$ rpki-client -vvf rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft File: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft (raw, json) Hash identifier: yW1dpeuLb33J+vRg1FbtCi72sZN7BW2iblxZTs1gnIw= Subject key identifier: DC:37:34:9B:DA:B3:C0:E3:C7:E4:C0:1F:EF:A8:15:44:1B:BF:F0:D7 Authority key identifier: 5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 Certificate issuer: /CN=A9178ACB/serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft Manifest number: 0286 Signing time: Fri 13 Jun 2025 01:08:57 +0000 Manifest this update: Fri 13 Jun 2025 01:08:56 +0000 Manifest next update: Fri 20 Jun 2025 01:08:56 +0000 Files and hashes: 1: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl (hash: awOn6Ls2JwRIC6Le1xfg5rFkqg9HpFP+lG1zYSEa4ZA=) 2: F82824B4163311EDA7687F1CC4F9AE02.roa (hash: llGHaeZeNwyGtBSSkhkdbPBkxPf6MV+xeeQondsSA8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178ACB, serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Validity Not Before: Jun 13 01:08:56 2025 GMT Not After : Jun 20 01:08:56 2025 GMT Subject: CN=684b7a28-c6c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f0:3b:51:2b:1d:b3:d6:66:c7:bd:44:87:b7: 6a:2d:31:f5:f4:71:04:ab:68:1e:63:c0:11:01:0e: b6:51:b4:d4:11:53:08:db:5a:85:bb:0b:42:e9:a5: 5c:8c:aa:da:33:07:c5:ca:1c:4a:74:eb:af:54:0b: 56:1b:36:8c:ec:56:dd:92:33:c9:ca:ab:ef:df:e0: 63:5c:cc:cb:bf:d2:5c:01:e7:0f:16:fd:e2:f8:a3: d9:5d:61:db:73:34:95:03:4f:15:ea:11:0d:ca:bc: 2c:05:b0:8a:f4:b9:af:ff:e4:9c:f7:85:7c:80:68: 14:93:01:ff:7b:de:20:01:8d:1e:1e:8a:bc:68:c7: 22:aa:56:cb:05:9a:df:75:f4:54:63:86:6a:a2:fa: 47:54:89:b5:65:e8:da:7a:7e:83:dc:d2:06:94:a4: 43:9b:d6:bc:b0:df:04:9f:12:c2:c3:e6:57:5e:fd: eb:4f:cd:a3:1f:38:42:6e:e8:c9:09:9d:e4:90:24: 24:8e:09:b8:f0:1d:0d:78:50:9c:a6:dd:f3:f1:98: e7:e0:75:07:e6:4b:2b:88:96:58:e5:f4:91:22:40: 90:37:4b:69:ba:50:40:98:29:ef:16:cd:fa:62:a7: c8:1e:9a:ce:96:a8:74:b7:79:34:99:6d:c3:09:51: be:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:37:34:9B:DA:B3:C0:E3:C7:E4:C0:1F:EF:A8:15:44:1B:BF:F0:D7 X509v3 Authority Key Identifier: keyid:5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:3c:6c:5f:da:6e:28:99:8c:9b:3f:81:ce:cd:3e:15:b4:a5: 50:b9:3c:d1:4b:5f:5d:e1:9f:35:96:6e:ca:e5:f2:2b:87:30: cf:3f:d3:8c:d7:9f:54:77:df:2d:49:98:c0:00:70:2f:35:0d: 64:2d:1a:cb:ad:0c:39:95:35:94:1a:63:c3:f2:96:92:7a:73: 11:48:23:c7:24:5d:56:92:68:d1:05:da:80:50:e6:c4:2d:81: 39:48:df:08:3f:e2:9d:3f:ee:f7:87:89:aa:4c:08:32:c3:23: bd:5c:86:93:e3:bd:d9:93:5b:5b:1a:e4:1e:7a:c0:4a:67:86: b3:52:04:71:8d:6d:ac:c2:69:b6:67:56:e2:de:f8:e2:53:5c: 58:39:e3:31:02:6e:8e:1b:7b:0d:61:80:af:0c:77:fe:0f:1a: 57:01:89:67:f1:87:fa:5a:01:50:69:a7:0f:9a:28:19:a5:e1: 0b:2d:47:d4:26:35:99:ed:7e:9c:cb:87:4b:59:b9:d9:59:83: 6c:f9:ac:59:aa:49:c6:76:da:1c:75:87:e3:4f:d4:ad:c7:95: 5a:3c:b7:a3:89:e3:fa:bd:ca:8d:0d:44:43:e1:2a:3f:28:97: 72:46:49:67:e6:40:9e:a3:3b:a0:74:98:4e:d2:ca:97:8d:5c: fa:1e:98:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBQ0IxMTAvBgNVBAUTKDVDMjdENTNEMEYyMzgxM0M4RUExNjM4QUYwNkM4RDM0 RDhGMkRGRjEwHhcNMjUwNjEzMDEwODU2WhcNMjUwNjIwMDEwODU2WjAYMRYwFAYD VQQDEw02ODRiN2EyOC1jNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvA7USsds9Zmx71Eh7dqLTH19HEEq2geY8ARAQ62UbTUEVMI21qFuwtC6aVc jKraMwfFyhxKdOuvVAtWGzaM7FbdkjPJyqvv3+BjXMzLv9JcAecPFv3i+KPZXWHb czSVA08V6hENyrwsBbCK9Lmv/+Sc94V8gGgUkwH/e94gAY0eHoq8aMciqlbLBZrf dfRUY4ZqovpHVIm1Zejaen6D3NIGlKRDm9a8sN8EnxLCw+ZXXv3rT82jHzhCbujJ CZ3kkCQkjgm48B0NeFCcpt3z8Zjn4HUH5ksriJZY5fSRIkCQN0tpulBAmCnvFs36 YqfIHprOlqh0t3k0mW3DCVG+1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNw3NJva s8Djx+TAH++oFUQbv/DXMB8GA1UdIwQYMBaAFFwn1T0PI4E8jqFjivBsjTTY8t/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFDQi81MjNBOEY1NjBC QTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdUeU9vV09LOEd5Tk5Oankz X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDZlZQUThqZ1R5T29XT0s4R3lOTk5qeTNfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEFDQi81MjNBOEY1NjBCQTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdU eU9vV09LOEd5Tk5OankzX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5PGxf2m4omYybP4HOzT4VtKVQuTzRS19d4Z81lm7K5fIrhzDPP9OM 159Ud98tSZjAAHAvNQ1kLRrLrQw5lTWUGmPD8paSenMRSCPHJF1WkmjRBdqAUObE LYE5SN8IP+KdP+73h4mqTAgywyO9XIaT473Zk1tbGuQeesBKZ4azUgRxjW2swmm2 Z1bi3vjiU1xYOeMxAm6OG3sNYYCvDHf+DxpXAYln8Yf6WgFQaacPmigZpeELLUfU JjWZ7X6cy4dLWbnZWYNs+axZqknGdtocdYfjT9Stx5VaPLejieP6vcqNDURD4So/ KJdyRkln5kCeozugdJhO0sqXjVz6HphX -----END CERTIFICATE-----Generated at Sat Jun 14 19:04:34 2025 by rpki-client