82:65:9d:93:79:3a:a5:f8:b5:8f:ff: 35:e6:c2:33:53:32:c0:c8:10:be:99:bc:66:84:10: 13:36:8c:d7:2e:95:fc:d6:81:e4:6b:0b:fc:b2:d8: db:93:5c:d3:2a:61:7e:73:ad:42:4d:1c:b2:ff:e6: dd:35:28:a3:51:62:73:21:65:08:27:0c:56:e5:59: 74:e8:80:62:c3:b8:6a:6e:53:3f:4c:bf:9d:91:89: 58:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D9:24:88:AC:AB:B7:D0:84:EA:6D:3B:3F:82:E7:8B:FC:D2:43:DC X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:7d:1f:11:32:79:8f:a5:4b:89:d3:92:0f:81:a5:fc:e5:ec: 3b:3b:7b:40:03:db:51:f7:a6:76:dd:99:54:15:6d:d4:95:00: 19:d0:13:55:9f:52:68:be:a7:97:08:54:fb:59:31:f8:26:0a: 06:7f:d0:4d:e4:47:3b:54:29:6f:05:9a:72:7e:65:17:63:bc: 01:05:ac:5e:e5:ff:14:90:56:fd:ad:f2:51:6a:af:97:20:f7: ad:70:38:95:e1:7c:1f:20:9b:77:d1:7c:8f:b8:32:37:08:57: cb:c1:03:c3:fe:d6:a7:06:53:f3:db:22:40:9a:dd:6e:ed:9a: a0:c9:e4:db:bf:c1:cc:99:58:d0:36:4d:e0:3a:a8:ce:5d:d3: 66:84:e6:62:10:c1:f6:d9:94:42:4d:8c:50:80:a5:c5:f0:05: 0a:71:54:e9:04:e2:9e:06:10:cf:ba:99:fc:4f:ee:d7:68:16: 96:41:14:44:a2:58:36:7c:ab:db:86:7b:8e:52:75:49:64:16: 79:8c:2d:59:9e:f9:41:cb:0d:c5:34:75:ad:e8:61:7a:8d:42: c3:fb:f5:75:92:1c:31:ad:f6:b5:f1:73:31:cd:7c:25:c3:15: 53:77:e2:e0:ff:59:d2:16:02:ef:e2:99:55:f8:8c:1d:99:54: f8:a1:b7:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUwNjE2MjIzOTM4WhcNMjUwNjIzMjIzOTM4WjAYMRYwFAYD VQQDEw02ODUwOWQyYS0yMzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwccs0adxG0JZcwwwtZitsbpsogEcwmSCG1ip4WdOC9zA4e/eg+Jccx4cV0LD aVaX1RSxYPu1GBQ//3C3Jlms+uJSPNLFl2HQEQ64YjZvnkLMAhefWnuAArUEmllU zR5Xkf3CrUTPFQi1Q7gHNzSvqpx/V0MN9V1p+5Uf/XPgDh1aINIglQiqp0s125iQ 4dl12h+kpeRb5FhIsnDZA7pCndA1FKit30/MgmWdk3k6pfi1j/815sIzUzLAyBC+ mbxmhBATNozXLpX81oHkawv8stjbk1zTKmF+c61CTRyy/+bdNSijUWJzIWUIJwxW 5Vl06IBiw7hqblM/TL+dkYlYQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/ZJIis q7fQhOptOz+C54v80kPcMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvfR8RMnmPpUuJ05IPgaX85ew7O3tAA9tR96Z23ZlUFW3UlQAZ0BNV n1JovqeXCFT7WTH4JgoGf9BN5Ec7VClvBZpyfmUXY7wBBaxe5f8UkFb9rfJRaq+X IPetcDiV4XwfIJt30XyPuDI3CFfLwQPD/tanBlPz2yJAmt1u7ZqgyeTbv8HMmVjQ Nk3gOqjOXdNmhOZiEMH22ZRCTYxQgKXF8AUKcVTpBOKeBhDPupn8T+7XaBaWQRRE olg2fKvbhnuOUnVJZBZ5jC1ZnvlByw3FNHWt6GF6jULD+/V1khwxrfa18XMxzXwl wxVTd+Lg/1nSFgLv4plV+IwdmVT4obfC -----END CERTIFICATE-----Generated at Wed Jun 18 13:19:41 2025 by rpki-client