$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: vANy53aISRSQfIKbSozoSSVxSIaixGM2Txip6+O95cY= Subject key identifier: 89:1B:A4:C6:71:2B:F4:67:C6:5C:35:55:6A:42:90:15:E1:83:14:50 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: B3 Signing time: Thu 19 Jun 2025 05:21:59 +0000 Manifest this update: Thu 19 Jun 2025 05:21:58 +0000 Manifest next update: Thu 26 Jun 2025 05:21:58 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: omm46vw48mN9sVw0AIR7b6shRkj+CQhoZ7K6ywFD5qg=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: tpxknLltESXlXvrC8XRzEEbUw6cbAqdQTGW1X5phwoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Jun 19 05:21:58 2025 GMT Not After : Jun 26 05:21:58 2025 GMT Subject: CN=68539e76-2007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:26:69:f5:12:3d:d4:54:90:cf:ac:7a:c6: 71:ca:26:91:d1:49:44:b0:81:04:03:f9:d7:f0:46: fd:9f:6c:09:32:97:a9:04:0e:1d:6c:75:ce:dd:2f: 74:fc:00:d7:84:d9:a4:fd:15:29:7c:0a:aa:39:6a: 0c:32:15:a3:9c:b4:5b:66:05:53:77:8d:b8:8e:ce: 31:8f:cb:54:fd:b3:4e:4b:5d:33:75:e4:25:5a:7f: 90:a9:be:92:87:53:c5:05:6c:ed:b7:b4:e4:06:87: db:4d:51:51:84:53:f1:da:4a:65:8a:e2:96:88:c9: 78:c5:24:22:66:f5:bc:49:d1:25:d8:17:7d:74:9d: 70:c3:c2:5e:21:30:b1:93:fb:c6:63:1b:ce:21:d6: 33:c0:28:67:e6:19:ef:4f:a7:07:ad:48:7b:1e:3a: 95:02:83:6e:c8:74:49:c7:e4:4e:51:3e:d9:a9:07: e5:18:97:f8:81:95:6f:06:7e:8e:d4:56:e6:d6:a5: 6b:ff:a3:97:ca:9b:99:05:95:15:fe:53:5a:3b:80: 9c:32:51:52:f0:11:91:51:8f:6a:af:b7:42:b6:70: 92:b8:a8:31:52:df:92:9c:d5:69:d1:16:db:c5:86: db:0e:bc:2b:a6:97:af:e4:04:07:62:5c:35:98:27: 18:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1B:A4:C6:71:2B:F4:67:C6:5C:35:55:6A:42:90:15:E1:83:14:50 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:48:3f:58:60:a8:f6:52:5a:e0:16:b2:3c:f9:7d:b1:18:d7: 4a:f3:c8:92:81:02:db:66:4f:b3:58:92:b8:1d:7a:87:b5:c5: 82:63:33:c8:22:53:4e:e5:d7:3c:6d:d3:30:59:b7:fd:12:f4: c1:0b:34:4a:7b:9a:d1:6c:8b:4d:f1:08:35:52:98:f3:b5:a5: c9:6a:7d:7d:ca:78:27:26:b7:77:f6:55:d8:77:20:70:5d:82: 5d:15:a0:ab:71:85:ed:2c:e4:ab:c2:10:3b:b9:b3:2e:9f:f5: d3:c9:7e:cc:03:d0:d0:07:93:c9:b8:6b:b0:6c:f7:be:f5:f6: 82:d2:8e:85:22:7a:55:37:55:02:eb:a4:15:66:82:e9:46:92: 0a:53:18:41:57:4e:dd:9b:ac:8c:1d:d1:c9:4a:e0:b9:af:ce: 08:c5:90:ee:aa:b2:64:4f:da:ae:65:e8:20:cd:1d:e4:c5:cc: 26:69:ad:5b:6c:f5:5e:3a:91:4a:95:bf:99:94:22:aa:89:7a: df:4d:aa:da:e0:91:09:78:80:af:1b:11:d2:75:0b:71:60:97: d7:4a:6b:3d:4f:97:b5:16:0f:37:17:b8:c5:11:bf:1d:88:db: b6:39:d7:6f:1d:54:76:60:0b:6c:f8:60:91:50:be:05:a5:92: a4:49:c1:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUwNjE5MDUyMTU4WhcNMjUwNjI2MDUyMTU4WjAYMRYwFAYD VQQDEw02ODUzOWU3Ni0yMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxgmafUSPdRUkM+sesZxyiaR0UlEsIEEA/nX8Eb9n2wJMpepBA4dbHXO3S90 /ADXhNmk/RUpfAqqOWoMMhWjnLRbZgVTd424js4xj8tU/bNOS10zdeQlWn+Qqb6S h1PFBWztt7TkBofbTVFRhFPx2kpliuKWiMl4xSQiZvW8SdEl2Bd9dJ1ww8JeITCx k/vGYxvOIdYzwChn5hnvT6cHrUh7HjqVAoNuyHRJx+ROUT7ZqQflGJf4gZVvBn6O 1Fbm1qVr/6OXypuZBZUV/lNaO4CcMlFS8BGRUY9qr7dCtnCSuKgxUt+SnNVp0Rbb xYbbDrwrppev5AQHYlw1mCcYvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkbpMZx K/Rnxlw1VWpCkBXhgxRQMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpSD9YYKj2UlrgFrI8+X2xGNdK88iSgQLbZk+zWJK4HXqHtcWCYzPI IlNO5dc8bdMwWbf9EvTBCzRKe5rRbItN8Qg1UpjztaXJan19yngnJrd39lXYdyBw XYJdFaCrcYXtLOSrwhA7ubMun/XTyX7MA9DQB5PJuGuwbPe+9faC0o6FInpVN1UC 66QVZoLpRpIKUxhBV07dm6yMHdHJSuC5r84IxZDuqrJkT9quZeggzR3kxcwmaa1b bPVeOpFKlb+ZlCKqiXrfTara4JEJeICvGxHSdQtxYJfXSms9T5e1Fg83F7jFEb8d iNu2OddvHVR2YAts+GCRUL4FpZKkScHO -----END CERTIFICATE-----Generated at Fri Jun 20 13:50:52 2025 by rpki-client