$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: AYejeHhvQgUlq2gNR6ty8eQgOJS0ZLB3ZtU28Y/hRd0= Subject key identifier: E9:B0:69:E7:E0:3E:22:5E:CE:BC:EE:70:63:4D:9D:CC:EC:B4:A1:A6 Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 34 Signing time: Fri 13 Jun 2025 06:30:51 +0000 Manifest this update: Fri 13 Jun 2025 06:30:50 +0000 Manifest next update: Fri 20 Jun 2025 06:30:50 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: d26ga/OQ+IP8q4p1EMM6jUxwU0YwNTeb4T5ejF0uwis=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Jun 13 06:30:50 2025 GMT Not After : Jun 20 06:30:50 2025 GMT Subject: CN=684bc59a-6f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f0:5c:b5:57:19:98:13:51:f2:e8:e5:ee:21: a6:fd:b9:7b:b2:ff:13:fb:c0:ed:8d:5f:d4:24:19: 9d:f1:3c:ee:c0:4d:95:e4:74:04:69:cf:39:6c:62: 3b:af:59:5c:4a:a1:71:e5:2d:80:35:f2:46:80:e3: f0:7e:91:bb:b8:42:06:ac:b1:0b:3a:04:6f:eb:df: 32:a5:38:f9:f3:21:7e:8f:dc:7b:a6:ea:c1:49:db: 47:3d:8c:3c:26:28:99:15:fe:82:d3:e5:51:f7:d1: 0c:e0:eb:16:b7:1c:08:d9:8d:93:13:c9:68:cc:d8: 7a:62:fe:cb:40:ad:b6:79:3b:42:4f:9e:b8:7e:f9: 8b:ed:ed:06:76:02:93:90:30:c1:ed:bd:e0:ac:ce: 03:8c:23:02:09:dd:3f:49:50:e4:5d:eb:cc:e2:ee: b2:29:b7:5f:c7:03:3c:51:41:94:8b:6d:0d:0d:35: fb:69:9d:1e:cd:21:fc:7f:4c:7c:37:ea:41:92:f5: 6e:f6:8d:59:e5:7e:b8:cf:3b:8c:52:dc:f7:14:86: c2:d7:e0:2c:22:c5:7a:9b:8f:ff:3b:b4:e0:7b:1c: a4:86:89:ec:ac:36:9c:6b:25:f7:91:a4:41:32:6b: 7e:cd:98:17:a2:8a:ce:e2:76:b7:6c:4d:46:53:f2: d6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B0:69:E7:E0:3E:22:5E:CE:BC:EE:70:63:4D:9D:CC:EC:B4:A1:A6 X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:0e:78:87:dc:63:22:ca:67:0c:6a:bc:d1:41:4f:51:63:75: 48:ad:9f:82:ad:2f:94:19:23:a8:f6:ab:da:3c:74:0e:01:16: 62:38:c2:3d:b8:3e:3a:97:50:c0:e5:8b:68:c4:72:2f:6c:bb: 35:74:ff:49:b4:69:33:40:f3:dc:b5:27:8d:9e:95:0e:6c:87: 10:58:bd:16:2e:7a:fe:d6:80:2a:31:3c:52:a3:94:ce:bf:42: a6:9d:28:df:4c:2c:93:f7:ca:90:c4:94:5b:95:8e:49:9b:5a: 4a:7f:29:88:0e:cc:f7:16:9b:f9:79:1a:45:df:bb:02:af:21: a2:76:cc:09:48:60:d9:28:be:b0:d7:6e:86:4b:6e:75:b5:36: 78:fd:35:22:b2:96:b4:46:62:6e:81:c9:62:06:b6:cc:22:80: ca:12:61:54:70:0d:2b:c7:db:ac:0c:55:92:8d:02:b6:c8:c1: 1c:44:27:3a:37:2a:93:6d:4f:19:83:b9:56:3a:9e:dc:9b:5b: 61:b2:91:d2:ae:0e:f1:2b:ce:4e:f7:cb:91:3f:76:5d:97:53: a3:12:f0:91:20:6b:41:49:21:18:45:09:5a:ce:8d:0b:14:2a: 02:1e:88:f2:4f:03:8d:f7:e9:07:83:15:66:31:da:2d:2d:75: 48:40:c1:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTA2MTMwNjMwNTBaFw0yNTA2MjAwNjMwNTBaMBgxFjAUBgNV BAMTDTY4NGJjNTlhLTZmMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu8Fy1VxmYE1Hy6OXuIab9uXuy/xP7wO2NX9QkGZ3xPO7ATZXkdARpzzlsYjuv WVxKoXHlLYA18kaA4/B+kbu4QgassQs6BG/r3zKlOPnzIX6P3Hum6sFJ20c9jDwm KJkV/oLT5VH30Qzg6xa3HAjZjZMTyWjM2Hpi/stArbZ5O0JPnrh++Yvt7QZ2ApOQ MMHtveCszgOMIwIJ3T9JUORd68zi7rIpt1/HAzxRQZSLbQ0NNftpnR7NIfx/THw3 6kGS9W72jVnlfrjPO4xS3PcUhsLX4CwixXqbj/87tOB7HKSGieysNpxrJfeRpEEy a37NmBeiis7idrdsTUZT8tY1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6bBp5+A+ Il7OvO5wY02dzOy0oaYwHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAgOeIfcYyLKZwxqvNFBT1FjdUitn4KtL5QZI6j2q9o8dA4BFmI4wj24 PjqXUMDli2jEci9suzV0/0m0aTNA89y1J42elQ5shxBYvRYuev7WgCoxPFKjlM6/ QqadKN9MLJP3ypDElFuVjkmbWkp/KYgOzPcWm/l5GkXfuwKvIaJ2zAlIYNkovrDX boZLbnW1Nnj9NSKylrRGYm6ByWIGtswigMoSYVRwDSvH26wMVZKNArbIwRxEJzo3 KpNtTxmDuVY6ntybW2GykdKuDvErzk73y5E/dl2XU6MS8JEga0FJIRhFCVrOjQsU KgIeiPJPA4336QeDFWYx2i0tdUhAwQs= -----END CERTIFICATE-----Generated at Sat Jun 14 18:01:59 2025 by rpki-client