$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: 9TSUATlaaYHcyEQh3NvT/fni4gu12/z4wUL2NVR1UZU= Subject key identifier: 18:9D:A9:02:E2:E4:C8:0E:07:6E:2F:8B:20:7E:01:D6:71:05:CA:68 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 01E4 Signing time: Tue 03 Jun 2025 02:32:22 +0000 Manifest this update: Tue 03 Jun 2025 02:32:21 +0000 Manifest next update: Tue 10 Jun 2025 02:32:21 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: SWLprKPgMsswk3Qj/MK9Juyecw+mju66XnECipwOKzM=) 2: A3A7ADEAB19711EF8A23BC39C4F9AE02.roa (hash: Xxhg1IOUnWIosjBDDjlaAvNnXCEgOL/Rukp1auAELC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Jun 3 02:32:21 2025 GMT Not After : Jun 10 02:32:21 2025 GMT Subject: CN=683e5eb5-2ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:75:64:91:2e:38:09:dc:2a:fb:3a:b4:e9:87: 6e:6a:b3:bd:08:41:8a:23:6a:fa:0c:8a:18:82:1c: 1d:22:5e:d7:f6:52:36:67:42:fe:2e:85:1c:db:38: 61:c0:9f:de:dc:cc:e2:01:c0:99:09:fa:91:4d:6b: 8a:7f:9b:ec:16:d8:f1:8e:00:ca:a8:06:10:c3:72: 9d:4e:b1:8a:89:1a:15:5f:34:a5:83:fc:69:db:c5: 05:fc:82:f3:56:d2:fa:a5:7d:54:d6:72:2e:6a:61: c0:32:19:64:e8:5d:57:41:bc:06:e1:64:ad:c7:79: eb:78:42:3a:02:cb:60:a4:59:21:ab:4a:ce:ff:3f: 14:b5:bd:0a:6b:af:41:34:91:fe:b5:2b:02:7e:03: d3:6f:da:1d:1d:9b:25:66:93:72:62:7d:68:87:ca: ea:58:89:43:29:5c:20:17:7e:1a:d8:2b:ca:a8:dc: 9b:db:e1:83:d7:73:f3:8e:5b:4c:1e:5b:2f:0e:fb: b8:47:69:db:08:4e:02:e2:7b:19:65:1c:d1:cc:8a: 52:f7:2e:2e:92:eb:a5:d0:48:9c:fd:b6:d1:c4:b6: f7:92:81:aa:28:4a:59:52:1b:c2:49:e2:92:4e:f4: aa:eb:10:c2:3c:6f:7e:3b:35:0c:6b:e9:01:1c:1f: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9D:A9:02:E2:E4:C8:0E:07:6E:2F:8B:20:7E:01:D6:71:05:CA:68 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d2:1c:15:17:01:5a:ae:86:ce:38:b7:94:d9:d1:c8:95:c9: 3f:1a:8e:75:c5:6b:49:f2:00:b6:27:a8:a0:0f:47:aa:62:64: 59:1c:60:9c:21:fc:03:93:d2:6b:49:89:7d:35:a8:b9:40:a2: 1f:5e:99:86:d5:5c:a5:6a:15:ee:13:34:9d:41:0a:f8:aa:62: 97:f1:17:0e:4b:f7:86:a7:83:7f:f7:d2:67:94:15:7c:f8:5c: 3a:99:e4:92:3d:c3:a8:91:cd:5c:03:99:57:40:6c:cc:87:84: e9:5d:39:47:02:7c:13:8d:e6:ae:ff:ff:ed:24:88:ce:8f:96: 75:1b:0d:cb:7d:a6:4d:f7:ca:2d:ae:8a:92:66:37:e5:a1:fe: be:c3:d2:85:4c:5f:31:71:6b:3a:84:d3:56:09:18:59:8d:1e: df:85:d6:78:7a:6c:a8:57:57:65:0d:7a:28:43:27:5f:1c:27: a4:8a:1d:03:e4:06:e6:9a:87:c6:05:67:42:17:ac:c4:b5:8b: 28:0d:95:3a:ec:a9:56:d6:63:59:02:8b:a2:c1:d1:91:7f:1a: 28:6c:22:29:48:01:8f:ce:34:b5:77:0a:aa:df:d0:01:fa:e1: 6e:39:ef:35:c8:af:02:73:f8:3a:d1:bb:b9:fd:3f:1a:b2:57: 84:77:67:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUwNjAzMDIzMjIxWhcNMjUwNjEwMDIzMjIxWjAYMRYwFAYD VQQDEw02ODNlNWViNS0yZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXVkkS44Cdwq+zq06YduarO9CEGKI2r6DIoYghwdIl7X9lI2Z0L+LoUc2zhh wJ/e3MziAcCZCfqRTWuKf5vsFtjxjgDKqAYQw3KdTrGKiRoVXzSlg/xp28UF/ILz VtL6pX1U1nIuamHAMhlk6F1XQbwG4WStx3nreEI6AstgpFkhq0rO/z8Utb0Ka69B NJH+tSsCfgPTb9odHZslZpNyYn1oh8rqWIlDKVwgF34a2CvKqNyb2+GD13PzjltM HlsvDvu4R2nbCE4C4nsZZRzRzIpS9y4ukuul0Eic/bbRxLb3koGqKEpZUhvCSeKS TvSq6xDCPG9+OzUMa+kBHB/WLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBidqQLi 5MgOB24viyB+AdZxBcpoMB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH0hwVFwFarobOOLeU2dHIlck/Go51xWtJ8gC2J6igD0eqYmRZHGCc IfwDk9JrSYl9Nai5QKIfXpmG1VylahXuEzSdQQr4qmKX8RcOS/eGp4N/99JnlBV8 +Fw6meSSPcOokc1cA5lXQGzMh4TpXTlHAnwTjeau///tJIjOj5Z1Gw3LfaZN98ot roqSZjflof6+w9KFTF8xcWs6hNNWCRhZjR7fhdZ4emyoV1dlDXooQydfHCekih0D 5AbmmofGBWdCF6zEtYsoDZU67KlW1mNZAouiwdGRfxoobCIpSAGPzjS1dwqq39AB +uFuOe81yK8Cc/g60bu5/T8asleEd2fs -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:08 2025 by rpki-client