$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: NZxxz/mECYlPgLk47kMctFi81MZL+vAeGwNPmXf2Zmk= Subject key identifier: 6F:E2:24:C7:21:82:80:FA:CD:13:44:8B:03:DC:27:41:A4:35:2A:68 Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 06C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 06C0 Signing time: Thu 24 Apr 2025 21:51:42 +0000 Manifest this update: Thu 24 Apr 2025 21:51:42 +0000 Manifest next update: Thu 01 May 2025 21:51:41 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: 5USYK4V8vpXgbMcy2rmO8G98JhrVJDMx5NXUgdYYWN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E, serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: Apr 24 21:51:42 2025 GMT Not After : May 1 21:51:41 2025 GMT Subject: CN=680ab26e-3075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:07:68:f6:f6:b1:f2:d6:e6:49:3f:46:b2: c2:2d:73:6d:21:e3:33:10:54:c0:78:49:3a:ed:a9: 8b:10:7c:60:43:45:da:61:ab:85:c9:17:79:8a:60: cb:b7:3e:22:1d:71:78:d6:d0:f9:39:1c:e7:17:a1: 61:a8:5e:74:0f:54:b1:62:f9:af:ae:be:5e:6b:f7: d7:7c:48:8c:4f:64:37:86:41:e1:2c:93:41:e1:a6: 0b:03:1c:f4:04:c7:8d:20:92:17:b1:12:84:49:18: 1b:ce:cc:56:62:e0:d0:a6:0b:92:1f:5d:b7:00:8a: 91:06:c3:a0:99:20:d4:8d:58:fb:1e:07:d8:e3:7f: 0a:80:a6:89:3b:1d:b6:63:5c:9f:c8:91:3c:8e:5d: 40:92:35:a0:4b:09:fb:0d:33:50:a3:23:16:17:93: 77:7a:bf:08:c1:a4:eb:13:ba:cc:cf:be:c5:9c:e6: 31:d8:22:a1:df:39:6f:e0:9b:e9:ba:7e:66:eb:a1: 3a:d4:14:34:e7:65:a3:ee:b5:6a:60:ee:c3:42:81: a8:24:ad:68:c8:c1:33:1b:77:dc:18:b2:68:96:7a: 09:fa:94:56:54:7f:89:9c:3c:d2:d6:b0:59:e8:8c: 34:b9:c7:42:d6:84:bb:b0:cd:60:67:c8:ba:35:cf: e7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E2:24:C7:21:82:80:FA:CD:13:44:8B:03:DC:27:41:A4:35:2A:68 X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:72:b3:b3:a3:f3:8c:f3:38:e6:1e:8e:82:1a:f0:d2:fa:93: 93:13:42:da:82:6a:0c:44:a2:7b:cc:8c:1b:a1:a7:51:f0:fd: d3:56:a3:a5:e3:27:ec:fb:8b:ad:b6:bb:58:da:93:6c:a8:14: 21:f0:2b:c7:ae:a4:bf:ef:07:36:cd:fb:a9:1f:ad:35:70:38: 1b:43:ec:07:91:80:65:f8:58:e6:04:5e:d6:26:77:65:f6:14: e8:95:09:63:67:3b:4d:95:b7:12:9f:17:88:fb:12:6b:6d:b5: fb:bd:c4:f4:1d:4a:90:37:ca:b5:9a:a2:af:f1:1c:ac:a7:5f: cd:5a:52:4e:d1:ac:4d:18:1b:4f:2a:95:64:3e:20:cb:d6:6e: e2:46:aa:42:5b:09:b3:50:05:49:87:d1:3a:50:9a:8b:6d:ca: ea:e8:c5:4d:06:a1:c8:85:72:f8:38:5e:64:da:e9:03:7a:11: f8:66:40:1b:15:07:61:fa:9a:c7:be:33:f3:8f:0f:c8:27:76: 27:dc:e5:ef:80:74:a2:7b:bb:1e:72:c1:f3:07:81:db:4c:3d: aa:4f:6a:a5:b3:63:dc:9a:35:02:46:78:39:fe:96:09:a8:78: ef:6a:a7:63:93:e4:e2:77:e7:87:58:4b:13:d3:5f:e8:5b:22: 79:1b:e8:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjUwNDI0MjE1MTQyWhcNMjUwNTAxMjE1MTQxWjAYMRYwFAYD VQQDEw02ODBhYjI2ZS0zMDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7wHaPb2sfLW5kk/RrLCLXNtIeMzEFTAeEk67amLEHxgQ0XaYauFyRd5imDL tz4iHXF41tD5ORznF6FhqF50D1SxYvmvrr5ea/fXfEiMT2Q3hkHhLJNB4aYLAxz0 BMeNIJIXsRKESRgbzsxWYuDQpguSH123AIqRBsOgmSDUjVj7HgfY438KgKaJOx22 Y1yfyJE8jl1AkjWgSwn7DTNQoyMWF5N3er8IwaTrE7rMz77FnOYx2CKh3zlv4Jvp un5m66E61BQ052Wj7rVqYO7DQoGoJK1oyMEzG3fcGLJolnoJ+pRWVH+JnDzS1rBZ 6Iw0ucdC1oS7sM1gZ8i6Nc/nvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/iJMch goD6zRNEiwPcJ0GkNSpoMB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHcrOzo/OM8zjmHo6CGvDS+pOTE0LagmoMRKJ7zIwboadR8P3TVqOl 4yfs+4uttrtY2pNsqBQh8CvHrqS/7wc2zfupH601cDgbQ+wHkYBl+FjmBF7WJndl 9hTolQljZztNlbcSnxeI+xJrbbX7vcT0HUqQN8q1mqKv8Rysp1/NWlJO0axNGBtP KpVkPiDL1m7iRqpCWwmzUAVJh9E6UJqLbcrq6MVNBqHIhXL4OF5k2ukDehH4ZkAb FQdh+prHvjPzjw/IJ3Yn3OXvgHSie7secsHzB4HbTD2qT2qls2PcmjUCRng5/pYJ qHjvaqdjk+Tid+eHWEsT01/oWyJ5G+hN -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:38 2025 by rpki-client