$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: bnnq6bDRjTbA8aWuEyFWkAIQQ/MCr6X036zdNn6z7Yw= Subject key identifier: 05:C8:9D:CC:44:2B:81:E4:C4:41:F3:62:14:42:98:EC:A7:66:AC:94 Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E17 Signing time: Sat 14 Jun 2025 16:04:01 +0000 Manifest this update: Sat 14 Jun 2025 16:04:01 +0000 Manifest next update: Sat 21 Jun 2025 16:04:01 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: Cb/zrxZvWJv0Uu7DpO6Q/+1QsSSgV8e2z0GdcRb7Uo4=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7733 (0x1e35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Jun 14 16:04:01 2025 GMT Not After : Jun 21 16:04:01 2025 GMT Subject: CN=684d9d71-9827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4b:fa:d0:51:30:61:7f:aa:43:b6:8c:4a:c9: e0:e0:38:8f:81:04:4a:e5:f7:d8:09:8c:66:45:49: 6e:49:12:91:a5:37:67:d8:94:ff:0a:8e:19:13:69: dc:b2:99:b7:e9:b9:fa:99:f1:f7:c4:81:bb:50:85: 67:6b:f0:8e:d0:d6:5a:05:46:13:a1:3b:f5:66:ed: 50:ce:e6:cb:90:dc:cd:b3:2d:14:b1:de:cc:95:0f: 41:2c:57:1a:c0:46:8d:67:5e:ef:17:d6:af:ee:db: aa:22:fa:68:d0:4f:3f:02:1a:9c:ea:a3:da:ec:a0: 3d:29:a6:d6:5e:70:21:6c:9e:bb:d0:0c:65:57:77: a7:4e:09:d3:b9:d0:5e:26:d9:f7:3f:ef:95:c5:8a: 99:52:94:61:93:7d:1f:7a:d5:fb:ac:be:41:c4:69: 26:fd:c5:4d:a0:33:bb:a1:17:38:fc:24:0c:51:3e: b7:06:2e:4a:4c:b2:68:a8:03:a8:20:d6:6e:05:82: 92:78:cf:f2:1b:22:c0:21:70:ef:69:b7:72:b0:1f: 6f:94:c9:54:d2:7c:d1:be:56:f1:1d:f0:bf:3b:41: b5:6c:7c:41:61:66:ee:bb:07:68:fd:51:5a:c0:25: df:d3:64:91:2d:87:ab:0c:69:9e:ed:f3:aa:e6:fa: fc:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C8:9D:CC:44:2B:81:E4:C4:41:F3:62:14:42:98:EC:A7:66:AC:94 X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:76:71:7f:34:b1:b8:a9:87:82:43:7e:6a:ad:37:28:d9:b3: 4b:39:0b:c9:43:b7:3e:4f:37:ae:5d:29:e0:ea:66:5b:49:4a: 4e:30:fc:ca:76:eb:b5:11:8d:c4:22:2d:35:47:e6:78:78:c7: fe:56:a1:e5:22:3b:e3:7a:8e:24:c3:e7:64:d7:2e:72:a0:8d: 44:0a:0a:77:73:12:c2:1d:8d:0f:2c:3c:fd:99:54:12:a2:47: 47:72:b1:98:36:0a:39:1c:e2:f6:9b:b8:59:5b:2d:8d:c2:aa: cd:6b:b8:ec:20:0c:48:7f:45:dd:0c:be:11:8a:1c:ba:e3:eb: 1b:73:ea:d7:c5:e8:68:d0:ec:cb:2d:ca:57:fb:92:5f:64:3b: e5:ef:66:d0:2c:ec:5d:a5:ba:77:93:0e:a6:10:58:d0:f2:aa: 2b:70:54:dd:e8:a5:11:fd:f3:95:28:a4:95:6a:2a:7e:f4:26: 71:63:70:fc:c7:17:a3:cb:88:a5:46:55:5d:d8:6d:b1:cd:ef: 66:84:78:13:6d:87:15:48:2a:68:c9:7b:aa:81:4b:31:14:ce: 64:d9:79:20:13:a7:32:25:62:18:12:1b:0d:ca:ff:94:ff:6a: 27:e1:b3:b7:ae:c0:ee:49:86:04:65:37:a5:d4:ea:78:6f:8f: 0e:a8:2a:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwNjE0MTYwNDAxWhcNMjUwNjIxMTYwNDAxWjAYMRYwFAYD VQQDEw02ODRkOWQ3MS05ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8kv60FEwYX+qQ7aMSsng4DiPgQRK5ffYCYxmRUluSRKRpTdn2JT/Co4ZE2nc spm36bn6mfH3xIG7UIVna/CO0NZaBUYToTv1Zu1QzubLkNzNsy0Usd7MlQ9BLFca wEaNZ17vF9av7tuqIvpo0E8/Ahqc6qPa7KA9KabWXnAhbJ670AxlV3enTgnTudBe Jtn3P++VxYqZUpRhk30fetX7rL5BxGkm/cVNoDO7oRc4/CQMUT63Bi5KTLJoqAOo INZuBYKSeM/yGyLAIXDvabdysB9vlMlU0nzRvlbxHfC/O0G1bHxBYWbuuwdo/VFa wCXf02SRLYerDGme7fOq5vr8HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXIncxE K4HkxEHzYhRCmOynZqyUMB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0dnF/NLG4qYeCQ35qrTco2bNLOQvJQ7c+TzeuXSng6mZbSUpOMPzK duu1EY3EIi01R+Z4eMf+VqHlIjvjeo4kw+dk1y5yoI1ECgp3cxLCHY0PLDz9mVQS okdHcrGYNgo5HOL2m7hZWy2NwqrNa7jsIAxIf0XdDL4Rihy64+sbc+rXxeho0OzL LcpX+5JfZDvl72bQLOxdpbp3kw6mEFjQ8qorcFTd6KUR/fOVKKSVaip+9CZxY3D8 xxejy4ilRlVd2G2xze9mhHgTbYcVSCpoyXuqgUsxFM5k2XkgE6cyJWIYEhsNyv+U /2on4bO3rsDuSYYEZTel1Op4b48OqCp8 -----END CERTIFICATE-----Generated at Sun Jun 15 10:06:02 2025 by rpki-client