$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft File: c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json) Hash identifier: upMlczPkf3XTdyqtW6fB8adOyzwqniTevuxA6EBhWzI= Subject key identifier: 75:DF:98:AF:0A:32:A2:19:FC:59:C0:4F:FF:F6:15:A6:BA:B2:3A:49 Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E Certificate issuer: /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft Manifest number: A6 Signing time: Wed 11 Jun 2025 05:33:44 +0000 Manifest this update: Wed 11 Jun 2025 05:33:43 +0000 Manifest next update: Wed 18 Jun 2025 05:33:43 +0000 Files and hashes: 1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: y07zwLe8bPC5+J8Kwj9KBxz7moF/njjVlSW7+F/7yvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 05:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=7345D33851958906884D871640A4BED2C846D14E Validity Not Before: Jun 11 05:33:43 2025 GMT Not After : Jun 18 05:33:43 2025 GMT Subject: CN=68491538-c8f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c3:52:99:d9:d9:e7:76:be:c3:13:ab:45:19: ab:53:3b:c2:80:f7:75:9d:70:3c:9b:a0:4c:f5:a0: 1a:7c:59:57:1b:4f:6c:c2:12:21:d0:4b:8e:96:7b: 75:ca:a6:64:75:1c:f7:65:e5:b8:80:e2:38:a1:f7: 6b:8c:06:3b:34:e0:58:84:b1:c4:d8:42:af:ee:79: 1a:f1:03:4f:53:c6:87:44:26:91:b2:43:4f:7c:11: bf:cb:52:b3:93:11:48:5d:c2:2b:ac:da:db:9f:80: 3d:44:a3:40:85:68:f7:cd:49:74:17:45:05:aa:f6: 8e:81:eb:a6:66:49:f7:a8:bc:85:36:ca:03:b4:7a: 87:e7:00:47:0c:18:d5:e3:f3:c1:4a:18:4a:59:c9: 73:6a:ac:f8:d8:c9:a7:97:9b:06:c5:49:9a:e6:f5: e0:64:63:6f:02:82:76:3d:d1:7f:4e:82:ff:dd:e1: c3:46:41:b5:4c:0b:ae:1e:9d:c9:9c:43:21:6c:66: 6a:b3:cd:10:c3:b3:25:52:ef:9f:b3:c9:a3:bb:30: cf:ce:6b:e1:fd:7a:3e:95:2f:7c:78:28:9d:24:fa: 47:cb:ed:06:52:f8:54:00:52:15:63:2a:cb:94:89: 8b:28:87:aa:de:e3:0b:2a:ff:8f:50:0c:2d:17:b3: 08:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DF:98:AF:0A:32:A2:19:FC:59:C0:4F:FF:F6:15:A6:BA:B2:3A:49 X509v3 Authority Key Identifier: keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:7d:59:dd:d1:25:61:1e:ab:8f:cd:45:c8:a8:f3:cd:16:b9: 1c:46:a9:5e:e2:13:df:9d:b7:54:86:90:03:c8:bd:2c:af:4a: 4f:96:7c:1f:47:bc:b5:da:f4:6c:ce:54:1b:1f:a2:a0:bc:00: bf:9b:48:25:3c:40:0a:0c:dd:01:d3:04:d6:ab:76:45:72:22: a9:36:35:07:97:bf:ec:d0:72:20:f9:74:eb:45:ad:e7:6a:e7: 1c:e7:e7:7c:00:94:12:04:47:25:3e:9e:a6:46:3f:55:0a:b0: 00:47:d1:d0:1e:58:99:66:c8:64:e8:f2:27:7c:9c:bc:4f:ba: 85:72:5c:7e:cc:dd:e3:fa:6a:2b:1e:69:9f:87:9e:0a:94:4c: c3:12:c2:eb:8b:6a:fa:85:6f:7a:ae:43:3c:c9:24:9c:12:f9: 4c:22:82:e6:75:ac:94:7b:11:ad:c2:db:4c:ca:d6:98:36:fb: 18:d0:fa:5e:e9:3b:dc:db:b7:75:da:e1:23:0c:2d:01:cb:97: ec:62:d7:27:65:ea:16:0f:a2:9f:98:38:95:e9:d3:5f:61:6d: 2e:a2:b2:bd:46:9c:d1:2b:41:77:78:55:09:b5:b2:29:3f:cf: 96:ff:c6:53:f9:05:36:b9:74:52:fe:5e:05:e1:6a:0b:9f:1e: 1f:a8:1f:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDczNDVEMzM4NTE5NTg5MDY4ODREODcxNjQwQTRCRUQy Qzg0NkQxNEUwHhcNMjUwNjExMDUzMzQzWhcNMjUwNjE4MDUzMzQzWjAYMRYwFAYD VQQDEw02ODQ5MTUzOC1jOGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscNSmdnZ53a+wxOrRRmrUzvCgPd1nXA8m6BM9aAafFlXG09swhIh0EuOlnt1 yqZkdRz3ZeW4gOI4ofdrjAY7NOBYhLHE2EKv7nka8QNPU8aHRCaRskNPfBG/y1Kz kxFIXcIrrNrbn4A9RKNAhWj3zUl0F0UFqvaOgeumZkn3qLyFNsoDtHqH5wBHDBjV 4/PBShhKWclzaqz42Mmnl5sGxUma5vXgZGNvAoJ2PdF/ToL/3eHDRkG1TAuuHp3J nEMhbGZqs80Qw7MlUu+fs8mjuzDPzmvh/Xo+lS98eCidJPpHy+0GUvhUAFIVYyrL lImLKIeq3uMLKv+PUAwtF7MIuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXfmK8K MqIZ/FnAT//2Faa6sjpJMB8GA1UdIwQYMBaAFHNF0zhRlYkGiE2HFkCkvtLIRtFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81OUM0QUQ0QTQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9jMFhUT0ZHVmlRYUlUWWNXUUtTLTBzaEcw VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwWFRPRkdWaVFhSVRZY1dRS1MtMHNoRzBVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81OUM0QUQ0QTQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9jMFhUT0ZHVmlR YUlUWWNXUUtTLTBzaEcwVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMfVnd0SVhHquPzUXIqPPNFrkcRqle4hPfnbdUhpADyL0sr0pPlnwf R7y12vRszlQbH6KgvAC/m0glPEAKDN0B0wTWq3ZFciKpNjUHl7/s0HIg+XTrRa3n aucc5+d8AJQSBEclPp6mRj9VCrAAR9HQHliZZshk6PInfJy8T7qFclx+zN3j+mor Hmmfh54KlEzDEsLri2r6hW96rkM8ySScEvlMIoLmdayUexGtwttMytaYNvsY0Ppe 6Tvc27d12uEjDC0By5fsYtcnZeoWD6KfmDiV6dNfYW0uorK9RpzRK0F3eFUJtbIp P8+W/8ZT+QU2uXRS/l4F4WoLnx4fqB9U -----END CERTIFICATE-----Generated at Wed Jun 11 21:06:53 2025 by rpki-client