$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft File: tXSEdav1kHeBiVHMH-bti9LzEhM.mft (raw, json) Hash identifier: 41lWicDYgt+7cSfC4Xy2GS5C8kGjt2lGdzDCz+Iexf0= Subject key identifier: 77:72:03:36:19:B4:77:9C:8E:8E:7D:10:C2:D2:D7:1C:75:F3:52:57 Authority key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 Certificate issuer: /CN=A913DA50/serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Certificate serial: 0CA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft Manifest number: 0CA1 Signing time: Sat 14 Jun 2025 18:03:44 +0000 Manifest this update: Sat 14 Jun 2025 18:03:44 +0000 Manifest next update: Sat 21 Jun 2025 18:03:44 +0000 Files and hashes: 1: tXSEdav1kHeBiVHMH-bti9LzEhM.crl (hash: utG5GKzP+5Ph9DAI+vOSwe7fo3DZ0MtairvvfZTa440=) 2: E458D4E0F4A011E98C19332EC4F9AE02.roa (hash: Kuacwrd9xmPbCRcHxM/w7AGXBwpLtTpK06rVdfJjAc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3241 (0xca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA50, serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Validity Not Before: Jun 14 18:03:44 2025 GMT Not After : Jun 21 18:03:44 2025 GMT Subject: CN=684db980-6926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d2:6a:f5:ef:18:7c:82:db:77:19:2a:3d:f1: 74:fe:cc:22:a0:73:52:a5:8d:b5:0e:70:01:bd:47: 37:93:21:79:96:ea:f1:7a:62:c7:cb:2c:e1:4a:df: c6:58:c9:61:b8:30:45:dc:31:27:2a:0c:e6:bb:4e: 5e:4c:bc:0d:46:a1:57:ad:bd:ce:05:cf:03:30:19: cc:69:0a:b6:b5:23:39:4b:f0:04:ac:d8:49:8d:2e: 13:ae:0c:8b:2c:48:36:f8:5f:ac:5f:c4:be:5e:15: 3d:68:4a:36:74:52:cc:ae:12:b0:93:c3:06:0d:a0: 44:4c:aa:90:fd:09:c8:62:f3:e4:25:1d:8f:2a:c7: 0d:5e:b0:08:6d:cf:16:89:a5:e5:60:5c:de:5c:a9: c0:2d:06:be:41:41:db:5c:e8:78:e9:de:92:63:57: 7b:51:4b:d7:df:92:e8:66:06:7e:fb:72:25:d3:3e: ab:75:02:5c:20:ca:36:13:fd:e9:51:07:8f:9b:71: 27:3e:36:99:72:4b:05:86:36:32:80:20:e3:33:5f: a5:f8:a8:a5:da:e8:fd:d7:1f:a7:95:d2:7e:b2:a9: 7c:75:21:5c:2a:43:81:33:cb:68:0d:2a:6b:65:f3: ab:9d:f1:07:2c:b2:be:22:7e:47:82:3a:5c:0f:45: a0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:72:03:36:19:B4:77:9C:8E:8E:7D:10:C2:D2:D7:1C:75:F3:52:57 X509v3 Authority Key Identifier: keyid:B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:34:28:1c:4a:25:30:3b:92:cc:c8:6f:1e:22:17:5a:dd:00: e0:3e:d8:c2:27:29:44:8f:82:f4:66:de:ee:a0:84:f8:5e:97: 9c:be:57:87:6d:e2:2a:8c:1e:90:27:2b:94:2d:5c:cd:d7:6c: 12:27:90:ff:e8:e6:b6:64:d3:4e:28:41:d6:46:76:10:a8:66: 10:09:14:0e:f0:6c:f4:60:c4:fb:e6:19:d2:3a:0c:be:d0:cd: 7e:a8:62:39:07:75:d2:5c:b6:99:ff:a2:b3:29:72:e1:ac:c4: 6a:13:3b:35:3a:86:2f:0b:99:36:8f:d8:d7:5f:db:4d:5c:b9: 1f:25:96:57:81:cd:24:87:a8:a4:ac:42:72:98:7e:d0:23:7d: 3d:50:90:84:1d:6c:da:5d:b3:d6:fb:92:87:3b:45:e7:62:2d: 39:f1:a6:bd:26:a5:4e:b4:e4:6f:df:91:4c:7b:e1:92:cb:66: 65:33:36:51:e8:5d:44:1f:97:8e:62:2f:bc:1a:18:6e:2c:13: 7a:a0:12:ea:af:23:df:3e:5f:6e:79:47:43:31:f8:93:b7:7c: 11:95:f8:aa:f1:71:a0:ec:e4:57:d8:4c:4a:ef:98:6a:11:93: 19:34:41:c6:49:bc:58:3d:95:25:e5:46:a7:8d:59:2f:d5:a9: 8b:0b:4b:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBNTAxMTAvBgNVBAUTKEI1NzQ4NDc1QUJGNTkwNzc4MTg5NTFDQzFGRTZFRDhC RDJGMzEyMTMwHhcNMjUwNjE0MTgwMzQ0WhcNMjUwNjIxMTgwMzQ0WjAYMRYwFAYD VQQDEw02ODRkYjk4MC02OTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdJq9e8YfILbdxkqPfF0/swioHNSpY21DnABvUc3kyF5lurxemLHyyzhSt/G WMlhuDBF3DEnKgzmu05eTLwNRqFXrb3OBc8DMBnMaQq2tSM5S/AErNhJjS4TrgyL LEg2+F+sX8S+XhU9aEo2dFLMrhKwk8MGDaBETKqQ/QnIYvPkJR2PKscNXrAIbc8W iaXlYFzeXKnALQa+QUHbXOh46d6SY1d7UUvX35LoZgZ++3Il0z6rdQJcIMo2E/3p UQePm3EnPjaZcksFhjYygCDjM1+l+Kil2uj91x+nldJ+sql8dSFcKkOBM8toDSpr ZfOrnfEHLLK+In5HgjpcD0Wg5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdyAzYZ tHecjo59EMLS1xx181JXMB8GA1UdIwQYMBaAFLV0hHWr9ZB3gYlRzB/m7YvS8xIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREE1MC9ENDlCRDIxMEY0 OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtIZUJpVkhNSC1idGk5THpF aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RYU0VkYXYxa0hlQmlWSE1ILWJ0aTlMekVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REE1MC9ENDlCRDIxMEY0OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtI ZUJpVkhNSC1idGk5THpFaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrNCgcSiUwO5LMyG8eIhda3QDgPtjCJylEj4L0Zt7uoIT4XpecvleH beIqjB6QJyuULVzN12wSJ5D/6Oa2ZNNOKEHWRnYQqGYQCRQO8Gz0YMT75hnSOgy+ 0M1+qGI5B3XSXLaZ/6KzKXLhrMRqEzs1OoYvC5k2j9jXX9tNXLkfJZZXgc0kh6ik rEJymH7QI309UJCEHWzaXbPW+5KHO0XnYi058aa9JqVOtORv35FMe+GSy2ZlMzZR 6F1EH5eOYi+8GhhuLBN6oBLqryPfPl9ueUdDMfiTt3wRlfiq8XGg7ORX2ExK75hq EZMZNEHGSbxYPZUl5UanjVkv1amLC0us -----END CERTIFICATE-----Generated at Sun Jun 15 08:45:18 2025 by rpki-client