$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft File: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft (raw, json) Hash identifier: FiA29B13ytT+8ndK02aX4gUNSBx6xwqh9Vuj7Zic9HE= Subject key identifier: DD:38:CB:23:AD:A4:88:79:CF:7C:37:A8:82:22:1B:0B:1E:40:8A:F2 Authority key identifier: 06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 Certificate issuer: /CN=A9178D35/serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Certificate serial: 348E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft Manifest number: 348E Signing time: Sat 14 Jun 2025 14:36:14 +0000 Manifest this update: Sat 14 Jun 2025 14:36:14 +0000 Manifest next update: Sat 21 Jun 2025 14:36:14 +0000 Files and hashes: 1: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl (hash: 0aUBQfyHX9Hf+bKuRwZ8vogvS/cxvqjTkBECsvItmCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13454 (0x348e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D35, serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Validity Not Before: Jun 14 14:36:14 2025 GMT Not After : Jun 21 14:36:14 2025 GMT Subject: CN=684d88de-8346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:64:0e:63:d9:97:e9:2d:82:8e:81:84:93: b7:37:4a:40:db:18:a4:d9:e2:ed:77:54:d5:00:25: 3b:be:2a:2d:bf:44:a0:8f:ba:84:4a:7c:16:77:7b: 3e:5e:a2:26:42:1b:66:27:ea:0d:4d:59:3f:1a:35: 5c:68:2c:74:8e:b3:6c:e3:34:ca:0f:6b:d9:1d:b4: 97:2c:fa:88:f2:a8:86:c9:91:f3:2f:5b:24:5f:cc: de:06:f9:00:97:39:b7:79:64:cd:84:aa:9a:0a:5c: 76:e0:dc:fa:3e:09:d4:10:da:84:cc:1a:59:38:33: f8:05:bb:e3:2f:b3:19:81:3a:b9:7f:b8:35:b3:3c: bc:b7:01:61:87:b2:df:eb:67:af:52:cb:14:4c:6a: 78:02:a8:14:44:dc:6f:5d:5b:b2:b7:2e:4c:15:95: a1:ba:e5:ad:82:48:34:6d:94:c2:f5:8d:d9:05:11: 2a:7f:ce:6b:5f:a3:84:45:aa:aa:aa:a8:98:f9:fd: 6c:77:c6:8e:fd:22:18:a9:4d:7b:11:91:b1:c7:7c: c6:52:55:85:c5:1d:ea:e8:a4:d8:41:97:bd:23:94: 60:8b:0a:e5:18:bc:43:5c:77:0d:38:0a:c4:38:38: 1d:bd:2c:c4:cd:c5:fa:e9:f6:91:37:82:6c:7f:62: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:38:CB:23:AD:A4:88:79:CF:7C:37:A8:82:22:1B:0B:1E:40:8A:F2 X509v3 Authority Key Identifier: keyid:06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e5:b5:ca:88:cf:d8:ce:d1:2c:04:26:3d:6a:53:45:52:fa: ed:0b:57:1d:61:a9:5e:6c:c8:f9:8d:20:6e:8f:1b:2b:43:d2: 19:a0:20:1e:66:2a:b7:5d:93:59:59:1e:93:e2:26:1a:24:9f: 09:f1:aa:66:ed:e4:66:02:44:b1:cb:40:31:0b:08:9a:1d:ec: 67:3a:e3:0f:2a:16:4d:fc:ef:29:ca:c4:fc:e9:0d:b6:a2:00: c6:ba:08:9b:54:68:7c:b1:3e:6c:06:f2:b9:91:a2:85:f3:9f: ac:5f:52:b2:88:db:16:6e:4e:26:85:0a:ef:1a:26:49:33:8f: 7e:9f:7a:bc:07:da:8e:6b:ca:ee:6b:fc:d0:70:c3:9c:2e:ed: ab:5c:8d:6c:80:75:88:c0:30:e6:d2:cf:a9:5b:30:55:1a:d3: 80:32:34:2a:53:7b:2a:96:d0:94:51:f7:28:84:26:cd:be:04: aa:4d:17:97:bb:10:b1:fa:a6:1e:10:11:a0:c2:7f:70:3a:6d: 1b:8c:a3:65:23:a8:ba:d7:54:5f:c1:3c:c0:1d:52:22:be:e6: b1:62:18:a7:4d:d0:c8:41:fb:37:7c:92:52:20:ef:56:11:db: 62:b1:10:6e:51:93:2b:72:70:b3:2d:b7:4b:d2:3a:8d:28:15: d2:48:0a:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMzUxMTAvBgNVBAUTKDA2NTVFMjkxNUNBREU5MTY3N0FBQjQ4QzIzQzFFMjI0 QjQzREJBQTUwHhcNMjUwNjE0MTQzNjE0WhcNMjUwNjIxMTQzNjE0WjAYMRYwFAYD VQQDEw02ODRkODhkZS04MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYxkDmPZl+ktgo6BhJO3N0pA2xik2eLtd1TVACU7viotv0Sgj7qESnwWd3s+ XqImQhtmJ+oNTVk/GjVcaCx0jrNs4zTKD2vZHbSXLPqI8qiGyZHzL1skX8zeBvkA lzm3eWTNhKqaClx24Nz6PgnUENqEzBpZODP4BbvjL7MZgTq5f7g1szy8twFhh7Lf 62evUssUTGp4AqgURNxvXVuyty5MFZWhuuWtgkg0bZTC9Y3ZBREqf85rX6OERaqq qqiY+f1sd8aO/SIYqU17EZGxx3zGUlWFxR3q6KTYQZe9I5RgiwrlGLxDXHcNOArE ODgdvSzEzcX66faRN4Jsf2KkrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN04yyOt pIh5z3w3qIIiGwseQIryMB8GA1UdIwQYMBaAFAZV4pFcrekWd6q0jCPB4iS0Pbql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQzNS9ENkY4ODVBNDFE OEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZSWjNxclNNSThIaUpMUTl1 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JsWGlrVnl0NlJaM3FyU01JOEhpSkxROXVxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQzNS9ENkY4ODVBNDFEOEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZS WjNxclNNSThIaUpMUTl1cVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM5bXKiM/YztEsBCY9alNFUvrtC1cdYalebMj5jSBujxsrQ9IZoCAe Ziq3XZNZWR6T4iYaJJ8J8apm7eRmAkSxy0AxCwiaHexnOuMPKhZN/O8pysT86Q22 ogDGugibVGh8sT5sBvK5kaKF85+sX1KyiNsWbk4mhQrvGiZJM49+n3q8B9qOa8ru a/zQcMOcLu2rXI1sgHWIwDDm0s+pWzBVGtOAMjQqU3sqltCUUfcohCbNvgSqTReX uxCx+qYeEBGgwn9wOm0bjKNlI6i611RfwTzAHVIivuaxYhinTdDIQfs3fJJSIO9W EdtisRBuUZMrcnCzLbdL0jqNKBXSSAo5 -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:20 2025 by rpki-client