$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft File: x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft (raw, json) Hash identifier: 3pJ64LmIzHz4dY4+YAcHRsZip4OSFy/wWskjF3jW7yQ= Subject key identifier: 42:E6:45:C9:7B:47:50:09:4A:95:C0:CB:70:6D:B7:27:28:B4:CF:E9 Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0B11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft Manifest number: 0B01 Signing time: Thu 12 Jun 2025 19:10:50 +0000 Manifest this update: Thu 12 Jun 2025 19:10:49 +0000 Manifest next update: Thu 19 Jun 2025 19:10:49 +0000 Files and hashes: 1: x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl (hash: XpSqhrKHU74JkgdpXFliBvhAeOWV82Fz4QtOhym2d0U=) 2: 0F29204CB4B511EF86D6381EC4F9AE02.roa (hash: 2cXl/5f431sLYOEV9wOGgPMtNZFFmZ0haqZGiKbsEGE=) 3: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (hash: UpMy5YvHwAoOrHu9/2m6YmhC+FBzuF02PJm6nhV30kU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2833 (0xb11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Jun 12 19:10:49 2025 GMT Not After : Jun 19 19:10:49 2025 GMT Subject: CN=684b263a-f980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fe:db:fa:16:81:26:96:92:67:06:56:0d:a3: 19:9a:56:44:07:cf:69:94:06:0d:bc:f4:20:55:d8: 56:3b:f1:fb:ec:54:3a:5b:ea:96:6d:1b:11:09:79: 2d:9e:82:9d:66:a0:54:22:9c:e2:49:37:29:5d:66: c5:04:67:7e:ed:21:b6:60:97:cc:ac:1f:80:66:8f: d9:ff:65:16:56:3b:73:ef:14:c7:b2:79:de:bb:4e: 4c:03:3d:29:bb:08:83:70:0d:98:a3:cc:9b:11:2f: 30:97:aa:16:0b:e9:a7:c2:9c:aa:7d:7a:20:46:8b: 61:3c:ae:12:3d:4b:5f:d3:9c:fe:d4:00:58:c3:1c: de:2b:31:ef:ef:6b:91:79:0c:ad:0f:d9:20:ed:c0: 05:99:04:cc:07:35:7a:8f:b8:21:31:75:63:43:ef: d8:f4:87:23:a8:cc:7e:b7:51:e1:0f:0f:a2:59:a6: 1e:76:80:71:cf:68:84:c8:67:2d:c2:f5:ab:9e:3a: 90:6a:72:57:e8:d7:df:cd:86:bc:08:a9:e0:63:08: f8:58:54:30:1e:57:4e:9d:81:35:29:86:5b:95:3e: 2a:f5:bb:db:84:ef:a8:43:71:24:1c:92:b6:79:d3: d4:69:18:06:ea:70:a1:d5:2a:38:61:91:82:67:a6: 2a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E6:45:C9:7B:47:50:09:4A:95:C0:CB:70:6D:B7:27:28:B4:CF:E9 X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:00:bf:ba:7e:26:a1:21:fa:e5:99:bb:38:05:b7:a8:12:ad: 54:1c:91:98:db:e1:31:bf:58:72:9f:33:89:92:48:f9:cb:8d: 19:0e:85:dc:5d:6d:af:5b:d7:c5:e7:03:71:35:7a:0b:c2:74: fb:85:a1:95:1a:77:b3:7a:06:86:dd:c5:cd:d8:17:97:1e:4b: 3c:3c:77:fb:ca:a7:d7:b9:2d:d9:21:08:d8:99:42:17:b1:a9: 1c:e8:fd:43:e6:3d:00:2c:14:a7:70:e4:2b:45:ce:47:5e:8e: ad:15:42:ca:e5:de:bf:10:64:55:f5:e7:f3:2c:a3:b2:08:fb: 15:d2:5b:d2:81:63:32:d9:2f:8a:32:42:b2:ae:f9:05:3f:34: 66:52:26:39:0b:5d:bf:30:31:3b:df:22:ef:cd:5f:4d:b6:c3: af:11:3c:37:9e:1c:77:90:b8:03:2f:45:4c:c0:b9:77:a0:ce: ef:53:43:18:0f:b9:1f:9d:7f:16:d4:cd:bb:bc:f4:86:4a:35: 9b:9a:28:fa:e9:28:dd:fb:1a:eb:f5:a8:1d:2f:df:16:4a:84: 9d:ba:d7:b8:49:30:45:2d:09:79:7e:c7:c4:36:af:f2:ad:49: 59:1a:4b:77:59:ba:33:03:60:2f:f6:93:14:c3:67:c2:19:97: f1:7e:e4:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjUwNjEyMTkxMDQ5WhcNMjUwNjE5MTkxMDQ5WjAYMRYwFAYD VQQDEw02ODRiMjYzYS1mOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAov7b+haBJpaSZwZWDaMZmlZEB89plAYNvPQgVdhWO/H77FQ6W+qWbRsRCXkt noKdZqBUIpziSTcpXWbFBGd+7SG2YJfMrB+AZo/Z/2UWVjtz7xTHsnneu05MAz0p uwiDcA2Yo8ybES8wl6oWC+mnwpyqfXogRothPK4SPUtf05z+1ABYwxzeKzHv72uR eQytD9kg7cAFmQTMBzV6j7ghMXVjQ+/Y9IcjqMx+t1HhDw+iWaYedoBxz2iEyGct wvWrnjqQanJX6NffzYa8CKngYwj4WFQwHldOnYE1KYZblT4q9bvbhO+oQ3EkHJK2 edPUaRgG6nCh1So4YZGCZ6YqcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELmRcl7 R1AJSpXAy3BttycotM/pMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODEzMS85ODJBQjZFNjQ4QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1 endIREF6WGJHTzhyUDFZQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHAL+6fiahIfrlmbs4BbeoEq1UHJGY2+Exv1hynzOJkkj5y40ZDoXc XW2vW9fF5wNxNXoLwnT7haGVGnezegaG3cXN2BeXHks8PHf7yqfXuS3ZIQjYmUIX sakc6P1D5j0ALBSncOQrRc5HXo6tFULK5d6/EGRV9efzLKOyCPsV0lvSgWMy2S+K MkKyrvkFPzRmUiY5C12/MDE73yLvzV9NtsOvETw3nhx3kLgDL0VMwLl3oM7vU0MY D7kfnX8W1M27vPSGSjWbmij66Sjd+xrr9agdL98WSoSdute4STBFLQl5fsfENq/y rUlZGkt3WbozA2Av9pMUw2fCGZfxfuR6 -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:04 2025 by rpki-client