$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: VgKv7UJYkeT4TiBkRPT9Tu5SrCltM0WrazD9SVa/qLY= Subject key identifier: B5:FE:0A:8A:21:D9:90:FD:D4:05:CE:97:14:F9:6A:D6:67:10:38:B2 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 01AA Signing time: Sun 15 Jun 2025 02:35:27 +0000 Manifest this update: Sun 15 Jun 2025 02:35:26 +0000 Manifest next update: Sun 22 Jun 2025 02:35:26 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: gRkcsqe7BjMCc9ApPleRyYqhkXuwHE4cpRU317xYONI=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Jun 15 02:35:26 2025 GMT Not After : Jun 22 02:35:26 2025 GMT Subject: CN=684e316f-e8f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f1:33:e5:de:0a:09:43:7c:3e:a7:18:94:7f: 95:f3:e7:fb:91:7e:82:5a:89:1c:c3:87:da:ad:78: 4a:33:a4:ab:f7:b2:a6:f0:09:ef:8b:4a:56:0a:0d: e5:6d:26:11:7c:c5:31:cf:92:24:db:b5:82:ea:a4: 48:97:c9:5f:9e:fa:7f:cf:fd:3c:40:a9:bc:4c:4f: e4:b9:ec:b1:66:2b:d7:f1:25:5f:15:72:11:e2:d4: 3c:ab:f2:55:8f:5b:4a:95:19:4e:5a:df:1e:eb:de: 0c:2c:fb:e5:73:77:13:97:64:ab:dc:eb:3e:73:05: d2:90:bf:5e:e5:5b:68:a9:59:b8:f6:71:7b:04:89: 7c:06:3d:d9:6a:05:07:96:5d:db:ae:7c:93:f6:1e: 16:39:8c:9c:48:f6:e7:6d:c6:fa:71:ab:74:82:ce: 8c:e0:70:82:b9:f6:18:9b:0e:dc:14:c3:84:1b:bb: b6:89:d8:b4:00:7f:f4:2c:80:a0:f2:66:28:ea:70: a9:e2:f7:67:7e:b5:8b:c3:ee:d7:08:1c:92:01:30: 8a:5a:0f:de:af:ce:51:2f:ee:3a:40:29:63:bc:ef: 8a:e6:b8:20:0d:75:31:ea:5f:52:9e:a3:24:84:bc: 3a:2b:6d:32:d1:41:cc:68:f4:8f:07:64:73:f1:25: f3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:FE:0A:8A:21:D9:90:FD:D4:05:CE:97:14:F9:6A:D6:67:10:38:B2 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c4:d5:1c:79:7b:e3:31:66:d8:de:7b:49:17:8a:6d:7f:05: c7:9d:05:5d:65:f9:0d:47:f9:6d:9d:5f:1b:fc:8c:4a:10:41: d9:c1:8f:43:5a:7b:11:a9:1d:2d:f3:90:f2:43:78:ec:e2:41: d1:20:7e:e6:86:c4:7e:41:a4:5e:6e:f6:75:a2:d9:06:2d:37: a7:42:d0:8b:d6:3c:0f:ab:1f:4a:ca:90:33:2a:2a:d2:7f:9b: 8e:00:2b:d7:42:99:b0:26:3f:de:e0:72:04:92:21:97:9f:3b: 9b:c4:e4:02:f7:82:53:24:91:e6:8c:d8:22:38:2e:5f:ef:d4: cf:ae:a1:af:3d:76:86:61:28:2c:af:94:08:65:c5:69:e9:1d: f7:03:3f:8f:4b:34:a0:0c:44:8e:de:1c:89:ec:7f:c4:8a:37: 43:b3:b8:aa:ac:88:d8:78:43:86:32:9e:52:d1:e8:8d:7d:24: 01:d7:34:f8:a0:22:97:2c:70:a0:8c:7f:f3:e2:23:af:87:ae: 2f:26:58:0e:34:71:c5:9f:d1:94:91:5d:96:7b:c9:ac:89:80: 95:cc:2f:0a:47:62:1b:ba:fd:af:bb:56:fd:00:c1:dd:87:ae: 0f:a7:7b:4d:2a:e3:47:bd:ae:79:29:5c:68:df:48:e8:c7:98: 69:c9:28:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwNjE1MDIzNTI2WhcNMjUwNjIyMDIzNTI2WjAYMRYwFAYD VQQDEw02ODRlMzE2Zi1lOGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/Ez5d4KCUN8PqcYlH+V8+f7kX6CWokcw4farXhKM6Sr97Km8Anvi0pWCg3l bSYRfMUxz5Ik27WC6qRIl8lfnvp/z/08QKm8TE/kueyxZivX8SVfFXIR4tQ8q/JV j1tKlRlOWt8e694MLPvlc3cTl2Sr3Os+cwXSkL9e5VtoqVm49nF7BIl8Bj3ZagUH ll3brnyT9h4WOYycSPbnbcb6cat0gs6M4HCCufYYmw7cFMOEG7u2idi0AH/0LICg 8mYo6nCp4vdnfrWLw+7XCBySATCKWg/er85RL+46QCljvO+K5rggDXUx6l9SnqMk hLw6K20y0UHMaPSPB2Rz8SXzzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLX+Cooh 2ZD91AXOlxT5atZnEDiyMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHxNUceXvjMWbY3ntJF4ptfwXHnQVdZfkNR/ltnV8b/IxKEEHZwY9D WnsRqR0t85DyQ3js4kHRIH7mhsR+QaRebvZ1otkGLTenQtCL1jwPqx9KypAzKirS f5uOACvXQpmwJj/e4HIEkiGXnzubxOQC94JTJJHmjNgiOC5f79TPrqGvPXaGYSgs r5QIZcVp6R33Az+PSzSgDESO3hyJ7H/EijdDs7iqrIjYeEOGMp5S0eiNfSQB1zT4 oCKXLHCgjH/z4iOvh64vJlgONHHFn9GUkV2We8msiYCVzC8KR2Ibuv2vu1b9AMHd h64Pp3tNKuNHva55KVxo30jox5hpyShu -----END CERTIFICATE-----Generated at Sun Jun 15 09:49:59 2025 by rpki-client