$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: E73ZiuN5h6NE4Eu1burZGdWb+cZeDKyxDB7TkYdIugI= Subject key identifier: D1:E1:8B:A4:B7:76:0C:13:DF:D4:89:0E:93:4D:48:68:A4:EF:24:76 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 8F Signing time: Fri 13 Jun 2025 05:28:33 +0000 Manifest this update: Fri 13 Jun 2025 05:28:32 +0000 Manifest next update: Fri 20 Jun 2025 05:28:32 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: 5CEDdraEfssvArbyT+UGxPw2VFh7YQmgvguYEHXma/0=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: 0W2/njWu/4NeHHOITSUzSzI4ic/vgB1fnauNrzPM4sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Jun 13 05:28:32 2025 GMT Not After : Jun 20 05:28:32 2025 GMT Subject: CN=684bb701-3ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fe:f4:c9:d4:96:5e:eb:89:f5:90:4a:21:6b: a1:6e:01:a8:dc:a4:e9:19:13:76:85:d8:6f:20:8c: 81:ec:f7:45:57:8d:56:26:3c:b8:be:c5:8b:98:44: 94:2e:1f:de:d0:47:dd:51:93:51:cf:a1:ff:5f:f8: da:c2:7a:11:bd:81:8a:09:b6:18:3a:10:8d:72:e2: 13:24:69:97:5e:65:e3:08:d2:3b:4e:a3:18:c0:19: de:fc:11:bd:09:99:cb:17:6a:98:9f:82:a3:65:1b: ea:cd:3b:2a:fe:34:43:83:9b:4d:fa:ab:32:a6:f1: 39:5f:75:3d:8b:2b:bf:ba:cf:87:da:e5:fd:c0:a8: a5:5a:89:6b:1f:57:6e:9f:0f:23:6d:79:36:d8:30: 55:1f:44:b4:23:64:11:2b:7c:fe:4b:59:25:97:ea: 47:d9:bc:25:fe:bb:67:aa:92:53:dd:d2:fc:a4:98: f1:cd:f2:3f:f7:77:f2:fd:5c:46:30:c6:5d:d0:74: c9:4c:54:c0:6d:e6:d3:fc:86:66:0a:60:4a:d8:f4: 89:00:13:ed:11:3b:54:92:1b:8d:21:07:ba:02:d7: 6f:44:49:5f:9f:0d:19:e0:29:f7:8a:ab:35:18:1a: 97:30:0a:bd:35:30:89:96:37:35:a6:d3:48:43:01: 82:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E1:8B:A4:B7:76:0C:13:DF:D4:89:0E:93:4D:48:68:A4:EF:24:76 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ca:a6:5f:ff:37:72:26:66:b5:a9:ac:3d:a9:17:66:d4:42: e0:94:59:fc:d7:4e:5e:95:a2:62:71:6f:d6:17:a9:06:24:4a: d5:05:74:63:84:1c:59:14:6b:4a:b6:30:f9:98:67:02:7b:80: 5c:c3:1c:4e:b5:e0:a7:cc:e6:0a:c6:43:57:df:a1:03:de:39: 5a:94:06:31:fc:b1:2d:22:4f:18:e1:c1:8f:84:ee:6a:51:c4: 2e:84:ca:2b:fa:31:1c:22:d1:e7:82:05:a8:8e:61:39:d9:28: 1f:bc:17:a0:2c:41:a1:07:1b:54:58:db:de:5b:4f:ca:52:60: db:e9:75:ec:4f:da:b2:48:75:3f:ba:47:70:61:a3:6f:44:1b: d0:e8:31:55:56:e6:ba:39:42:b8:14:f7:c8:f2:4d:32:59:d6: da:d4:c3:fa:51:ca:55:38:cf:85:1a:49:49:c8:5a:00:11:2b: 02:1b:fe:54:dd:e1:34:cb:fc:17:4a:e5:c3:6b:5c:3b:4b:db: 4f:e1:5f:5b:80:b2:09:65:0e:7e:e0:19:8f:ae:f7:81:66:b8: 73:24:2a:49:ad:fc:eb:ae:90:86:7b:5b:5b:12:9e:0c:e3:b2: 91:76:0b:c1:bc:3a:14:df:fd:c5:09:30:d6:67:ba:28:b7:d9: a0:94:a0:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjUwNjEzMDUyODMyWhcNMjUwNjIwMDUyODMyWjAYMRYwFAYD VQQDEw02ODRiYjcwMS0zYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsf70ydSWXuuJ9ZBKIWuhbgGo3KTpGRN2hdhvIIyB7PdFV41WJjy4vsWLmESU Lh/e0EfdUZNRz6H/X/jawnoRvYGKCbYYOhCNcuITJGmXXmXjCNI7TqMYwBne/BG9 CZnLF2qYn4KjZRvqzTsq/jRDg5tN+qsypvE5X3U9iyu/us+H2uX9wKilWolrH1du nw8jbXk22DBVH0S0I2QRK3z+S1kll+pH2bwl/rtnqpJT3dL8pJjxzfI/93fy/VxG MMZd0HTJTFTAbebT/IZmCmBK2PSJABPtETtUkhuNIQe6AtdvRElfnw0Z4Cn3iqs1 GBqXMAq9NTCJljc1ptNIQwGC5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHhi6S3 dgwT39SJDpNNSGik7yR2MB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBayqZf/zdyJma1qaw9qRdm1ELglFn8105elaJicW/WF6kGJErVBXRj hBxZFGtKtjD5mGcCe4BcwxxOteCnzOYKxkNX36ED3jlalAYx/LEtIk8Y4cGPhO5q UcQuhMor+jEcItHnggWojmE52SgfvBegLEGhBxtUWNveW0/KUmDb6XXsT9qySHU/ ukdwYaNvRBvQ6DFVVua6OUK4FPfI8k0yWdba1MP6UcpVOM+FGklJyFoAESsCG/5U 3eE0y/wXSuXDa1w7S9tP4V9bgLIJZQ5+4BmPrveBZrhzJCpJrfzrrpCGe1tbEp4M 47KRdgvBvDoU3/3FCTDWZ7oot9mglKCJ -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:07 2025 by rpki-client