$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: +KTwjvVyz3vrI9uB6uFMrbRNT0xoGyRz/qcTmsvrVpU= Subject key identifier: 17:4B:D3:9F:21:6B:26:2F:20:A6:05:47:D4:93:E0:54:D3:4D:26:3F Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 7E Signing time: Thu 19 Jun 2025 06:03:09 +0000 Manifest this update: Thu 19 Jun 2025 06:03:09 +0000 Manifest next update: Thu 26 Jun 2025 06:03:09 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: JY8OpgiyaKly9bWKblWnNmqCwYTu0yLOzDHZIp3Fwx8=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Jun 19 06:03:09 2025 GMT Not After : Jun 26 06:03:09 2025 GMT Subject: CN=6853a81d-5e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9f:68:a3:dc:5b:8b:f9:ed:a6:3b:b3:3c:59: d8:54:ba:cc:a1:79:7d:65:7c:d8:77:f3:f7:f5:3b: ae:a3:e5:2e:db:6e:b8:96:5f:b0:82:0e:73:9b:aa: 70:d9:4e:ac:a7:60:a3:af:d6:37:ca:ec:d4:dd:d1: 10:08:92:7b:11:45:e1:d4:3c:86:be:48:58:43:cb: b6:fd:9c:db:86:c3:f8:8a:c4:7b:2d:af:85:99:e5: d7:2a:5d:e1:ed:70:00:50:dd:8a:8f:3d:4d:78:cb: 4f:4a:48:c4:c7:c5:33:cd:ec:7e:68:ae:cb:8b:fa: 23:0d:68:55:30:12:55:10:7c:d1:e8:80:75:df:9d: 06:3f:82:19:fa:e1:de:e3:eb:52:90:7a:0e:49:15: 19:d7:27:3a:3d:ca:ba:a0:bf:82:2b:76:64:ba:d9: 57:f6:50:2c:5e:4a:b7:4a:1f:18:1a:10:7e:07:44: 7a:df:59:28:be:c3:cf:d1:8d:97:0e:94:66:f4:d7: a4:64:b3:3e:8b:25:c9:bb:fb:c2:58:29:e9:bf:05: 5d:14:91:c2:fb:9a:87:65:a5:af:e4:ab:de:ca:77: cf:d0:ef:3a:2d:24:e7:7b:e4:16:cb:ff:4b:2c:f2: 8e:53:52:fe:1f:f0:0b:c5:c2:56:31:88:95:42:b5: 56:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4B:D3:9F:21:6B:26:2F:20:A6:05:47:D4:93:E0:54:D3:4D:26:3F X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:2b:00:95:c8:b6:93:dc:23:07:cb:d0:b3:d4:72:af:a9:c7: 47:ee:34:71:0b:95:48:5c:af:74:6f:0c:21:c0:d0:dc:e8:31: b1:32:30:32:dc:2e:5f:aa:0b:f4:d8:a8:b3:2b:8e:94:f5:5e: 82:d2:66:8f:9b:41:96:4b:d2:05:e5:34:ef:4d:e5:7e:ca:45: 2b:4d:bf:77:de:8b:4f:be:d9:d7:00:9a:c9:a2:d2:84:fb:1b: 2c:ba:ab:78:42:b5:6f:6d:ae:ca:66:27:07:17:6a:88:b4:d9: 62:84:05:07:36:ae:b4:db:1d:97:92:1a:9c:21:8d:f3:61:3f: b7:24:35:b9:14:5b:44:af:59:2b:cc:d6:1c:65:16:18:5c:02: d6:70:0a:8d:76:76:14:e9:dc:6b:45:c4:bd:c0:c7:aa:9d:19: e9:07:c5:e5:af:3c:80:fc:e2:ba:1f:bb:4d:16:8f:9f:60:eb: 1e:c0:0e:b5:49:14:0b:de:9c:a8:5b:cc:03:e5:2d:0c:eb:bb: 24:b1:d1:85:e5:44:4f:0e:c7:02:f3:c8:19:39:c3:30:27:4d: 9b:0f:71:fd:7d:19:b7:9d:0a:b1:9d:4a:e9:20:91:23:60:ac: ea:95:4c:cd:d5:50:89:67:70:ab:e0:8d:e1:09:89:fe:19:3d: af:e8:5d:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUwNjE5MDYwMzA5WhcNMjUwNjI2MDYwMzA5WjAYMRYwFAYD VQQDEw02ODUzYTgxZC01ZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZ9oo9xbi/ntpjuzPFnYVLrMoXl9ZXzYd/P39Tuuo+Uu2264ll+wgg5zm6pw 2U6sp2Cjr9Y3yuzU3dEQCJJ7EUXh1DyGvkhYQ8u2/ZzbhsP4isR7La+FmeXXKl3h 7XAAUN2Kjz1NeMtPSkjEx8Uzzex+aK7Li/ojDWhVMBJVEHzR6IB1350GP4IZ+uHe 4+tSkHoOSRUZ1yc6Pcq6oL+CK3ZkutlX9lAsXkq3Sh8YGhB+B0R631kovsPP0Y2X DpRm9NekZLM+iyXJu/vCWCnpvwVdFJHC+5qHZaWv5KveynfP0O86LSTne+QWy/9L LPKOU1L+H/ALxcJWMYiVQrVW0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdL058h ayYvIKYFR9ST4FTTTSY/MB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiKwCVyLaT3CMHy9Cz1HKvqcdH7jRxC5VIXK90bwwhwNDc6DGxMjAy 3C5fqgv02KizK46U9V6C0maPm0GWS9IF5TTvTeV+ykUrTb933otPvtnXAJrJotKE +xssuqt4QrVvba7KZicHF2qItNlihAUHNq602x2XkhqcIY3zYT+3JDW5FFtEr1kr zNYcZRYYXALWcAqNdnYU6dxrRcS9wMeqnRnpB8XlrzyA/OK6H7tNFo+fYOsewA61 SRQL3pyoW8wD5S0M67sksdGF5URPDscC88gZOcMwJ02bD3H9fRm3nQqxnUrpIJEj YKzqlUzN1VCJZ3Cr4I3hCYn+GT2v6F3D -----END CERTIFICATE-----Generated at Thu Jun 19 17:06:52 2025 by rpki-client