$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft File: c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json) Hash identifier: jt0gogA0C0eHjNyXAxiwTKWysd7AvhzhLQr5+6W79Qk= Subject key identifier: 90:5F:4B:D7:CA:FD:34:38:AD:29:51:A8:AF:F3:5F:D8:06:4B:5B:8C Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E Certificate issuer: /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft Manifest number: A7 Signing time: Fri 13 Jun 2025 05:05:26 +0000 Manifest this update: Fri 13 Jun 2025 05:05:26 +0000 Manifest next update: Fri 20 Jun 2025 05:05:26 +0000 Files and hashes: 1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: ZsFa8dbKSZ0kJdcDX2y4C57UAb6ATSsv0J4vtZNLGPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=7345D33851958906884D871640A4BED2C846D14E Validity Not Before: Jun 13 05:05:26 2025 GMT Not After : Jun 20 05:05:26 2025 GMT Subject: CN=684bb196-c7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:07:a9:18:38:85:65:92:3a:75:ff:33:f0:a8: fd:06:c5:4c:99:8b:94:d6:a7:12:11:85:e3:05:65: 7d:cd:e4:02:a3:06:00:e8:db:db:26:6f:88:31:9d: ef:e0:9d:77:76:09:66:a8:0a:a3:7d:7b:42:75:a5: c8:bd:88:5a:9e:8b:7b:9e:48:36:98:92:d6:9e:ce: 93:ac:72:ed:ec:c1:a5:87:62:3c:a6:88:35:d0:ac: 86:ff:94:cc:f8:ca:a9:01:fa:f3:36:f0:a4:64:06: c0:35:65:96:ed:de:c5:ed:13:91:73:7e:e3:8c:76: 3f:c2:db:1d:04:3c:79:41:06:ee:45:2c:63:8a:75: 77:f2:7e:e3:18:cb:fd:bf:40:bd:b6:64:85:e8:23: 3a:c3:b9:20:fe:90:31:af:8c:a5:40:e4:55:45:7e: 42:8d:46:c8:78:b7:96:78:71:6a:46:fc:fb:4a:ea: 99:9b:c6:ab:f8:77:d3:a6:0b:0e:f8:e6:0f:55:56: a4:71:ae:4d:76:27:0f:f2:8e:a1:bc:c0:89:7e:be: df:b8:a8:12:33:f8:33:e3:f4:2b:1e:32:f5:f7:f6: 06:1d:90:05:b7:40:3b:e4:8f:05:44:8b:c9:5a:39: 00:46:f8:68:f4:2e:d0:f0:fc:57:e5:7f:bb:88:59: 9b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5F:4B:D7:CA:FD:34:38:AD:29:51:A8:AF:F3:5F:D8:06:4B:5B:8C X509v3 Authority Key Identifier: keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ec:e9:ed:d3:e3:55:66:36:00:67:f5:c2:91:4d:1e:fb:af: 9f:ba:4c:32:21:95:46:01:d7:23:3c:13:22:ff:4d:b5:b0:6c: 91:55:e3:d5:c9:29:1d:5b:51:19:4e:56:94:1d:b6:09:8b:4b: fb:03:11:68:47:ec:a7:28:dd:4c:41:16:1a:79:47:83:2a:00: 79:ac:91:7a:45:a2:34:52:11:a1:a4:22:49:4d:66:96:ce:4e: dd:2b:75:14:cc:cb:c2:2a:6b:5b:86:96:af:0b:fc:45:17:36: 6a:ac:95:5b:cc:40:1d:01:2d:0f:7a:be:40:3a:13:c0:e7:c9: f8:d8:09:0b:00:d0:35:1c:d7:57:29:40:ea:f9:3c:99:35:32: 53:ae:ca:ff:27:c7:93:64:6e:03:f0:ec:4d:6b:b0:39:c1:1b: 1a:e0:bc:0f:a3:7f:67:eb:9b:47:9c:14:20:98:da:43:4c:59: b1:8b:75:7d:f6:6b:0f:fd:70:3d:88:7b:42:9f:15:6e:99:9e: 69:06:e5:33:1c:dc:29:e6:67:bf:15:03:18:27:dc:20:f2:80: 11:87:35:1e:ae:1e:07:19:28:62:e6:39:23:fa:03:18:ec:78: 4f:7b:46:c7:c8:99:99:4a:c1:c7:0f:40:23:0d:5a:fe:6c:1e: 9a:68:35:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDczNDVEMzM4NTE5NTg5MDY4ODREODcxNjQwQTRCRUQy Qzg0NkQxNEUwHhcNMjUwNjEzMDUwNTI2WhcNMjUwNjIwMDUwNTI2WjAYMRYwFAYD VQQDEw02ODRiYjE5Ni1jN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQepGDiFZZI6df8z8Kj9BsVMmYuU1qcSEYXjBWV9zeQCowYA6NvbJm+IMZ3v 4J13dglmqAqjfXtCdaXIvYhanot7nkg2mJLWns6TrHLt7MGlh2I8pog10KyG/5TM +MqpAfrzNvCkZAbANWWW7d7F7RORc37jjHY/wtsdBDx5QQbuRSxjinV38n7jGMv9 v0C9tmSF6CM6w7kg/pAxr4ylQORVRX5CjUbIeLeWeHFqRvz7SuqZm8ar+HfTpgsO +OYPVVakca5NdicP8o6hvMCJfr7fuKgSM/gz4/QrHjL19/YGHZAFt0A75I8FRIvJ WjkARvho9C7Q8PxX5X+7iFmbFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBfS9fK /TQ4rSlRqK/zX9gGS1uMMB8GA1UdIwQYMBaAFHNF0zhRlYkGiE2HFkCkvtLIRtFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81OUM0QUQ0QTQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9jMFhUT0ZHVmlRYUlUWWNXUUtTLTBzaEcw VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwWFRPRkdWaVFhSVRZY1dRS1MtMHNoRzBVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81OUM0QUQ0QTQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9jMFhUT0ZHVmlR YUlUWWNXUUtTLTBzaEcwVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc7Ont0+NVZjYAZ/XCkU0e+6+fukwyIZVGAdcjPBMi/021sGyRVePV ySkdW1EZTlaUHbYJi0v7AxFoR+ynKN1MQRYaeUeDKgB5rJF6RaI0UhGhpCJJTWaW zk7dK3UUzMvCKmtbhpavC/xFFzZqrJVbzEAdAS0Per5AOhPA58n42AkLANA1HNdX KUDq+TyZNTJTrsr/J8eTZG4D8OxNa7A5wRsa4LwPo39n65tHnBQgmNpDTFmxi3V9 9msP/XA9iHtCnxVumZ5pBuUzHNwp5me/FQMYJ9wg8oARhzUerh4HGShi5jkj+gMY 7HhPe0bHyJmZSsHHD0AjDVr+bB6aaDVK -----END CERTIFICATE-----Generated at Sat Jun 14 08:44:50 2025 by rpki-client