$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft File: cXLtDPRHBezrGWHROgV-z_MHyG8.mft (raw, json) Hash identifier: KVwRb1qnksSDkQKdNDhNcrQfR5IeAdgp9fQ9zdNBxHg= Subject key identifier: 35:28:FE:5E:55:DC:58:9E:B9:38:CC:1C:D8:F2:CB:40:A9:5D:AF:2C Authority key identifier: 71:72:ED:0C:F4:47:05:EC:EB:19:61:D1:3A:05:7E:CF:F3:07:C8:6F Certificate issuer: /CN=A913B7C7/serialNumber=7172ED0CF44705ECEB1961D13A057ECFF307C86F Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft Manifest number: 71 Signing time: Sun 15 Jun 2025 05:57:26 +0000 Manifest this update: Sun 15 Jun 2025 05:57:25 +0000 Manifest next update: Sun 22 Jun 2025 05:57:25 +0000 Files and hashes: 1: cXLtDPRHBezrGWHROgV-z_MHyG8.crl (hash: /0T56EqAW05W7QfHtYM7JTRaKU1JXz7EhHRJIwi67bU=) 2: 1A1C5AF89D9C11EFAAA9FA6AC4F9AE02.roa (hash: hV0+1IwRiq4hHk9yI+8OcLJdXek+Jfs+77Mer9xXqoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.crl rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7C7, serialNumber=7172ED0CF44705ECEB1961D13A057ECFF307C86F Validity Not Before: Jun 15 05:57:25 2025 GMT Not After : Jun 22 05:57:25 2025 GMT Subject: CN=684e60c5-ab7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:94:b1:5e:ef:8b:24:37:36:34:8a:5c:52: cb:22:9c:22:a6:ed:2b:f6:16:2b:05:8b:60:94:02: 07:6d:f7:05:6c:ec:6d:29:ce:cd:56:cb:a1:df:13: f5:1f:da:d5:3d:38:eb:0e:5a:e9:81:2e:83:ec:ed: 0c:bb:70:b1:07:95:55:9b:dc:f3:97:f8:67:ea:39: 21:7f:5c:39:81:89:33:c7:23:2b:37:a6:16:c5:77: dc:bd:3b:28:fd:3f:e0:bb:a7:9b:b4:9e:67:7b:e0: a0:3a:0f:a1:17:05:53:ba:86:7c:20:20:30:fe:49: c2:35:9f:fb:12:d3:97:46:dc:45:54:3a:69:69:97: be:30:2f:af:0d:05:3d:0b:09:cc:05:2b:5d:40:70: 23:2c:dc:da:05:c4:7d:55:a1:ff:a7:c0:aa:ee:00: 20:58:93:c2:16:39:dc:3f:d7:3d:c9:c1:60:52:86: 56:01:b8:66:7b:f1:93:2d:05:9f:f6:b9:aa:4d:2d: b3:81:6e:39:35:5f:e4:8c:b6:65:57:57:ad:3b:ab: 25:a1:4d:2d:ea:64:fd:a0:ca:53:b5:f8:75:43:97: c6:bd:37:e7:66:96:be:f2:07:03:52:3d:08:2c:b1: b8:cc:69:c2:ea:02:b9:6a:78:4f:d7:85:16:c9:f9: ab:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:28:FE:5E:55:DC:58:9E:B9:38:CC:1C:D8:F2:CB:40:A9:5D:AF:2C X509v3 Authority Key Identifier: keyid:71:72:ED:0C:F4:47:05:EC:EB:19:61:D1:3A:05:7E:CF:F3:07:C8:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:75:35:d5:44:6c:be:a6:dc:0e:da:6a:4f:74:76:7d:04:d5: d0:99:29:d6:59:46:56:72:29:34:6b:63:48:a0:cb:20:fd:ee: 51:aa:37:c5:96:6a:9e:34:b2:34:ef:86:65:89:05:3a:d1:9b: 51:38:4b:7c:44:cb:29:1e:44:78:22:70:42:cd:b8:d5:65:25: 99:75:b5:da:1e:50:7e:be:49:f3:bf:28:da:d7:c0:93:3f:92: 50:d1:12:80:26:eb:65:81:25:dd:b2:dd:a2:15:98:e4:07:64: 4f:f5:08:eb:dc:c7:7c:11:42:ac:08:39:c1:a9:4c:34:00:3d: e8:70:8c:ec:ae:22:2f:5a:7c:7e:11:fe:89:15:38:21:24:3b: dd:a8:fd:04:6f:ea:78:4c:66:90:59:c2:cc:fd:6a:f1:e9:57: c0:fe:08:d3:bd:01:e6:a2:55:2c:8c:c3:59:f3:d9:6e:c3:2d: 73:ca:fb:81:8b:f8:62:34:e5:5c:0c:ec:a6:c1:ce:a6:29:96: 85:ac:14:3f:70:a2:07:30:ca:58:1f:4a:6b:02:2a:eb:d4:6c: e3:e6:68:71:ac:b1:16:9a:13:58:ff:f5:ae:c2:24:ce:83:eb: ed:9c:b8:83:1a:5b:1e:bf:ee:c8:a2:98:19:85:56:e9:08:6c: 6c:eb:9d:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjdDNzExMC8GA1UEBRMoNzE3MkVEMENGNDQ3MDVFQ0VCMTk2MUQxM0EwNTdFQ0ZG MzA3Qzg2RjAeFw0yNTA2MTUwNTU3MjVaFw0yNTA2MjIwNTU3MjVaMBgxFjAUBgNV BAMTDTY4NGU2MGM1LWFiN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAOpSxXu+LJDc2NIpcUssinCKm7Sv2FisFi2CUAgdt9wVs7G0pzs1Wy6HfE/Uf 2tU9OOsOWumBLoPs7Qy7cLEHlVWb3POX+GfqOSF/XDmBiTPHIys3phbFd9y9Oyj9 P+C7p5u0nmd74KA6D6EXBVO6hnwgIDD+ScI1n/sS05dG3EVUOmlpl74wL68NBT0L CcwFK11AcCMs3NoFxH1Vof+nwKruACBYk8IWOdw/1z3JwWBShlYBuGZ78ZMtBZ/2 uapNLbOBbjk1X+SMtmVXV607qyWhTS3qZP2gylO1+HVDl8a9N+dmlr7yBwNSPQgs sbjMacLqArlqeE/XhRbJ+asDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNSj+XlXc WJ65OMwc2PLLQKldrywwHwYDVR0jBBgwFoAUcXLtDPRHBezrGWHROgV+z/MHyG8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCN0M3L0FBMkE3ODRDOUQ5 QjExRUY4NjA1MDQ2OUM0RjlBRTAyL2NYTHREUFJIQmV6ckdXSFJPZ1Ytel9NSHlH OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hMdERQUkhCZXpyR1dIUk9nVi16X01IeUc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC N0M3L0FBMkE3ODRDOUQ5QjExRUY4NjA1MDQ2OUM0RjlBRTAyL2NYTHREUFJIQmV6 ckdXSFJPZ1Ytel9NSHlHOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABh1NdVEbL6m3A7aak90dn0E1dCZKdZZRlZyKTRrY0igyyD97lGqN8WW ap40sjTvhmWJBTrRm1E4S3xEyykeRHgicELNuNVlJZl1tdoeUH6+SfO/KNrXwJM/ klDREoAm62WBJd2y3aIVmOQHZE/1COvcx3wRQqwIOcGpTDQAPehwjOyuIi9afH4R /okVOCEkO92o/QRv6nhMZpBZwsz9avHpV8D+CNO9AeaiVSyMw1nz2W7DLXPK+4GL +GI05VwM7KbBzqYploWsFD9wogcwylgfSmsCKuvUbOPmaHGssRaaE1j/9a7CJM6D 6+2cuIMaWx6/7siimBmFVukIbGzrnYE= -----END CERTIFICATE-----Generated at Mon Jun 16 16:49:07 2025 by rpki-client