$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft File: Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft (raw, json) Hash identifier: 1k1z1r4l8cBncPZb5e6hWBI/nlxBZ6qMO8UdEMT2eDQ= Subject key identifier: 9E:15:DA:FF:05:97:60:F3:1A:9C:F3:D4:BF:FA:F2:C3:44:EE:7B:8B Authority key identifier: 5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 Certificate issuer: /CN=A91F8119/serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Certificate serial: 25B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft Manifest number: 2598 Signing time: Mon 16 Jun 2025 15:48:47 +0000 Manifest this update: Mon 16 Jun 2025 15:48:46 +0000 Manifest next update: Mon 23 Jun 2025 15:48:46 +0000 Files and hashes: 1: Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl (hash: F1VtO/jeF0EIj1gz6m5kjOdxu9kjE5uDfs5RQyOjcaw=) 2: 171130AE15F011EC805A0A2FC4F9AE02.roa (hash: pVWyhrhr52dDPOhFrnd0oPU2DOTP+1UBjUuKhhhwO0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9649 (0x25b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Validity Not Before: Jun 16 15:48:46 2025 GMT Not After : Jun 23 15:48:46 2025 GMT Subject: CN=68503cde-fd4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:30:95:8a:d6:79:c8:c6:b0:0f:d2:f5:77:18: 87:d5:00:e8:c7:96:20:35:1f:e2:52:50:ef:52:95: 39:b2:a8:5e:ca:35:77:6a:5a:76:b2:39:5b:68:2b: e0:dd:de:de:a3:81:90:8d:5b:04:33:18:5a:df:2b: 05:58:e8:39:f7:c2:b6:ff:6b:00:56:25:b0:71:20: f7:2a:b0:88:54:40:e1:15:86:52:6a:85:76:ca:8c: bb:33:20:d2:36:e4:97:87:3e:ce:0c:7b:af:5d:b7: 93:a0:f4:a8:2a:6d:c0:9b:65:43:ec:44:3c:cd:8e: f2:1a:6b:99:d0:8a:ce:a1:56:97:23:ad:b4:fd:8c: 1c:fe:b9:b7:09:62:6f:33:92:38:8d:85:6f:20:6d: aa:47:00:90:7a:ea:34:22:6d:89:0e:aa:54:92:cd: 0e:71:54:37:9c:96:88:13:8f:e9:e7:04:21:bb:01: af:61:e1:5e:33:17:a1:e3:16:da:ad:7b:45:3d:b9: 88:d6:17:a7:4c:85:a5:9d:f6:db:2d:96:c0:cd:00: 76:7d:32:e4:bc:43:fa:8b:27:5e:a9:61:a4:32:b3: 9f:67:5f:17:a5:63:59:5f:60:64:e0:ef:7c:df:43: e8:69:3d:f4:8d:77:cd:24:d5:b6:0d:c4:cd:4d:9d: a4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:15:DA:FF:05:97:60:F3:1A:9C:F3:D4:BF:FA:F2:C3:44:EE:7B:8B X509v3 Authority Key Identifier: keyid:5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:5f:d1:fe:60:16:92:fe:91:93:cc:58:de:8b:80:57:39:9d: 69:51:ae:99:29:e2:d9:ec:9c:bd:80:43:25:07:49:4d:3d:c0: d8:9d:23:44:47:6b:8f:d4:64:7b:47:ad:e0:e8:99:1d:f2:78: 21:71:ed:a8:17:64:a1:8c:54:28:74:9d:13:7e:bf:b2:0c:7b: 30:e9:a3:51:a4:fb:fb:24:48:da:20:48:82:59:4f:26:e8:ce: 81:0b:82:b5:f5:82:3d:ab:29:a8:bd:57:e3:24:35:07:75:82: e9:bb:41:32:d1:a9:8a:ac:cf:dd:a4:7a:8c:1d:ed:07:b4:03: 7a:a9:d2:fa:b7:2f:b8:29:2f:06:d6:81:98:96:af:20:9f:4f: 98:c6:31:40:af:e0:f4:ac:26:04:a9:55:26:31:dd:40:1a:09: 5d:27:56:45:48:56:47:f5:f9:48:a8:4c:d6:d3:1a:d5:23:0b: 19:30:d1:8a:cc:6c:42:d4:2f:fa:bc:01:93:48:91:8d:e6:90: 21:84:48:6c:f0:8e:d8:6e:30:c5:bb:2c:25:e3:c9:ca:f1:06: 48:b9:a9:b6:07:db:15:d8:44:25:83:30:3c:e5:49:b7:45:6c: ce:43:f1:8f:40:13:52:bb:24:e6:a9:4d:3e:a3:e7:41:f0:1e: 63:72:31:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDVGMzhGNDE5NTE2MTYyQkQ4ODZFNDBCREE5MjdGNTVE QzZGRjNFNjIwHhcNMjUwNjE2MTU0ODQ2WhcNMjUwNjIzMTU0ODQ2WjAYMRYwFAYD VQQDEw02ODUwM2NkZS1mZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzCVitZ5yMawD9L1dxiH1QDox5YgNR/iUlDvUpU5sqheyjV3alp2sjlbaCvg 3d7eo4GQjVsEMxha3ysFWOg598K2/2sAViWwcSD3KrCIVEDhFYZSaoV2yoy7MyDS NuSXhz7ODHuvXbeToPSoKm3Am2VD7EQ8zY7yGmuZ0IrOoVaXI620/Ywc/rm3CWJv M5I4jYVvIG2qRwCQeuo0Im2JDqpUks0OcVQ3nJaIE4/p5wQhuwGvYeFeMxeh4xba rXtFPbmI1henTIWlnfbbLZbAzQB2fTLkvEP6iydeqWGkMrOfZ18XpWNZX2Bk4O98 30PoaT30jXfNJNW2DcTNTZ2kbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4V2v8F l2DzGpzz1L/68sNE7nuLMB8GA1UdIwQYMBaAFF849BlRYWK9iG5Avakn9V3G/z5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS9BN0VDNTk2QzEz MzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFlyMklia0M5cVNmMVhjYl9Q bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6ajBHVkZoWXIySWJrQzlxU2YxWGNiX1BtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS9BN0VDNTk2QzEzMzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFly Mklia0M5cVNmMVhjYl9QbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHX9H+YBaS/pGTzFjei4BXOZ1pUa6ZKeLZ7Jy9gEMlB0lNPcDYnSNE R2uP1GR7R63g6Jkd8nghce2oF2ShjFQodJ0Tfr+yDHsw6aNRpPv7JEjaIEiCWU8m 6M6BC4K19YI9qymovVfjJDUHdYLpu0Ey0amKrM/dpHqMHe0HtAN6qdL6ty+4KS8G 1oGYlq8gn0+YxjFAr+D0rCYEqVUmMd1AGgldJ1ZFSFZH9flIqEzW0xrVIwsZMNGK zGxC1C/6vAGTSJGN5pAhhEhs8I7YbjDFuywl48nK8QZIuam2B9sV2EQlgzA85Um3 RWzOQ/GPQBNSuyTmqU0+o+dB8B5jcjFh -----END CERTIFICATE-----Generated at Tue Jun 17 04:45:14 2025 by rpki-client