$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: p13wvWJ7We8O10xGh4235ucrmj61A31O0W516SPg+mA= Subject key identifier: 34:04:C8:A5:F7:C7:F0:3C:B2:61:F6:57:0E:1C:5B:09:E5:0C:E2:B4 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 047C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 0474 Signing time: Sat 14 Jun 2025 23:49:42 +0000 Manifest this update: Sat 14 Jun 2025 23:49:41 +0000 Manifest next update: Sat 21 Jun 2025 23:49:41 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: HaY1V9Ym5cSS0mrz0uNLPAGOXCYPXUk5DVwYn7xO6JQ=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Jun 14 23:49:41 2025 GMT Not After : Jun 21 23:49:41 2025 GMT Subject: CN=684e0a95-28d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ed:73:59:34:17:98:6a:80:69:55:19:e4:2a: 1c:e3:f2:91:6e:e0:01:69:44:bf:29:19:0e:39:ff: 00:b0:1f:ab:9b:58:62:5a:e0:c5:6e:62:69:e0:ec: a1:a0:fb:2c:0b:b0:a7:6b:ed:13:e8:63:c2:a9:06: aa:47:25:6e:ab:df:53:da:6a:f4:ec:b4:fa:3d:ec: f9:cf:6a:95:65:c5:00:e7:81:99:43:03:a6:44:0c: f8:15:72:06:6c:e5:f1:90:c1:dd:36:29:39:38:4f: 15:a2:8d:f3:d1:2c:4e:13:8e:e0:d9:9f:a3:7c:42: 16:d5:c1:a0:c8:49:ce:d2:c8:9c:ee:56:87:c6:25: ee:cc:b8:f0:1a:74:f8:7a:34:0a:ac:af:f9:99:d4: dc:5a:12:f2:37:f8:a2:6d:65:2e:4b:82:e9:28:72: 82:9e:db:7a:37:0d:d4:cb:9e:12:15:4e:de:ad:87: d6:23:8b:f5:da:7f:4e:9d:6b:d1:96:f3:92:b9:cf: 6c:a9:d2:4a:5a:6d:a4:7e:2b:58:03:18:8c:20:f4: 54:a7:6c:41:ee:02:c3:91:2c:c9:b6:1b:a7:75:e9: 39:09:23:63:09:0e:3c:3c:4d:ac:90:83:a9:f4:58: 68:ce:a4:5e:bb:6a:91:51:84:17:b6:2e:a2:32:f1: c7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:04:C8:A5:F7:C7:F0:3C:B2:61:F6:57:0E:1C:5B:09:E5:0C:E2:B4 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:bb:b8:64:cd:4e:bc:45:21:74:81:9e:d3:b5:70:28:57:1e: a6:16:4a:8c:a4:b2:ba:6a:a9:34:75:4f:b4:94:31:6f:10:fe: 89:58:4b:d4:ec:80:a3:83:3a:1e:26:3d:e1:8c:90:72:f2:1b: ec:97:fa:66:cc:e9:c6:c8:4a:e1:90:6b:d2:e4:a9:21:0b:84: 16:e0:93:60:5d:1e:6f:f6:9a:6e:29:23:3f:43:ab:a8:9c:f9: 27:60:84:61:2f:65:21:44:d2:fe:d2:37:a4:cc:48:47:53:85: 8e:f0:2e:74:c4:f5:a6:f1:63:17:42:55:1a:74:1b:5e:f9:c5: b8:19:0d:43:1e:fb:00:57:c2:6d:33:f0:f4:03:68:a8:7c:f5: 9a:67:1e:5d:03:47:98:3b:03:80:9c:f8:4c:98:19:bd:a2:70: 88:4e:4a:ef:43:ae:7a:b4:1b:c7:fc:98:da:51:88:fc:ba:e3: 49:89:0a:5a:db:c1:f1:82:92:19:f6:b4:83:85:65:d6:21:a8: af:11:69:80:4f:94:a0:b9:f0:d3:dd:4d:81:c4:70:0f:52:79: 4d:ad:d3:b3:89:02:ea:98:1a:36:33:6b:37:2c:37:50:10:a8: 49:68:85:e4:12:ee:8f:9a:71:da:36:49:b6:b8:5f:97:55:dc: 24:77:cb:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUwNjE0MjM0OTQxWhcNMjUwNjIxMjM0OTQxWjAYMRYwFAYD VQQDEw02ODRlMGE5NS0yOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu1zWTQXmGqAaVUZ5Coc4/KRbuABaUS/KRkOOf8AsB+rm1hiWuDFbmJp4Oyh oPssC7Cna+0T6GPCqQaqRyVuq99T2mr07LT6Pez5z2qVZcUA54GZQwOmRAz4FXIG bOXxkMHdNik5OE8Voo3z0SxOE47g2Z+jfEIW1cGgyEnO0sic7laHxiXuzLjwGnT4 ejQKrK/5mdTcWhLyN/iibWUuS4LpKHKCntt6Nw3Uy54SFU7erYfWI4v12n9OnWvR lvOSuc9sqdJKWm2kfitYAxiMIPRUp2xB7gLDkSzJthundek5CSNjCQ48PE2skIOp 9FhozqReu2qRUYQXti6iMvHHUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQEyKX3 x/A8smH2Vw4cWwnlDOK0MB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFu7hkzU68RSF0gZ7TtXAoVx6mFkqMpLK6aqk0dU+0lDFvEP6JWEvU 7ICjgzoeJj3hjJBy8hvsl/pmzOnGyErhkGvS5KkhC4QW4JNgXR5v9ppuKSM/Q6uo nPknYIRhL2UhRNL+0jekzEhHU4WO8C50xPWm8WMXQlUadBte+cW4GQ1DHvsAV8Jt M/D0A2iofPWaZx5dA0eYOwOAnPhMmBm9onCITkrvQ656tBvH/JjaUYj8uuNJiQpa 28HxgpIZ9rSDhWXWIaivEWmAT5SgufDT3U2BxHAPUnlNrdOziQLqmBo2M2s3LDdQ EKhJaIXkEu6PmnHaNkm2uF+XVdwkd8tL -----END CERTIFICATE-----Generated at Sun Jun 15 07:02:18 2025 by rpki-client