$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: 7JoHoQkayr2O9PqDXnFVHFmhWDrCnVsd6xkCKu345xs= Subject key identifier: B4:EA:E9:97:96:CD:DC:44:E2:E2:28:F4:4D:96:2A:31:D2:0A:2A:AC Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 250C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 250C Signing time: Wed 18 Jun 2025 14:16:29 +0000 Manifest this update: Wed 18 Jun 2025 14:16:28 +0000 Manifest next update: Wed 25 Jun 2025 14:16:28 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: OZrIormNgEO/fOGux4hKm5X3EkaqwAJXOw2XRcseXWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9484 (0x250c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Jun 18 14:16:28 2025 GMT Not After : Jun 25 14:16:28 2025 GMT Subject: CN=6852ca3c-c5b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cf:46:7e:a5:89:e2:95:09:b5:dc:a2:74:29: 57:01:75:63:0d:e2:be:f6:7d:8f:0c:1f:0d:2b:84: 64:a2:34:b9:b5:48:a7:81:5c:81:a6:8a:a6:32:a9: fb:d4:30:01:51:d0:a7:5c:20:3e:d0:f6:b2:2f:7c: 88:c2:27:1d:cb:a3:03:c9:d1:cd:6d:3a:be:e7:28: 61:76:d7:2b:ab:91:2c:6a:3e:93:5b:62:32:27:c3: 15:8d:e8:f2:9a:35:61:cd:6c:0b:c3:ec:34:79:66: 3d:46:3d:b9:bd:51:60:41:cb:75:c4:87:14:b0:c5: a5:8b:38:2c:a4:51:e7:7a:04:b3:2a:2d:8e:28:4e: d1:01:15:24:16:4d:30:b2:77:76:65:2c:0e:8b:3e: 50:cb:0c:6f:f9:6d:0f:64:30:f3:77:d3:0d:95:e9: 04:39:70:f5:3d:26:98:4c:44:da:e1:a1:b2:09:d6: a9:92:96:69:21:d5:51:04:20:0c:f9:d4:9a:a7:7a: 32:bb:45:6b:6e:41:95:24:8d:9d:5b:b7:af:39:30: 5b:cc:d0:69:e6:ba:f5:73:e6:35:3c:76:67:0d:24: af:b6:31:fc:0b:93:73:af:dd:e9:f6:0f:c9:2e:6d: b3:8e:6e:77:81:de:b5:e9:ca:74:f3:85:e3:f9:7b: b0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EA:E9:97:96:CD:DC:44:E2:E2:28:F4:4D:96:2A:31:D2:0A:2A:AC X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:eb:77:a8:a4:1d:0b:5e:05:52:d7:5f:2c:c3:02:bb:62:5e: 7b:8a:05:3e:ba:db:a9:43:15:61:83:26:74:df:eb:79:78:5e: f2:10:65:e5:a5:da:f8:e3:cf:95:c5:62:41:e0:ca:bb:b9:28: 18:15:15:17:bc:2f:12:a1:ff:2d:06:db:cf:fd:4c:54:58:44: 3a:76:fc:6a:d3:d7:2f:b2:1a:2f:36:bb:2c:b4:17:f4:0f:9d: 14:80:69:31:24:58:2c:73:fb:b7:2b:ae:bb:be:31:42:8c:66: 61:21:58:eb:63:20:52:02:aa:87:02:70:01:c4:af:b8:05:3b: 42:a1:4b:40:c9:d2:a3:24:63:89:fb:95:b8:ed:c2:dd:2d:30: 94:ec:67:2c:cf:3d:02:a6:9e:9e:5a:d0:20:b6:74:b2:d7:b6: de:b0:7e:c2:53:66:34:f1:f0:de:2c:ca:43:9f:b3:06:16:5a: 00:b6:57:9c:62:69:72:0f:76:2d:64:a4:03:ac:f3:a1:2f:22: 37:c6:a6:8a:d2:17:c5:2e:d4:6f:5a:b2:0d:44:01:f1:7d:22: f7:2e:38:78:06:b7:7f:2b:84:9d:ea:42:ad:28:96:cd:9c:f4: e6:8f:fc:c3:41:e6:c1:dc:b7:86:27:05:a4:66:be:48:fe:3a: 31:86:ae:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjUwNjE4MTQxNjI4WhcNMjUwNjI1MTQxNjI4WjAYMRYwFAYD VQQDEw02ODUyY2EzYy1jNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss9GfqWJ4pUJtdyidClXAXVjDeK+9n2PDB8NK4RkojS5tUingVyBpoqmMqn7 1DABUdCnXCA+0PayL3yIwicdy6MDydHNbTq+5yhhdtcrq5Esaj6TW2IyJ8MVjejy mjVhzWwLw+w0eWY9Rj25vVFgQct1xIcUsMWlizgspFHnegSzKi2OKE7RARUkFk0w snd2ZSwOiz5Qywxv+W0PZDDzd9MNlekEOXD1PSaYTETa4aGyCdapkpZpIdVRBCAM +dSap3oyu0VrbkGVJI2dW7evOTBbzNBp5rr1c+Y1PHZnDSSvtjH8C5Nzr93p9g/J Lm2zjm53gd616cp084Xj+XuwYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTq6ZeW zdxE4uIo9E2WKjHSCiqsMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM63eopB0LXgVS118swwK7Yl57igU+utupQxVhgyZ03+t5eF7yEGXl pdr448+VxWJB4Mq7uSgYFRUXvC8Sof8tBtvP/UxUWEQ6dvxq09cvshovNrsstBf0 D50UgGkxJFgsc/u3K667vjFCjGZhIVjrYyBSAqqHAnABxK+4BTtCoUtAydKjJGOJ +5W47cLdLTCU7Gcszz0Cpp6eWtAgtnSy17besH7CU2Y08fDeLMpDn7MGFloAtlec YmlyD3YtZKQDrPOhLyI3xqaK0hfFLtRvWrINRAHxfSL3Ljh4Brd/K4Sd6kKtKJbN nPTmj/zDQebB3LeGJwWkZr5I/joxhq5J -----END CERTIFICATE-----Generated at Fri Jun 20 12:27:38 2025 by rpki-client