$ rpki-client -vvf rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft File: XaSteg0ZJFUV5aLYSgxnRwCkP80.mft (raw, json) Hash identifier: O2/oKtPmirRpc4RrbE7RzxvtJ6ycm+oARtT1SF+pf74= Subject key identifier: 04:AE:AC:40:99:77:79:E2:92:57:5B:12:DD:93:FC:5A:28:80:1F:1C Authority key identifier: 5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD Certificate issuer: /CN=A9192BCF/serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft Manifest number: 0159 Signing time: Fri 13 Jun 2025 03:03:41 +0000 Manifest this update: Fri 13 Jun 2025 03:03:40 +0000 Manifest next update: Fri 20 Jun 2025 03:03:40 +0000 Files and hashes: 1: XaSteg0ZJFUV5aLYSgxnRwCkP80.crl (hash: XHUzQr1f0ujdP7WLc4KxG/8ULeVLGQZNqXot4ZWD17s=) 2: 9062BB863C3F11EE8DA7781AC4F9AE02.roa (hash: 40lvaLr1gKHAad8xOy7yfS2hh56AhlCYkcilzIpf0Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192BCF, serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Validity Not Before: Jun 13 03:03:40 2025 GMT Not After : Jun 20 03:03:40 2025 GMT Subject: CN=684b950c-d210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b4:89:06:48:93:a8:73:55:23:3a:13:5f:13: 7c:3c:7a:79:04:52:82:e5:5a:52:78:52:1c:fd:bc: a2:e9:51:64:ba:6d:38:cd:11:df:38:47:03:3c:f0: a7:8f:e6:91:0d:cf:84:ea:99:32:82:5f:ad:59:bf: 2c:90:3d:1b:a0:4c:50:80:89:1f:77:9a:00:00:b9: 9e:8a:00:ed:b9:16:ce:43:07:13:5b:5c:22:1b:8b: f0:af:39:c1:ef:5c:8b:be:a2:0a:cd:7c:42:6c:b9: ad:b1:31:e4:f1:dd:ed:10:09:dd:bf:14:ce:91:c8: e8:a8:6a:cb:ed:13:e2:7b:69:04:2f:d3:2e:b1:95: 67:f7:59:c4:ec:ca:24:30:4f:7f:50:dd:e8:e0:78: ee:e4:5c:48:8b:68:f7:ed:e6:ad:16:20:47:fd:cb: af:89:c5:47:01:f9:4e:3f:cd:3d:fc:c8:e5:4c:70: 8e:69:26:4a:0d:3e:56:fd:a2:58:f6:54:91:5f:a7: 2d:9d:f7:2a:2d:8f:4c:15:34:a9:43:c4:3d:f4:d2: 9d:b8:41:04:88:65:1c:07:59:3c:59:57:1e:b0:30: f8:19:9d:f8:a9:d5:cb:1d:b6:04:b5:b7:11:a6:fc: 44:92:17:62:3b:54:75:d2:4e:fa:e4:2e:0f:93:84: 3c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AE:AC:40:99:77:79:E2:92:57:5B:12:DD:93:FC:5A:28:80:1F:1C X509v3 Authority Key Identifier: keyid:5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:cb:f8:4c:ce:ee:d8:7a:cd:48:83:72:e4:6f:a9:4a:51:3d: c0:be:98:29:bb:39:45:09:24:de:e3:58:5b:c8:c4:19:fc:f0: db:23:e2:c6:07:b8:24:39:fa:44:04:75:79:22:22:c7:37:5e: fa:d6:5c:cd:94:6b:ca:f9:f3:04:ec:4e:07:d4:0b:08:de:0b: e1:88:14:2f:47:a4:81:8c:55:db:12:12:53:d3:52:20:29:d7: 8a:44:e9:46:47:2b:ef:23:e6:88:f6:e2:4f:e4:83:fe:6e:70: b8:42:57:26:0d:ea:29:99:00:e9:25:c4:25:ce:f5:63:2c:22: 81:7b:10:41:33:b2:f8:5c:51:15:35:aa:c6:87:65:4e:9a:e1: 2d:bf:e0:12:1c:7c:3b:fe:38:f5:95:42:a6:d3:85:21:84:c6: cf:c7:6e:63:32:f0:c8:b5:9d:02:d5:76:c3:d9:30:eb:cb:c8: fc:10:4d:fd:c6:91:e1:ca:7f:44:a7:0b:c1:c8:9c:35:81:ab: ac:79:9f:20:96:5f:09:e1:d8:8d:6b:38:0c:5f:71:ac:92:a8: 50:b1:0e:a9:4b:8d:ff:f2:d0:04:0b:33:a0:c2:d8:dd:0c:f0: 1e:db:25:a7:95:7c:ec:d6:dd:35:65:bb:ba:eb:0b:10:b0:96: 32:57:b7:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCQ0YxMTAvBgNVBAUTKDVEQTRBRDdBMEQxOTI0NTUxNUU1QTJEODRBMEM2NzQ3 MDBBNDNGQ0QwHhcNMjUwNjEzMDMwMzQwWhcNMjUwNjIwMDMwMzQwWjAYMRYwFAYD VQQDEw02ODRiOTUwYy1kMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7SJBkiTqHNVIzoTXxN8PHp5BFKC5VpSeFIc/byi6VFkum04zRHfOEcDPPCn j+aRDc+E6pkygl+tWb8skD0boExQgIkfd5oAALmeigDtuRbOQwcTW1wiG4vwrznB 71yLvqIKzXxCbLmtsTHk8d3tEAndvxTOkcjoqGrL7RPie2kEL9MusZVn91nE7Mok ME9/UN3o4Hju5FxIi2j37eatFiBH/cuvicVHAflOP809/MjlTHCOaSZKDT5W/aJY 9lSRX6ctnfcqLY9MFTSpQ8Q99NKduEEEiGUcB1k8WVcesDD4GZ34qdXLHbYEtbcR pvxEkhdiO1R10k765C4Pk4Q8VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASurECZ d3nikldbEt2T/FoogB8cMB8GA1UdIwQYMBaAFF2krXoNGSRVFeWi2EoMZ0cApD/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkJDRi8zMDUyQ0NBNjNC NEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpGVVY1YUxZU2d4blJ3Q2tQ ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hhU3RlZzBaSkZVVjVhTFlTZ3huUndDa1A4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkJDRi8zMDUyQ0NBNjNCNEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpG VVY1YUxZU2d4blJ3Q2tQODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJy/hMzu7Yes1Ig3Lkb6lKUT3AvpgpuzlFCSTe41hbyMQZ/PDbI+LG B7gkOfpEBHV5IiLHN1761lzNlGvK+fME7E4H1AsI3gvhiBQvR6SBjFXbEhJT01Ig KdeKROlGRyvvI+aI9uJP5IP+bnC4QlcmDeopmQDpJcQlzvVjLCKBexBBM7L4XFEV NarGh2VOmuEtv+ASHHw7/jj1lUKm04UhhMbPx25jMvDItZ0C1XbD2TDry8j8EE39 xpHhyn9EpwvByJw1gauseZ8gll8J4diNazgMX3GskqhQsQ6pS43/8tAECzOgwtjd DPAe2yWnlXzs1t01Zbu66wsQsJYyV7f4 -----END CERTIFICATE-----Generated at Sat Jun 14 18:02:35 2025 by rpki-client