$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: +lnxB4tUmSYzyZV+7v+4ll9sdXXT33oZ65aX1Xi3g6k= Subject key identifier: A0:AF:76:D0:75:18:95:7A:97:FB:83:CC:38:6B:82:8B:3B:7F:EA:8F Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 02F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 02F1 Signing time: Sun 15 Jun 2025 00:59:34 +0000 Manifest this update: Sun 15 Jun 2025 00:59:33 +0000 Manifest next update: Sun 22 Jun 2025 00:59:33 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: fPrnzP02Ct9HFRRW16DEwIWwTsSamIzL0QnOOmhCVyc=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Jun 15 00:59:33 2025 GMT Not After : Jun 22 00:59:33 2025 GMT Subject: CN=684e1af6-a8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c3:47:a9:8c:d4:6b:da:9d:43:6f:71:b9:7e: 08:b4:b5:29:4b:71:d3:c8:ed:fd:d4:e6:34:8a:7e: 61:42:99:28:75:5c:fa:b0:05:23:25:4e:78:ba:e0: 3d:9c:15:8f:21:20:cf:82:f0:89:1a:6c:1c:77:61: 4d:96:43:a4:25:16:c5:a7:45:12:05:3b:7a:3d:83: 34:9c:5f:09:c6:38:72:29:44:15:8a:5c:cf:09:3c: aa:8f:1c:1b:9c:36:f1:11:7d:b9:4d:21:1d:7a:89: f5:05:20:ea:b2:ab:3e:f3:f8:71:15:96:d8:d9:51: d8:34:b2:97:67:9c:c2:65:7c:f0:db:2d:b3:20:cd: 33:3d:1f:16:4c:dc:79:07:0a:6c:7e:5a:43:f2:cd: 3f:3a:7b:d8:20:5b:5e:67:e3:28:3e:f8:37:c8:97: 03:1f:8a:a0:9e:a4:ed:79:cf:66:3f:ea:3d:91:fd: 40:3c:89:2c:be:05:76:de:7a:ec:aa:28:e8:43:bc: c1:b1:c3:8f:67:55:96:e8:7c:1b:bc:78:c0:35:f9: cf:43:b0:9b:23:50:4c:8a:21:a4:55:8a:1e:8c:5a: a2:e5:ef:8d:4e:5d:32:da:0f:c9:e1:d9:50:9c:62: 64:b3:eb:3b:66:16:a5:37:b0:9f:47:8a:f2:86:49: 0c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AF:76:D0:75:18:95:7A:97:FB:83:CC:38:6B:82:8B:3B:7F:EA:8F X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:61:db:69:69:ce:2c:3e:7d:60:00:df:0d:02:b6:68:93:f2: 56:77:cf:b0:df:af:77:45:42:f9:6d:9b:85:f5:c8:11:0a:4c: 0f:5d:fd:0d:99:da:cb:81:8b:7b:4e:b3:73:0d:a7:cb:ec:f4: 7e:76:14:9c:44:6f:ec:99:a7:f9:90:45:5f:08:d2:82:42:f1: d0:86:4f:83:3c:07:8e:46:47:c0:0a:23:2a:1b:15:23:60:20: 63:0f:43:94:dc:db:4a:c7:99:80:85:d6:a9:1a:10:7c:c7:7e: 18:9c:0d:bf:c3:9d:b0:aa:b0:c9:16:6e:d3:ae:ba:3c:3a:8a: 2f:34:21:4d:5e:e4:5d:96:1e:c7:83:d5:dd:5c:ad:13:45:e0: 27:c6:dc:f7:29:bb:62:d3:43:48:8f:54:70:f9:cd:d4:2f:f4: 51:8d:24:23:27:91:b9:36:9c:28:c6:fe:dc:4d:b0:2e:95:9a: 37:e9:28:6a:25:a2:58:b4:f2:e5:3a:49:6d:ca:14:c9:a2:ec: 42:99:98:81:fe:cb:30:da:57:91:4d:1c:e7:7b:97:ff:14:c3: 00:ef:a9:4c:54:fb:6d:09:a8:bf:21:fe:95:19:97:58:50:e7: 1e:4b:4b:9a:2d:3d:9f:2d:31:d1:79:9f:d9:31:3a:3b:97:04: 6c:5d:79:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwNjE1MDA1OTMzWhcNMjUwNjIyMDA1OTMzWjAYMRYwFAYD VQQDEw02ODRlMWFmNi1hOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcNHqYzUa9qdQ29xuX4ItLUpS3HTyO391OY0in5hQpkodVz6sAUjJU54uuA9 nBWPISDPgvCJGmwcd2FNlkOkJRbFp0USBTt6PYM0nF8JxjhyKUQVilzPCTyqjxwb nDbxEX25TSEdeon1BSDqsqs+8/hxFZbY2VHYNLKXZ5zCZXzw2y2zIM0zPR8WTNx5 BwpsflpD8s0/OnvYIFteZ+MoPvg3yJcDH4qgnqTtec9mP+o9kf1APIksvgV23nrs qijoQ7zBscOPZ1WW6HwbvHjANfnPQ7CbI1BMiiGkVYoejFqi5e+NTl0y2g/J4dlQ nGJks+s7ZhalN7CfR4ryhkkMYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCvdtB1 GJV6l/uDzDhrgos7f+qPMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvYdtpac4sPn1gAN8NArZok/JWd8+w3693RUL5bZuF9cgRCkwPXf0N mdrLgYt7TrNzDafL7PR+dhScRG/smaf5kEVfCNKCQvHQhk+DPAeORkfACiMqGxUj YCBjD0OU3NtKx5mAhdapGhB8x34YnA2/w52wqrDJFm7Trro8OoovNCFNXuRdlh7H g9XdXK0TReAnxtz3Kbti00NIj1Rw+c3UL/RRjSQjJ5G5Npwoxv7cTbAulZo36Shq JaJYtPLlOkltyhTJouxCmZiB/ssw2leRTRzne5f/FMMA76lMVPttCai/If6VGZdY UOceS0uaLT2fLTHReZ/ZMTo7lwRsXXmt -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:30 2025 by rpki-client