$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: 5Mw7+ewgd90n+Z3E8E+BozfIP7N3HSv3J0aiNFLp9RQ= Subject key identifier: A2:4F:91:68:1C:39:A2:74:2B:5A:7D:B6:9D:78:6B:51:98:74:47:34 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 070F Signing time: Fri 30 May 2025 22:06:45 +0000 Manifest this update: Fri 30 May 2025 22:06:45 +0000 Manifest next update: Fri 06 Jun 2025 22:06:45 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: ds5JOQVrXoL7Bhoqrfn8oFTDORuJV66QMguhpbJYkJw=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: IwbM0qanfV+e3+145YunmnHjT+laZw+y8+B4ZLa5xus=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: May 30 22:06:45 2025 GMT Not After : Jun 6 22:06:45 2025 GMT Subject: CN=683a2bf5-57bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:04:e5:30:ec:68:26:cd:80:1a:29:31:8c:2f: 7b:71:ae:e4:ee:29:c3:41:53:4c:8d:e5:82:f7:7e: a0:68:d8:63:1e:23:8c:9e:53:87:72:d4:a4:bf:e1: 82:f0:16:f4:da:53:b3:47:28:b1:ee:25:cc:4a:64: ac:e9:76:46:50:e1:e8:74:c8:61:37:78:b2:f8:3e: 47:8f:71:14:6f:a1:d6:b1:c6:37:12:b8:5d:d7:04: 50:9b:7f:c2:c6:82:06:a0:c9:ef:7c:db:7d:0b:91: 9f:62:a4:08:94:33:14:a7:ae:37:c4:bc:cc:81:99: 00:5f:db:c1:80:bc:d8:c7:fa:34:66:46:10:fc:5a: 9e:c0:94:e4:e6:7f:15:2a:33:5f:c0:c5:5e:dd:f2: 7d:68:d8:82:d7:68:d1:01:6d:47:70:be:8f:05:ee: b5:7a:5d:ff:e0:51:c4:08:1d:3b:c7:10:38:85:d3: 1e:a1:94:c4:64:db:67:63:ec:fb:d5:25:95:98:fc: c0:23:4f:55:59:cf:38:f6:24:11:76:67:34:ac:68: 47:0f:96:0e:69:86:bd:5e:30:05:28:64:f0:92:4c: 36:bc:d7:06:70:15:92:72:f4:9e:66:f5:d8:9f:62: b6:8c:8b:45:bd:be:d7:24:67:a4:56:ed:dc:3a:7e: 18:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4F:91:68:1C:39:A2:74:2B:5A:7D:B6:9D:78:6B:51:98:74:47:34 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:12:fd:38:56:54:32:e0:7d:27:ff:eb:2f:71:f9:30:c5:57: 10:33:7d:4f:85:60:74:df:1c:d3:0c:a9:9c:87:ef:97:66:02: 18:74:cc:64:2d:1d:94:32:f5:45:ec:38:bc:3f:db:8c:5a:9b: ae:8d:8f:c0:a0:c2:16:61:75:31:27:e9:97:5a:c3:14:90:30: 5a:13:80:73:a8:15:cb:63:9f:cf:cc:07:cf:fc:30:81:b3:e8: 3a:de:b6:ba:f1:cb:cd:d1:41:c6:f9:fb:5e:08:a6:93:00:d4: 64:bb:f3:66:4c:77:0e:7d:21:57:91:3c:37:8e:20:e4:29:19: 9b:aa:ba:3b:55:bf:71:1e:3d:c2:8a:0c:63:9a:35:54:2b:66: 98:54:b7:91:f3:ce:81:32:40:32:bb:aa:60:44:1c:af:c1:e7: 6d:62:6e:8b:c1:30:92:ed:db:4f:68:af:0e:7f:d9:68:ff:5c: d9:52:68:96:c4:c2:4b:61:2f:20:7e:c3:1f:7d:b7:c9:55:cb: 42:71:3f:63:3c:cc:a2:d9:9b:96:a8:95:97:e8:d4:a0:fc:3a: 16:d0:2d:0d:9e:02:50:70:25:66:06:25:90:33:17:f7:7e:24: 42:fe:6f:81:5c:44:bd:1d:59:4b:eb:da:72:91:96:ef:70:02: 55:7f:d7:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwNTMwMjIwNjQ1WhcNMjUwNjA2MjIwNjQ1WjAYMRYwFAYD VQQDEw02ODNhMmJmNS01N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsATlMOxoJs2AGikxjC97ca7k7inDQVNMjeWC936gaNhjHiOMnlOHctSkv+GC 8Bb02lOzRyix7iXMSmSs6XZGUOHodMhhN3iy+D5Hj3EUb6HWscY3Erhd1wRQm3/C xoIGoMnvfNt9C5GfYqQIlDMUp643xLzMgZkAX9vBgLzYx/o0ZkYQ/FqewJTk5n8V KjNfwMVe3fJ9aNiC12jRAW1HcL6PBe61el3/4FHECB07xxA4hdMeoZTEZNtnY+z7 1SWVmPzAI09VWc849iQRdmc0rGhHD5YOaYa9XjAFKGTwkkw2vNcGcBWScvSeZvXY n2K2jItFvb7XJGekVu3cOn4YvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJPkWgc OaJ0K1p9tp14a1GYdEc0MB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvEv04VlQy4H0n/+svcfkwxVcQM31PhWB03xzTDKmch++XZgIYdMxk LR2UMvVF7Di8P9uMWpuujY/AoMIWYXUxJ+mXWsMUkDBaE4BzqBXLY5/PzAfP/DCB s+g63ra68cvN0UHG+fteCKaTANRku/NmTHcOfSFXkTw3jiDkKRmbqro7Vb9xHj3C igxjmjVUK2aYVLeR886BMkAyu6pgRByvwedtYm6LwTCS7dtPaK8Of9lo/1zZUmiW xMJLYS8gfsMffbfJVctCcT9jPMyi2ZuWqJWX6NSg/DoW0C0NngJQcCVmBiWQMxf3 fiRC/m+BXES9HVlL69pykZbvcAJVf9d4 -----END CERTIFICATE-----Generated at Sat May 31 17:45:08 2025 by rpki-client