$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: dD4ZnV1TkovOPeCCiHIYKbJrtL2Akzz65/YCWhhggGA= Subject key identifier: 5D:10:C2:DC:D4:1E:B3:04:B5:C7:90:01:F1:F5:2B:29:5E:5A:32:0A Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 0486 Signing time: Wed 18 Jun 2025 23:54:28 +0000 Manifest this update: Wed 18 Jun 2025 23:54:27 +0000 Manifest next update: Wed 25 Jun 2025 23:54:27 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: ZV8Ky5R3Rzsbt8SLTVWRuRzfCaK4/QZ3Kc/QeyS6Vog=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Jun 18 23:54:27 2025 GMT Not After : Jun 25 23:54:27 2025 GMT Subject: CN=685351b4-034c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:42:21:81:0e:91:cf:8f:7c:1f:0c:c0:20:74: f3:a9:97:80:1b:12:38:eb:8b:93:8f:41:07:4b:66: aa:8c:9f:1b:8c:cf:0d:42:fe:3a:48:9b:2b:5a:86: 17:90:29:fb:89:62:55:1d:97:f3:05:00:dd:55:d4: a3:b4:80:43:c2:de:b2:2a:84:d8:96:e0:65:3b:45: 59:71:33:6c:4b:d0:ab:0e:fd:79:ac:01:d6:1a:b8: ca:75:c9:14:ca:60:a2:ec:ff:a4:90:bd:c9:d1:ef: dc:11:4f:3b:61:d5:55:83:ae:ff:51:00:0d:f5:c8: 67:70:0f:cf:a0:15:1b:3e:4d:ef:f2:17:8f:07:de: f8:20:16:3b:c2:82:82:0d:80:92:6f:59:b2:aa:82: 0d:9b:4e:59:9c:8b:5b:4b:98:18:bb:95:7a:46:62: ef:02:e9:ac:7f:5d:86:5d:4d:88:41:04:a6:96:ce: 05:55:59:b7:53:47:79:a1:98:63:86:d5:be:14:a9: 76:83:05:31:d9:8c:dd:a4:41:71:05:82:d9:ad:e7: 30:5e:1c:cd:4b:46:8b:ec:6e:c7:65:8d:ce:9d:45: f8:2c:7c:d6:4f:71:9d:7b:37:d3:53:4d:90:a6:50: 7a:70:c9:18:1e:ee:20:6d:e5:4a:59:10:ba:8f:21: 9b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:10:C2:DC:D4:1E:B3:04:B5:C7:90:01:F1:F5:2B:29:5E:5A:32:0A X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:07:ba:58:12:77:5a:5e:a3:d9:3e:b7:62:dd:bf:cf:df:af: fe:ab:a6:25:44:f5:13:31:db:4f:b3:4d:32:fe:d5:53:92:3a: f6:ed:e0:56:de:53:4f:e2:6b:e3:ff:fe:20:49:5e:05:0a:1b: cb:9d:e0:54:ae:ed:da:82:8c:b6:eb:9e:5e:17:8b:e5:ca:49: 65:e7:0f:49:13:b2:0c:b1:c7:10:25:4d:60:aa:cc:63:5d:83: 79:7c:25:39:49:22:c2:24:20:b8:74:09:65:bd:ad:43:58:e5: 03:57:ff:9a:ba:09:75:77:11:1c:14:14:46:08:0a:6a:e8:e4: b1:ae:dd:42:a9:c3:2c:0e:35:95:b9:3a:69:21:05:fa:4e:46: 58:02:b0:c1:21:2b:e8:0b:1e:ad:59:c0:73:e5:30:e8:04:0b: ad:d0:f0:1e:80:74:88:08:66:03:11:e7:d4:fe:9f:81:eb:39: c9:2a:07:5f:cd:ba:94:e0:d9:d4:cd:36:7e:8c:bf:32:98:30: 18:53:4e:29:77:90:b2:09:56:95:5e:fd:c1:73:a9:f0:8e:19: 43:87:e0:90:74:8e:ad:e6:c9:41:38:ee:57:4d:1c:0f:5d:c2: b3:4b:32:8b:36:f1:82:2d:ba:ad:0d:df:d3:40:65:17:d6:8c: 4f:6f:31:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwNjE4MjM1NDI3WhcNMjUwNjI1MjM1NDI3WjAYMRYwFAYD VQQDEw02ODUzNTFiNC0wMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEIhgQ6Rz498HwzAIHTzqZeAGxI464uTj0EHS2aqjJ8bjM8NQv46SJsrWoYX kCn7iWJVHZfzBQDdVdSjtIBDwt6yKoTYluBlO0VZcTNsS9CrDv15rAHWGrjKdckU ymCi7P+kkL3J0e/cEU87YdVVg67/UQAN9chncA/PoBUbPk3v8hePB974IBY7woKC DYCSb1myqoINm05ZnItbS5gYu5V6RmLvAumsf12GXU2IQQSmls4FVVm3U0d5oZhj htW+FKl2gwUx2YzdpEFxBYLZrecwXhzNS0aL7G7HZY3OnUX4LHzWT3GdezfTU02Q plB6cMkYHu4gbeVKWRC6jyGbuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0QwtzU HrMEtceQAfH1KyleWjIKMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRB7pYEndaXqPZPrdi3b/P36/+q6YlRPUTMdtPs00y/tVTkjr27eBW 3lNP4mvj//4gSV4FChvLneBUru3agoy2655eF4vlykll5w9JE7IMsccQJU1gqsxj XYN5fCU5SSLCJCC4dAllva1DWOUDV/+augl1dxEcFBRGCApq6OSxrt1CqcMsDjWV uTppIQX6TkZYArDBISvoCx6tWcBz5TDoBAut0PAegHSICGYDEefU/p+B6znJKgdf zbqU4NnUzTZ+jL8ymDAYU04pd5CyCVaVXv3Bc6nwjhlDh+CQdI6t5slBOO5XTRwP XcKzSzKLNvGCLbqtDd/TQGUX1oxPbzG1 -----END CERTIFICATE-----Generated at Thu Jun 19 22:48:45 2025 by rpki-client