$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft File: xsPe6PYn19lovt8i_GEJRiUwF4M.mft (raw, json) Hash identifier: AHQmaykf83RgJLCHXh1Pb8nq6jT6flqXW6XTJ/uyOxQ= Subject key identifier: 4C:46:13:38:B6:4F:D6:AD:EA:C0:C5:44:3C:AB:F6:E4:D0:DD:9E:3E Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 349C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft Manifest number: 349C Signing time: Fri 18 Jul 2025 15:15:10 +0000 Manifest this update: Fri 18 Jul 2025 15:15:10 +0000 Manifest next update: Fri 25 Jul 2025 15:15:10 +0000 Files and hashes: 1: xsPe6PYn19lovt8i_GEJRiUwF4M.crl (hash: zpEqBowW9/BBw13GhUJSE04MSa6R8mjHPqtECT2vGL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13468 (0x349c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258, serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Validity Not Before: Jul 18 15:15:10 2025 GMT Not After : Jul 25 15:15:10 2025 GMT Subject: CN=687a64fe-e4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1b:69:f3:37:52:d5:f4:31:10:2e:ba:2b:0f: 37:90:91:c5:6f:93:64:c9:81:12:78:d6:db:a4:1e: 61:b6:c5:a9:7c:a8:75:3c:25:50:04:f0:02:28:f0: 05:8f:ab:b8:1c:93:16:98:02:c2:c8:37:5b:95:f9: 87:24:4b:e8:94:45:40:eb:35:63:55:e0:21:c9:ec: d9:e0:fa:52:b2:73:95:09:80:85:e3:b4:27:86:4f: 90:9f:d5:e2:64:b4:09:9e:ab:d0:68:18:5b:c7:93: 7e:81:04:6e:03:72:76:3d:be:0f:f0:8e:47:34:50: 23:e0:42:d5:7d:b5:ce:27:c9:bb:d5:82:65:36:b9: 01:71:8b:fc:18:68:c4:06:0a:de:73:5c:d1:74:b7: 0b:94:4e:1a:1f:06:f9:ba:f3:90:6b:a5:19:12:64: 82:97:af:3c:4e:74:7d:20:4b:31:f8:80:8a:7f:f3: 74:4e:77:e1:e2:0e:b3:00:ec:23:07:aa:4c:ab:de: 47:63:38:51:76:0e:5e:58:5b:dc:48:6b:02:4e:22: a0:0d:6a:60:aa:95:30:20:0f:72:48:50:26:0b:49: 93:7d:7d:f6:d6:31:05:37:77:af:cb:63:fd:b7:f7: fd:6c:cf:8b:99:c5:40:5b:38:37:fa:65:39:3f:5a: 42:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:46:13:38:B6:4F:D6:AD:EA:C0:C5:44:3C:AB:F6:E4:D0:DD:9E:3E X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:43:7f:55:b7:d3:1e:fa:d7:f9:ad:99:81:46:3d:13:3c:ae: 0f:33:54:65:78:44:cf:d2:a7:4c:92:3f:e7:31:55:d4:5d:d5: 73:23:ef:76:fe:b8:f0:45:30:93:a5:c7:b5:75:07:51:67:27: 4f:45:9f:7c:35:30:82:80:68:08:b8:46:ea:7e:56:a7:b6:02: e7:c6:01:14:53:db:5f:3d:a8:94:ab:dc:32:d8:14:ac:b7:75: a8:ec:2f:2d:83:46:83:04:31:9a:2b:0d:75:8f:3b:1e:02:c6: 0a:1e:68:80:e5:52:43:94:06:cd:4d:1b:ae:bc:f9:ba:da:3d: 27:28:ba:3d:29:6a:8f:ca:33:8f:f1:e1:fe:c0:0b:f6:36:85: 95:22:ce:9f:69:8b:01:9d:fb:2b:7d:cf:12:95:a8:e8:a0:55: cd:1c:e8:bc:f9:2d:8c:33:8c:a7:f8:77:33:69:be:b7:49:3b: 42:e7:80:0c:1b:e2:57:f8:a1:b4:91:ba:ca:0c:47:7f:2b:e6: 74:bc:95:50:30:6b:79:97:37:e7:1f:61:68:eb:18:cf:49:f2: 6c:8e:c5:e8:e0:93:58:fd:8d:78:57:b6:85:96:b1:a9:97:52: e6:66:0c:e2:06:54:c5:9a:ec:4f:56:ec:73:fc:34:3e:01:ce: b9:69:4e:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjUwNzE4MTUxNTEwWhcNMjUwNzI1MTUxNTEwWjAYMRYwFAYD VQQDEw02ODdhNjRmZS1lNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhtp8zdS1fQxEC66Kw83kJHFb5NkyYESeNbbpB5htsWpfKh1PCVQBPACKPAF j6u4HJMWmALCyDdblfmHJEvolEVA6zVjVeAhyezZ4PpSsnOVCYCF47Qnhk+Qn9Xi ZLQJnqvQaBhbx5N+gQRuA3J2Pb4P8I5HNFAj4ELVfbXOJ8m71YJlNrkBcYv8GGjE Bgrec1zRdLcLlE4aHwb5uvOQa6UZEmSCl688TnR9IEsx+ICKf/N0Tnfh4g6zAOwj B6pMq95HYzhRdg5eWFvcSGsCTiKgDWpgqpUwIA9ySFAmC0mTfX321jEFN3evy2P9 t/f9bM+LmcVAWzg3+mU5P1pCXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExGEzi2 T9at6sDFRDyr9uTQ3Z4+MB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI1OC9CQjJERENFMjFEQTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5 bG92dDhpX0dFSlJpVXdGNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHQ39Vt9Me+tf5rZmBRj0TPK4PM1RleETP0qdMkj/nMVXUXdVzI+92 /rjwRTCTpce1dQdRZydPRZ98NTCCgGgIuEbqflantgLnxgEUU9tfPaiUq9wy2BSs t3Wo7C8tg0aDBDGaKw11jzseAsYKHmiA5VJDlAbNTRuuvPm62j0nKLo9KWqPyjOP 8eH+wAv2NoWVIs6faYsBnfsrfc8SlajooFXNHOi8+S2MM4yn+Hczab63STtC54AM G+JX+KG0kbrKDEd/K+Z0vJVQMGt5lzfnH2Fo6xjPSfJsjsXo4JNY/Y14V7aFlrGp l1LmZgziBlTFmuxPVuxz/DQ+Ac65aU7z -----END CERTIFICATE-----Generated at Sun Jul 20 08:04:17 2025 by rpki-client