$ rpki-client -vvf rpki.apnic.net/member_repository/A9121AB0/1FF888325CBE11EDB1F0C04CC4F9AE02/xem-kywNTgcfsYgsriUoEEdzKVA.mft File: xem-kywNTgcfsYgsriUoEEdzKVA.mft (raw, json) Hash identifier: JA08fRlVS7wyN+QWuWyk5xCMhgHDGe0yW4gB32Ozq3s= Subject key identifier: 19:9F:C8:FB:0F:F3:D1:EF:1B:62:85:5F:18:29:F1:4A:F2:76:79:AE Authority key identifier: C5:E9:BE:93:2C:0D:4E:07:1F:B1:88:2C:AE:25:28:10:47:73:29:50 Certificate issuer: /CN=A9121AB0/serialNumber=C5E9BE932C0D4E071FB1882CAE25281047732950 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xem-kywNTgcfsYgsriUoEEdzKVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121AB0/1FF888325CBE11EDB1F0C04CC4F9AE02/xem-kywNTgcfsYgsriUoEEdzKVA.mft Manifest number: 01E9 Signing time: Fri 13 Jun 2025 01:40:12 +0000 Manifest this update: Fri 13 Jun 2025 01:40:11 +0000 Manifest next update: Fri 20 Jun 2025 01:40:11 +0000 Files and hashes: 1: xem-kywNTgcfsYgsriUoEEdzKVA.crl (hash: af/MHZH9FYEVhpEZ0od1cFplfr/d/b5mWo3skyTclio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121AB0/1FF888325CBE11EDB1F0C04CC4F9AE02/xem-kywNTgcfsYgsriUoEEdzKVA.crl rsync://rpki.apnic.net/member_repository/A9121AB0/1FF888325CBE11EDB1F0C04CC4F9AE02/xem-kywNTgcfsYgsriUoEEdzKVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xem-kywNTgcfsYgsriUoEEdzKVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121AB0, serialNumber=C5E9BE932C0D4E071FB1882CAE25281047732950 Validity Not Before: Jun 13 01:40:11 2025 GMT Not After : Jun 20 01:40:11 2025 GMT Subject: CN=684b817b-37ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:be:05:0f:ff:12:23:08:56:38:73:15:9f:c8: 66:1e:c5:c0:25:8a:27:70:e4:55:87:4e:fa:84:85: 2f:e9:08:29:09:1e:3c:5c:a2:37:ad:e2:ca:5b:f1: 4b:b8:12:da:ed:12:41:9a:f8:a6:80:6b:c6:44:8b: c8:01:d0:c7:2b:13:93:bb:04:ac:02:2f:db:b4:1a: f9:8d:d1:84:0a:7c:75:b8:00:7a:2b:f8:02:31:05: 20:59:46:d5:ec:05:f9:6e:f5:1a:a1:04:90:8a:5c: 35:f8:8b:0b:14:78:c1:f5:9e:5e:b5:0d:54:82:45: 33:b5:74:98:7c:33:89:ce:b0:56:91:d5:9b:2c:57: 65:08:c1:90:20:72:a2:3e:d9:83:92:33:59:cd:35: a3:5d:7e:bb:67:9b:db:49:34:4a:c1:ea:bf:1d:b1: 70:30:9d:63:3b:17:d9:f1:00:c0:f3:25:14:44:ea: 64:d4:94:41:0e:f5:41:d9:10:3d:62:5f:87:33:dd: 51:9d:43:bb:b7:f8:42:45:29:bd:c3:ee:d4:21:62: 9e:ad:6c:3d:b7:04:98:1b:2f:d3:f7:60:d7:f6:e3: 17:12:e4:01:cf:f1:4b:62:ab:a3:cf:df:0e:48:2b: 31:2f:1b:4b:22:5b:d6:c4:fb:d3:f7:26:14:2f:ed: cd:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:9F:C8:FB:0F:F3:D1:EF:1B:62:85:5F:18:29:F1:4A:F2:76:79:AE X509v3 Authority Key Identifier: keyid:C5:E9:BE:93:2C:0D:4E:07:1F:B1:88:2C:AE:25:28:10:47:73:29:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121AB0/1FF888325CBE11EDB1F0C04CC4F9AE02/xem-kywNTgcfsYgsriUoEEdzKVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xem-kywNTgcfsYgsriUoEEdzKVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121AB0/1FF888325CBE11EDB1F0C04CC4F9AE02/xem-kywNTgcfsYgsriUoEEdzKVA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:0f:00:c2:f6:62:97:8a:c0:84:ec:fa:de:93:1c:85:be:85: ce:bd:f9:94:15:0b:71:a0:9c:34:43:a0:7c:9a:cc:d4:26:0c: 47:bb:3b:ba:db:3b:d1:d4:9c:a9:9c:c6:0c:3d:6d:f5:2d:24: 4f:fa:96:3c:66:c8:67:4e:46:9f:ff:9f:38:3b:5c:fd:31:8b: c6:16:50:b5:e3:8d:95:73:f3:11:21:b1:db:34:18:fb:7b:16: c5:dd:eb:6b:d1:c9:c5:24:b5:a5:bb:2c:aa:81:35:a3:5c:e5: 21:7a:f2:75:8d:93:3f:1e:79:7b:8d:a4:e0:ca:36:a3:d0:cf: 09:41:a3:47:c9:e0:5e:8a:01:95:0a:33:d5:ab:b8:77:8b:85: ea:7f:4d:e2:e1:76:76:72:ac:f8:5f:d1:1c:7c:29:87:6f:58: 9e:df:1e:8a:e0:a3:6a:b2:78:2c:66:c5:6b:06:a9:7b:ff:f5: 51:48:86:f5:db:3c:04:06:67:ac:73:a0:be:1a:29:33:fa:e5: 81:82:7c:b8:36:96:c2:bb:67:c0:64:48:9f:40:f2:2e:fe:3c: 7c:7f:74:f9:ed:84:fb:67:5a:bb:35:29:5c:06:fe:41:f5:86: 8b:f4:7f:e7:89:ea:af:ef:62:f1:58:a6:79:ed:bd:06:2d:95: e6:4c:0a:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFBQjAxMTAvBgNVBAUTKEM1RTlCRTkzMkMwRDRFMDcxRkIxODgyQ0FFMjUyODEw NDc3MzI5NTAwHhcNMjUwNjEzMDE0MDExWhcNMjUwNjIwMDE0MDExWjAYMRYwFAYD VQQDEw02ODRiODE3Yi0zN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArL4FD/8SIwhWOHMVn8hmHsXAJYoncORVh076hIUv6QgpCR48XKI3reLKW/FL uBLa7RJBmvimgGvGRIvIAdDHKxOTuwSsAi/btBr5jdGECnx1uAB6K/gCMQUgWUbV 7AX5bvUaoQSQilw1+IsLFHjB9Z5etQ1UgkUztXSYfDOJzrBWkdWbLFdlCMGQIHKi PtmDkjNZzTWjXX67Z5vbSTRKweq/HbFwMJ1jOxfZ8QDA8yUUROpk1JRBDvVB2RA9 Yl+HM91RnUO7t/hCRSm9w+7UIWKerWw9twSYGy/T92DX9uMXEuQBz/FLYqujz98O SCsxLxtLIlvWxPvT9yYUL+3NMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmfyPsP 89HvG2KFXxgp8UrydnmuMB8GA1UdIwQYMBaAFMXpvpMsDU4HH7GILK4lKBBHcylQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUFCMC8xRkY4ODgzMjVD QkUxMUVEQjFGMEMwNENDNEY5QUUwMi94ZW0ta3l3TlRnY2ZzWWdzcmlVb0VFZHpL VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hlbS1reXdOVGdjZnNZZ3NyaVVvRUVkektWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUFCMC8xRkY4ODgzMjVDQkUxMUVEQjFGMEMwNENDNEY5QUUwMi94ZW0ta3l3TlRn Y2ZzWWdzcmlVb0VFZHpLVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeDwDC9mKXisCE7PrekxyFvoXOvfmUFQtxoJw0Q6B8mszUJgxHuzu6 2zvR1JypnMYMPW31LSRP+pY8ZshnTkaf/584O1z9MYvGFlC1442Vc/MRIbHbNBj7 exbF3etr0cnFJLWluyyqgTWjXOUhevJ1jZM/Hnl7jaTgyjaj0M8JQaNHyeBeigGV CjPVq7h3i4Xqf03i4XZ2cqz4X9EcfCmHb1ie3x6K4KNqsngsZsVrBql7//VRSIb1 2zwEBmesc6C+Gikz+uWBgny4NpbCu2fAZEifQPIu/jx8f3T57YT7Z1q7NSlcBv5B 9YaL9H/nieqv72LxWKZ57b0GLZXmTAq9 -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:23 2025 by rpki-client