$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: ZQD+c/gO0yaZs3whWvyFx0MN6q3kRXMb8WAd2bi+V9E= Subject key identifier: AA:0B:03:51:FE:6F:71:0B:A2:6A:F5:A6:FB:2B:E6:A0:EC:35:F3:5C Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 05BC Signing time: Sat 14 Jun 2025 22:51:05 +0000 Manifest this update: Sat 14 Jun 2025 22:51:04 +0000 Manifest next update: Sat 21 Jun 2025 22:51:04 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: BxxbT2YfkC2OgsOcbYx55UKiPVAG0l7Kb401iKsUndQ=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Jun 14 22:51:04 2025 GMT Not After : Jun 21 22:51:04 2025 GMT Subject: CN=684dfcd9-991d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:70:2c:1b:84:b8:3b:ea:92:ec:04:31:cc:a5: be:0c:e8:0d:29:9e:30:45:5c:81:73:b0:64:7b:fe: 17:5a:af:0a:fc:e4:9a:93:aa:f2:57:38:33:3b:2f: 3d:fa:db:c6:07:3d:c2:dc:a8:5e:e7:5d:48:ad:61: c5:c1:3a:4f:d1:2a:8f:7b:8b:8d:1b:e4:fa:5f:63: 8e:6d:48:40:d1:a4:c6:38:be:f6:4a:ea:be:75:c0: e9:ae:a3:15:b5:cc:d7:16:95:b6:69:b0:91:09:06: 44:ee:29:8b:e0:e5:0e:55:3d:dc:ba:40:42:e7:f7: 1a:86:35:a3:be:d8:12:bb:d2:83:2c:2d:95:34:50: 49:f1:4f:50:ae:ce:0e:46:76:0a:75:2c:50:92:a7: c5:3b:07:31:fd:c5:23:32:9f:44:f6:8a:a5:74:79: f9:a6:94:aa:e4:7d:03:0f:0c:05:cd:b5:91:1f:98: 1e:14:ba:8a:e7:ef:66:af:14:5f:1e:2a:c2:25:87: d0:ee:86:3d:76:e0:39:d8:4c:f1:2a:6a:25:75:f2: 91:7c:5d:65:00:b2:3e:c6:0e:67:63:0d:8e:12:09: f3:84:0e:b1:c6:cd:3e:40:e6:cf:81:fa:a3:1b:d4: 0e:de:01:a8:b2:34:97:94:a0:a8:31:d4:8b:2b:d5: 72:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0B:03:51:FE:6F:71:0B:A2:6A:F5:A6:FB:2B:E6:A0:EC:35:F3:5C X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:2f:70:06:d7:93:4a:62:74:b9:96:72:60:43:0d:85:af:42: 9e:df:fa:c8:5d:3c:b1:f8:19:60:11:f2:3e:31:d3:9c:c0:e7: e0:49:98:f7:43:d1:ff:04:6b:d8:15:6f:38:51:15:3f:c0:d4: 09:2f:af:dc:6d:88:d1:81:af:10:8e:c9:fa:25:99:8d:cc:57: bb:2d:2e:a2:6a:20:45:3c:ae:34:dd:8e:3f:17:6b:f9:71:23: 63:6b:34:f8:10:73:dd:c1:2a:62:e0:00:58:50:9b:bd:94:e6: 54:5a:59:98:5d:65:99:ff:08:39:f4:03:78:29:22:a8:44:c6: fe:1d:31:8a:f9:86:62:92:ef:87:2c:84:a7:25:05:c0:49:b1: 49:89:09:fb:74:5c:5c:30:58:65:72:07:9c:e4:c5:b3:b0:a8: 7f:f2:fe:47:46:bc:2c:a6:12:5e:6c:3c:24:e4:c4:6b:ba:74: fd:42:a2:02:c3:40:70:c4:cf:7c:ef:81:ea:00:c7:aa:6b:07: 32:23:74:e9:87:46:63:ac:d6:4e:7e:a4:7c:b8:49:45:58:6a: ed:3d:50:0e:a6:09:72:fa:8b:cc:ae:4b:82:a9:6c:2b:23:1a: 84:00:ec:51:ff:e7:b6:25:f7:14:5e:58:9b:b0:c6:23:db:b7: 2a:16:5f:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUwNjE0MjI1MTA0WhcNMjUwNjIxMjI1MTA0WjAYMRYwFAYD VQQDEw02ODRkZmNkOS05OTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HAsG4S4O+qS7AQxzKW+DOgNKZ4wRVyBc7Bke/4XWq8K/OSak6ryVzgzOy89 +tvGBz3C3Khe511IrWHFwTpP0SqPe4uNG+T6X2OObUhA0aTGOL72Suq+dcDprqMV tczXFpW2abCRCQZE7imL4OUOVT3cukBC5/cahjWjvtgSu9KDLC2VNFBJ8U9Qrs4O RnYKdSxQkqfFOwcx/cUjMp9E9oqldHn5ppSq5H0DDwwFzbWRH5geFLqK5+9mrxRf HirCJYfQ7oY9duA52EzxKmoldfKRfF1lALI+xg5nYw2OEgnzhA6xxs0+QObPgfqj G9QO3gGosjSXlKCoMdSLK9VysQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoLA1H+ b3ELomr1pvsr5qDsNfNcMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3L3AG15NKYnS5lnJgQw2Fr0Ke3/rIXTyx+BlgEfI+MdOcwOfgSZj3 Q9H/BGvYFW84URU/wNQJL6/cbYjRga8Qjsn6JZmNzFe7LS6iaiBFPK403Y4/F2v5 cSNjazT4EHPdwSpi4ABYUJu9lOZUWlmYXWWZ/wg59AN4KSKoRMb+HTGK+YZiku+H LISnJQXASbFJiQn7dFxcMFhlcgec5MWzsKh/8v5HRrwsphJebDwk5MRrunT9QqIC w0BwxM9874HqAMeqawcyI3Tph0ZjrNZOfqR8uElFWGrtPVAOpgly+ovMrkuCqWwr IxqEAOxR/+e2JfcUXlibsMYj27cqFl+E -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:04 2025 by rpki-client