$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: PC4+htY112VfhAxoHa33XpUpGCTeIynuWz20l1bhsNQ= Subject key identifier: 29:0F:A5:90:DA:43:0A:D3:E7:C9:B7:34:79:97:57:E5:27:B5:CE:05 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: CF Signing time: Fri 13 Jun 2025 05:15:05 +0000 Manifest this update: Fri 13 Jun 2025 05:15:04 +0000 Manifest next update: Fri 20 Jun 2025 05:15:04 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: rKjw+HBObbazK9G1MbY2i7DhtOpIi8SXsp1xJrFpP4E=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Jun 13 05:15:04 2025 GMT Not After : Jun 20 05:15:04 2025 GMT Subject: CN=684bb3d9-8e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:eb:45:26:39:26:df:fc:44:21:2d:fc:56:58: 47:ff:74:29:22:91:91:0d:93:94:a5:74:f0:76:51: 55:9d:85:7f:a5:73:52:83:10:04:da:6d:c2:f9:bc: c6:e5:be:fb:c1:cd:c4:75:58:b0:3d:8d:dc:60:69: c2:97:48:10:80:86:ff:50:ec:74:1d:c5:ed:04:6e: 7c:e3:d8:e5:8d:53:ae:2c:eb:10:bb:b0:75:41:18: c7:a6:5d:47:87:c3:0c:14:12:bb:ba:64:5d:35:19: dd:83:60:ed:13:4f:d8:4f:cc:5d:1c:e6:d5:70:0c: 78:71:29:8e:0d:6b:89:b0:aa:9e:42:92:fe:38:b5: 1d:67:27:99:98:4c:8a:eb:ba:69:5e:98:37:d8:e0: d7:78:50:64:5a:fb:87:45:d3:6d:ee:6f:1e:a7:82: 90:2c:75:97:8d:a6:f0:0a:2d:6d:c1:a4:e3:ee:e6: 8e:af:5c:dd:e4:16:df:aa:f2:8b:fa:24:bd:ef:c3: fe:20:b1:19:66:8f:e5:79:73:cd:36:6f:7c:b4:55: 2e:52:75:65:05:ec:77:41:0a:79:3f:c7:6c:89:3b: 7c:d8:71:43:42:36:83:a2:91:44:1f:e9:ce:d6:6e: 0a:03:2c:f5:ed:a8:35:dc:db:2b:0e:5b:fa:16:e2: 17:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:0F:A5:90:DA:43:0A:D3:E7:C9:B7:34:79:97:57:E5:27:B5:CE:05 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:91:b7:a3:59:a2:6a:b0:9e:49:da:47:b1:85:27:5a:03:d5: 23:a6:9c:44:fe:27:42:db:4c:fb:4d:ad:02:51:d5:7f:1c:03: 2f:4e:69:ed:bf:26:bd:ee:36:81:33:d5:23:4b:4b:70:db:85: 5f:4f:68:04:86:71:6c:c7:50:01:d4:3e:78:40:bf:d4:11:b9: 8e:e8:6d:7e:72:85:be:10:88:8d:18:b2:86:be:c5:3f:70:e3: 68:c0:c4:0c:c6:3b:ef:3f:0d:e9:cb:7c:2f:1b:94:ae:82:47: e6:ca:28:fa:af:07:d1:b9:ba:a1:d7:5b:06:ce:8c:1b:18:b6: 79:25:da:bc:4e:8d:f0:08:9d:64:a4:ea:a8:50:0d:1c:b4:51: 60:95:b0:2b:1e:d9:99:9b:5d:45:d0:4e:41:20:86:80:d5:20: 1c:39:48:f8:cb:d5:f9:72:04:9c:ea:3f:f1:86:4d:74:2b:c5: f7:63:e1:e9:18:92:0a:47:eb:5b:8d:26:b0:ff:3a:51:a1:a0: 34:47:b8:0e:c7:2c:45:84:1f:96:89:46:17:dc:86:66:96:ec: 8d:5d:e8:35:d1:df:bf:e1:45:7f:4c:9d:95:a7:28:17:fe:cb: f7:21:e8:c9:55:26:70:3e:c4:5a:d5:cb:a6:e7:22:d1:c2:91: a3:ae:ab:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUwNjEzMDUxNTA0WhcNMjUwNjIwMDUxNTA0WjAYMRYwFAYD VQQDEw02ODRiYjNkOS04ZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+tFJjkm3/xEIS38VlhH/3QpIpGRDZOUpXTwdlFVnYV/pXNSgxAE2m3C+bzG 5b77wc3EdViwPY3cYGnCl0gQgIb/UOx0HcXtBG5849jljVOuLOsQu7B1QRjHpl1H h8MMFBK7umRdNRndg2DtE0/YT8xdHObVcAx4cSmODWuJsKqeQpL+OLUdZyeZmEyK 67ppXpg32ODXeFBkWvuHRdNt7m8ep4KQLHWXjabwCi1twaTj7uaOr1zd5BbfqvKL +iS978P+ILEZZo/leXPNNm98tFUuUnVlBex3QQp5P8dsiTt82HFDQjaDopFEH+nO 1m4KAyz17ag13NsrDlv6FuIXWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkPpZDa QwrT58m3NHmXV+Untc4FMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGkbejWaJqsJ5J2kexhSdaA9UjppxE/idC20z7Ta0CUdV/HAMvTmnt vya97jaBM9UjS0tw24VfT2gEhnFsx1AB1D54QL/UEbmO6G1+coW+EIiNGLKGvsU/ cONowMQMxjvvPw3py3wvG5Sugkfmyij6rwfRubqh11sGzowbGLZ5Jdq8To3wCJ1k pOqoUA0ctFFglbArHtmZm11F0E5BIIaA1SAcOUj4y9X5cgSc6j/xhk10K8X3Y+Hp GJIKR+tbjSaw/zpRoaA0R7gOxyxFhB+WiUYX3IZmluyNXeg10d+/4UV/TJ2VpygX /sv3IejJVSZwPsRa1cum5yLRwpGjrqur -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:23 2025 by rpki-client