$ rpki-client -vvf rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft File: XPuiiRbqwHsjWQlIVdieFqCBS6w.mft (raw, json) Hash identifier: P1tyHA4v+CToXUSgjt/d4yJfEqjdDk/tG4CGTUWn/zc= Subject key identifier: 79:E0:C3:DD:13:DC:19:79:D8:CE:A8:92:E9:7E:09:35:E2:37:02:1A Authority key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC Certificate issuer: /CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Certificate serial: 0B4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft Manifest number: 0B3F Signing time: Thu 12 Jun 2025 18:57:43 +0000 Manifest this update: Thu 12 Jun 2025 18:57:42 +0000 Manifest next update: Thu 19 Jun 2025 18:57:42 +0000 Files and hashes: 1: XPuiiRbqwHsjWQlIVdieFqCBS6w.crl (hash: 9TPfha88a9jOsfIsk4Lt2PGRDxjkde9S6fDV0+v5UFg=) 2: 3EA26CE6396011EABC88BD55C4F9AE02.roa (hash: z+/TKQAcf6VE8NuqmnIeG+tuqaOl0QxpRj3ReMN+jL0=) 3: 01553E10396311EAB24C5A5FC4F9AE02.roa (hash: Jhq/OLItI0gDhEIBYho+XP9iO0Y/7Srvb27SpQGuffU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2894 (0xb4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E843, serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Validity Not Before: Jun 12 18:57:42 2025 GMT Not After : Jun 19 18:57:42 2025 GMT Subject: CN=684b2326-4649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:50:4b:eb:11:f3:9f:8d:cf:2b:f7:37:ac:a6: b7:b6:f5:c4:d8:f5:6a:e0:a0:f0:7a:55:e3:26:53: a8:12:d7:eb:a6:a0:e7:98:5f:b7:b7:7e:8c:34:07: c1:23:ee:18:d7:87:27:14:e0:3b:a0:ed:ef:86:04: 18:3a:25:e8:8d:ad:c6:6d:66:73:2e:ec:2e:ef:cb: d3:c5:92:e1:fc:3c:66:ad:ff:40:6a:6b:ce:21:5e: 9d:0a:e1:d2:a3:2e:8a:64:84:03:7c:75:3b:0a:89: c3:d9:fe:79:bb:db:9a:01:82:1d:5d:3d:41:2c:20: fb:0c:76:3e:af:6f:e3:50:e3:62:ff:55:52:f3:1f: a2:79:e2:76:d4:d1:1b:58:6b:2e:01:26:a8:57:76: 2b:4c:78:d0:8a:fb:33:97:a5:7a:09:68:cf:e2:4a: c0:33:b4:26:bb:f0:62:00:1f:a5:b2:6b:41:91:89: c0:8e:fe:a7:f8:b5:ac:2d:83:01:dc:87:71:8e:d9: dc:8b:30:61:47:c5:16:d7:6c:9a:21:3a:a7:b9:0f: eb:65:73:21:2f:c1:b8:ba:e4:66:33:3b:cc:17:72: c2:5e:7f:4a:36:75:40:1a:b9:ad:3c:1f:e1:f1:e0: e8:23:78:77:d1:b4:d4:6e:d9:19:7c:2d:a5:19:18: c3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E0:C3:DD:13:DC:19:79:D8:CE:A8:92:E9:7E:09:35:E2:37:02:1A X509v3 Authority Key Identifier: keyid:5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:76:79:91:e8:b8:1a:a7:66:c3:5f:b0:43:c1:58:72:bc:20: 33:6d:ae:37:ed:a0:41:4c:38:c3:5d:ea:60:de:18:54:ed:d5: 25:92:fd:2b:02:c3:96:65:0f:b9:10:95:11:e3:1d:24:63:62: d1:97:2e:1f:37:10:52:9a:5b:e5:e7:2b:13:12:4e:6b:c4:8f: 68:86:d1:af:79:3f:ac:18:5c:c0:4d:cc:33:3e:d2:bb:2c:5c: 27:2b:4d:50:50:e7:2a:6f:85:60:49:ec:57:b5:8b:a3:3e:77: e2:26:21:5d:bc:67:9c:18:27:7e:bf:c5:a2:15:8b:18:ff:ee: 2f:7a:cf:cf:75:5d:e2:88:4c:26:4f:b7:8e:55:3c:d7:6c:66: 7e:e5:8c:56:1d:9b:1d:de:46:e9:1a:fa:a3:7f:da:86:e6:1d: 6e:ee:1d:2a:ac:1c:cb:de:cc:16:af:ad:5f:56:3e:91:b1:3c: d4:52:50:08:1b:0e:5e:45:85:03:8a:30:31:50:48:87:66:60: 9a:0e:f9:cb:2d:d3:13:4c:a6:e4:b2:3e:dd:87:08:d4:14:c6: 3f:66:7d:3b:6e:59:84:7d:b2:54:0a:13:85:d7:2f:1e:cb:64: 56:31:df:8a:38:6c:c6:c5:c1:48:a6:dd:83:35:42:d5:21:8b: 56:16:d5:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NDMxMTAvBgNVBAUTKDVDRkJBMjg5MTZFQUMwN0IyMzU5MDk0ODU1RDg5RTE2 QTA4MTRCQUMwHhcNMjUwNjEyMTg1NzQyWhcNMjUwNjE5MTg1NzQyWjAYMRYwFAYD VQQDEw02ODRiMjMyNi00NjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1BL6xHzn43PK/c3rKa3tvXE2PVq4KDwelXjJlOoEtfrpqDnmF+3t36MNAfB I+4Y14cnFOA7oO3vhgQYOiXoja3GbWZzLuwu78vTxZLh/Dxmrf9AamvOIV6dCuHS oy6KZIQDfHU7ConD2f55u9uaAYIdXT1BLCD7DHY+r2/jUONi/1VS8x+ieeJ21NEb WGsuASaoV3YrTHjQivszl6V6CWjP4krAM7Qmu/BiAB+lsmtBkYnAjv6n+LWsLYMB 3IdxjtncizBhR8UW12yaITqnuQ/rZXMhL8G4uuRmMzvMF3LCXn9KNnVAGrmtPB/h 8eDoI3h30bTUbtkZfC2lGRjDzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHngw90T 3Bl52M6okul+CTXiNwIaMB8GA1UdIwQYMBaAFFz7ookW6sB7I1kJSFXYnhaggUus MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg0My85NTdCQ0I0NDM5 NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdIc2pXUWxJVmRpZUZxQ0JT NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQdWlpUmJxd0hzaldRbElWZGllRnFDQlM2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg0My85NTdCQ0I0NDM5NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdI c2pXUWxJVmRpZUZxQ0JTNncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFdnmR6Lgap2bDX7BDwVhyvCAzba437aBBTDjDXepg3hhU7dUlkv0r AsOWZQ+5EJUR4x0kY2LRly4fNxBSmlvl5ysTEk5rxI9ohtGveT+sGFzATcwzPtK7 LFwnK01QUOcqb4VgSexXtYujPnfiJiFdvGecGCd+v8WiFYsY/+4ves/PdV3iiEwm T7eOVTzXbGZ+5YxWHZsd3kbpGvqjf9qG5h1u7h0qrBzL3swWr61fVj6RsTzUUlAI Gw5eRYUDijAxUEiHZmCaDvnLLdMTTKbksj7dhwjUFMY/Zn07blmEfbJUChOF1y8e y2RWMd+KOGzGxcFIpt2DNULVIYtWFtXJ -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:41 2025 by rpki-client