$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: SXoIUm/gwA2xLOn5zBdJ1jfKi1Oz2SQtVC6L0RQgOLk= Subject key identifier: 55:B7:CC:A9:3B:E3:4E:64:E5:EE:24:C3:1E:21:FE:27:A7:67:38:E5 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 051A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 051A Signing time: Tue 01 Jul 2025 00:01:48 +0000 Manifest this update: Tue 01 Jul 2025 00:01:47 +0000 Manifest next update: Tue 08 Jul 2025 00:01:47 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: E+B2Flzym7vWCPpgZXoI8zj40hOVkzFjC9B2B0suv5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1306 (0x51a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Jul 1 00:01:47 2025 GMT Not After : Jul 8 00:01:47 2025 GMT Subject: CN=6863256c-6bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f4:4d:5c:44:91:f9:26:d9:c5:45:2e:f2:1b: 1d:f0:31:08:06:f0:c0:b1:ce:58:b2:dc:5e:29:a3: 1e:55:c9:27:ac:a8:22:cb:68:68:68:10:1d:a6:67: 2c:2d:c5:30:2d:d5:09:12:1d:40:b2:cf:8b:81:43: 85:27:67:63:1d:4a:49:f5:9c:61:8c:fc:62:b0:37: 98:6e:c5:ab:01:d7:8c:1e:20:ee:d7:09:b9:ea:7c: 6b:76:ca:97:cd:6c:55:c8:fa:34:d9:0c:df:5c:36: 41:45:8a:a0:d8:3d:e3:90:66:80:c4:3e:1a:fa:78: 03:da:45:ea:59:c5:51:f3:58:28:84:5f:d8:db:c7: 9f:4a:49:1f:12:7a:34:d9:72:c5:3d:37:bc:b2:f4: 72:e1:4b:61:94:a7:18:5d:74:a1:1a:1a:1a:8c:ac: 7e:38:85:2d:82:0f:1c:15:64:e9:e6:9e:c2:39:ba: c4:e8:17:66:4e:74:2e:70:b5:51:25:12:31:6e:af: bf:12:fa:be:64:f3:12:f7:87:6c:7f:61:78:30:28: 73:89:29:aa:38:6f:4e:65:4a:e8:4d:f3:8b:87:f5: 14:00:72:11:87:f8:5a:e8:f1:a6:eb:d3:74:84:a7: c2:ca:1a:f3:5a:72:c0:a2:b5:4c:42:39:a4:ae:8b: 63:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B7:CC:A9:3B:E3:4E:64:E5:EE:24:C3:1E:21:FE:27:A7:67:38:E5 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4c:08:9a:f6:2c:e8:36:9d:00:99:8d:9b:90:1c:0a:d2:3c: 12:95:c9:1f:33:3a:20:68:c4:b7:a4:7c:ce:cd:3f:ba:dd:31: bb:82:9a:cb:78:9d:54:3e:76:9b:1b:5d:07:bd:84:11:e9:d8: 4a:8e:d0:90:93:e2:87:8e:35:b4:bc:68:50:71:3e:dc:fb:71: a3:d2:d5:12:24:97:e1:62:7f:70:92:5c:aa:c0:19:05:e6:6c: 70:1e:b6:2e:f6:15:e1:48:28:4d:4f:69:1e:f9:17:90:9a:93: 62:0e:16:b6:91:f2:0d:04:16:da:06:f3:9b:bd:00:93:27:09: ce:7a:6c:3a:95:a1:0f:fb:c5:8d:2d:63:fe:a2:6e:7a:d2:1a: 68:cc:4d:d7:3b:53:50:96:04:3e:d2:75:b5:6c:89:70:38:a9: 2a:bb:3f:9a:22:00:a3:51:25:82:35:b5:c7:ea:1c:75:1a:d9: 2f:ee:3c:7d:95:76:8e:49:1c:e8:39:b0:25:5d:7c:d6:f2:f0: c3:0a:6b:15:02:eb:e2:fc:4f:8a:fe:1f:07:96:7e:1a:09:aa: 47:80:c4:41:25:ad:87:1f:b3:48:a1:8b:e8:62:b7:aa:71:c6: 38:03:10:51:62:34:cf:62:cc:6a:0a:99:ef:6f:03:22:70:90: 9e:65:2a:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUwNzAxMDAwMTQ3WhcNMjUwNzA4MDAwMTQ3WjAYMRYwFAYD VQQDEw02ODYzMjU2Yy02YmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/RNXESR+SbZxUUu8hsd8DEIBvDAsc5YstxeKaMeVcknrKgiy2hoaBAdpmcs LcUwLdUJEh1Ass+LgUOFJ2djHUpJ9ZxhjPxisDeYbsWrAdeMHiDu1wm56nxrdsqX zWxVyPo02QzfXDZBRYqg2D3jkGaAxD4a+ngD2kXqWcVR81gohF/Y28efSkkfEno0 2XLFPTe8svRy4UthlKcYXXShGhoajKx+OIUtgg8cFWTp5p7CObrE6BdmTnQucLVR JRIxbq+/Evq+ZPMS94dsf2F4MChziSmqOG9OZUroTfOLh/UUAHIRh/ha6PGm69N0 hKfCyhrzWnLAorVMQjmkrotjfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFW3zKk7 405k5e4kwx4h/ienZzjlMB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLTAia9izoNp0AmY2bkBwK0jwSlckfMzogaMS3pHzOzT+63TG7gprL eJ1UPnabG10HvYQR6dhKjtCQk+KHjjW0vGhQcT7c+3Gj0tUSJJfhYn9wklyqwBkF 5mxwHrYu9hXhSChNT2ke+ReQmpNiDha2kfINBBbaBvObvQCTJwnOemw6laEP+8WN LWP+om560hpozE3XO1NQlgQ+0nW1bIlwOKkquz+aIgCjUSWCNbXH6hx1Gtkv7jx9 lXaOSRzoObAlXXzW8vDDCmsVAuvi/E+K/h8Hln4aCapHgMRBJa2HH7NIoYvoYreq ccY4AxBRYjTPYsxqCpnvbwMicJCeZSoU -----END CERTIFICATE-----Generated at Wed Jul 2 07:38:47 2025 by rpki-client