$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: F7qTVn2N2ALVlmD5vHEWDF0D/TobcPr4IQO9C+CWcQY= Subject key identifier: 4A:27:51:39:B3:5C:1D:96:D2:53:A2:6A:1B:E8:0A:5E:7A:89:48:E2 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 05F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 05E9 Signing time: Fri 04 Jul 2025 23:24:01 +0000 Manifest this update: Fri 04 Jul 2025 23:24:00 +0000 Manifest next update: Fri 11 Jul 2025 23:24:00 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: UAjRSNz4/ss7QT118h5kSMse5jECWINOqcTF7ZkRJ9s=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: bgQvr2Jdprt2Ja1Usi3GgYGC5SiLxAPy60mdKqHu2RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Jul 4 23:24:00 2025 GMT Not After : Jul 11 23:24:00 2025 GMT Subject: CN=68686291-4054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b6:b4:99:8f:c1:0f:b2:3e:e7:7c:8e:62:72: 7e:e6:97:60:52:4a:8a:cc:a5:aa:08:52:3d:bc:d1: e2:1b:88:69:f6:40:b3:24:28:36:bd:94:e7:d8:38: 5b:4b:40:86:a3:c0:e6:63:02:86:72:5f:86:d5:1a: 3e:58:8e:93:6b:2f:a0:74:bd:84:9d:01:be:e3:5b: fa:23:76:0f:f8:4e:43:66:57:36:44:3a:9e:22:68: 88:a6:1b:d7:82:72:39:75:bb:71:5e:36:53:eb:f8: ef:69:77:99:b1:f9:20:b4:9a:82:35:2d:37:2c:95: 17:9f:7a:13:5c:92:af:49:76:c5:3c:b2:c6:28:07: 63:66:30:91:18:46:48:31:6c:ee:22:20:7f:e6:02: 7a:f0:3e:8a:a9:6d:2d:66:32:c1:d0:10:0d:14:d6: a3:ff:5d:f6:55:ce:11:69:e3:d0:50:aa:5d:aa:b7: 30:e4:9e:61:c0:b4:eb:77:f0:95:d0:03:3f:20:57: 4e:3e:c9:11:e9:e6:13:6d:c8:aa:a7:8d:23:df:ae: 8f:6f:54:df:37:b0:e0:b5:92:04:59:d8:bc:6f:5e: 83:70:b6:24:06:d5:cc:64:6e:74:6f:2a:51:11:76: bd:dc:bd:04:60:62:72:47:e5:3f:b5:ee:8a:1f:55: 5f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:27:51:39:B3:5C:1D:96:D2:53:A2:6A:1B:E8:0A:5E:7A:89:48:E2 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ec:11:4e:92:a9:f2:43:11:90:b7:f1:27:e3:9f:69:25:9b: cf:32:27:6e:42:39:a8:f1:b0:c6:4a:16:29:b9:d3:f2:41:dc: ae:5d:6f:6b:ab:8b:47:89:77:15:8c:39:f4:e8:86:67:05:67: 82:1e:81:72:b7:53:03:7c:3c:5c:3b:d0:20:69:9f:0f:d7:6f: 71:c7:de:1e:83:22:37:7c:bd:22:f2:7d:dd:b2:5b:49:fe:92: c9:04:ba:2f:77:f8:8c:1a:6c:04:b9:34:79:75:09:86:72:26: b0:aa:15:26:83:e0:d7:ab:b6:13:ba:42:a0:c7:4c:37:ae:36: 2a:05:c2:bc:e4:5d:62:47:24:87:cf:42:f8:fb:ab:78:3c:aa: 60:75:a9:77:0e:17:b0:36:da:37:01:7c:63:cc:e4:d4:82:e4: 5e:cc:e2:c9:ac:8f:23:c8:9d:18:f6:c3:bb:54:00:85:a6:b2: fa:7c:b8:22:8b:7e:f1:16:1d:2a:fe:58:87:ed:a6:79:b4:b9: 35:5f:07:c6:22:8c:83:3f:bc:e2:69:04:af:f6:ad:7c:de:ce: b6:9a:1d:67:f3:3b:5f:1d:fd:dd:1d:17:f5:46:0c:8b:a3:c9: 9b:d5:09:f3:dd:81:be:d2:b7:65:91:f8:09:bb:cb:68:d5:23: 39:da:14:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUwNzA0MjMyNDAwWhcNMjUwNzExMjMyNDAwWjAYMRYwFAYD VQQDEw02ODY4NjI5MS00MDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzba0mY/BD7I+53yOYnJ+5pdgUkqKzKWqCFI9vNHiG4hp9kCzJCg2vZTn2Dhb S0CGo8DmYwKGcl+G1Ro+WI6Tay+gdL2EnQG+41v6I3YP+E5DZlc2RDqeImiIphvX gnI5dbtxXjZT6/jvaXeZsfkgtJqCNS03LJUXn3oTXJKvSXbFPLLGKAdjZjCRGEZI MWzuIiB/5gJ68D6KqW0tZjLB0BANFNaj/132Vc4RaePQUKpdqrcw5J5hwLTrd/CV 0AM/IFdOPskR6eYTbciqp40j366Pb1TfN7DgtZIEWdi8b16DcLYkBtXMZG50bypR EXa93L0EYGJyR+U/te6KH1VfmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEonUTmz XB2W0lOiahvoCl56iUjiMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN7BFOkqnyQxGQt/En459pJZvPMiduQjmo8bDGShYpudPyQdyuXW9r q4tHiXcVjDn06IZnBWeCHoFyt1MDfDxcO9AgaZ8P129xx94egyI3fL0i8n3dsltJ /pLJBLovd/iMGmwEuTR5dQmGciawqhUmg+DXq7YTukKgx0w3rjYqBcK85F1iRySH z0L4+6t4PKpgdal3DhewNto3AXxjzOTUguRezOLJrI8jyJ0Y9sO7VACFprL6fLgi i37xFh0q/liH7aZ5tLk1XwfGIoyDP7ziaQSv9q183s62mh1n8ztfHf3dHRf1RgyL o8mb1Qnz3YG+0rdlkfgJu8to1SM52hQb -----END CERTIFICATE-----Generated at Sat Jul 5 21:05:55 2025 by rpki-client