$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: f3MiL1vP6Ps4HF8928IqZieXGQrauJ77cs9BGfc+PG4= Subject key identifier: A0:90:28:78:C6:A0:F4:56:EF:AB:45:5C:E2:C7:09:7B:42:72:CE:07 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: F8 Signing time: Sun 01 Jun 2025 04:55:49 +0000 Manifest this update: Sun 01 Jun 2025 04:55:49 +0000 Manifest next update: Sun 08 Jun 2025 04:55:49 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: +0Sy8SCtZisBeyKGkm+2f2C1Fww8OjlTz9sG1x+U8EU=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Jun 1 04:55:49 2025 GMT Not After : Jun 8 04:55:49 2025 GMT Subject: CN=683bdd55-0114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:94:2b:3b:5c:4e:1d:d8:12:02:dd:96:b9:15: 6c:d4:c7:3d:36:7a:1a:1a:22:b7:ce:f5:8a:a3:39: 9b:e4:31:6e:04:3b:bf:66:87:2b:fc:bc:18:db:19: e1:31:4e:4e:a2:92:f9:06:7b:9f:6b:f5:ee:2d:b5: 1a:2d:7b:b9:76:e7:82:ae:fa:f5:7a:08:97:14:08: dc:1b:70:e0:b3:91:6a:c6:ec:c3:ad:05:43:f7:f8: 3f:08:86:6a:71:20:75:71:e6:7c:34:f0:c8:7b:da: ec:f0:9d:6d:9c:20:9a:b0:17:ed:29:aa:d6:de:e1: ee:59:29:f1:9c:5c:41:c0:af:d3:3e:df:43:53:58: aa:dd:cb:80:38:21:e2:9a:5b:7e:08:69:cc:07:67: 47:63:bf:49:1b:bb:a6:e0:ff:e7:a6:da:6d:5a:63: c0:f0:b7:e5:27:14:1d:81:5b:40:22:ed:f0:f7:84: 93:32:06:0e:5d:11:58:74:24:48:9d:14:4a:45:4d: 0f:04:44:ca:a0:72:70:95:f5:3f:cb:c0:78:0d:f6: ec:51:76:6f:38:2b:ba:a9:d5:47:7d:cf:9d:7f:b9: 24:33:35:19:5c:73:0a:d4:04:9b:97:44:26:49:64: 47:6e:c5:1c:62:d7:54:4b:2c:34:39:09:9a:2a:73: af:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:90:28:78:C6:A0:F4:56:EF:AB:45:5C:E2:C7:09:7B:42:72:CE:07 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:21:9b:ed:26:3d:ab:10:58:98:54:6c:01:a7:1b:33:0c:b7: 3f:31:94:86:17:7b:46:22:d1:d1:59:4f:53:c2:e8:39:8f:29: a8:76:3f:e9:ea:65:09:50:c8:d7:b4:09:19:40:99:cc:d8:b7: 12:00:ce:c3:a0:af:53:ab:bb:3f:2e:5a:fd:5e:40:1b:0c:76: f5:f1:d1:8a:ec:2d:fe:5d:01:bb:61:63:fd:a4:09:56:3b:16: b0:9e:8c:a0:50:c3:a1:38:53:6a:79:74:34:93:e7:90:5b:d4: 21:07:d8:78:5c:ff:e7:67:e9:e8:55:4e:55:20:97:1b:45:98: 5e:26:c3:1e:e5:98:3b:01:b1:0d:8f:1f:86:14:91:1c:c5:3d: fc:c7:b7:2b:68:f0:8d:fc:75:08:f1:45:0a:56:10:16:98:cf: 1c:02:8a:09:34:b8:79:88:c9:ed:89:d4:38:36:e6:18:9e:a2: eb:8a:8a:5a:8c:9e:d0:9d:88:c5:9c:bf:8c:a4:da:8f:7d:14: 1f:2e:74:89:a2:10:8e:a3:08:60:35:c3:45:c4:d2:c0:2c:4c: eb:5c:5c:76:af:9c:4f:80:dd:b2:03:79:e2:44:d3:48:1e:75: 81:22:64:47:4b:86:8b:40:bc:2e:c0:b9:91:a2:e7:46:1b:81: 8e:28:0d:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwNjAxMDQ1NTQ5WhcNMjUwNjA4MDQ1NTQ5WjAYMRYwFAYD VQQDEw02ODNiZGQ1NS0wMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZQrO1xOHdgSAt2WuRVs1Mc9NnoaGiK3zvWKozmb5DFuBDu/Zocr/LwY2xnh MU5OopL5Bnufa/XuLbUaLXu5dueCrvr1egiXFAjcG3Dgs5FqxuzDrQVD9/g/CIZq cSB1ceZ8NPDIe9rs8J1tnCCasBftKarW3uHuWSnxnFxBwK/TPt9DU1iq3cuAOCHi mlt+CGnMB2dHY79JG7um4P/nptptWmPA8LflJxQdgVtAIu3w94STMgYOXRFYdCRI nRRKRU0PBETKoHJwlfU/y8B4DfbsUXZvOCu6qdVHfc+df7kkMzUZXHMK1ASbl0Qm SWRHbsUcYtdUSyw0OQmaKnOvNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCQKHjG oPRW76tFXOLHCXtCcs4HMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuIZvtJj2rEFiYVGwBpxszDLc/MZSGF3tGItHRWU9Twug5jymodj/p 6mUJUMjXtAkZQJnM2LcSAM7DoK9Tq7s/Llr9XkAbDHb18dGK7C3+XQG7YWP9pAlW OxawnoygUMOhOFNqeXQ0k+eQW9QhB9h4XP/nZ+noVU5VIJcbRZheJsMe5Zg7AbEN jx+GFJEcxT38x7craPCN/HUI8UUKVhAWmM8cAooJNLh5iMntidQ4NuYYnqLriopa jJ7QnYjFnL+MpNqPfRQfLnSJohCOowhgNcNFxNLALEzrXFx2r5xPgN2yA3niRNNI HnWBImRHS4aLQLwuwLmRoudGG4GOKA03 -----END CERTIFICATE-----Generated at Mon Jun 2 21:53:55 2025 by rpki-client