$ rpki-client -vvf rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft File: xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft (raw, json) Hash identifier: etPDBasU/JS+woz2HixfMX/Vf+jw4+3/0Fs0uM6m0Qs= Subject key identifier: 96:77:85:F1:91:DE:0B:BF:33:D2:95:D7:69:E5:24:E3:CB:A6:87:8F Authority key identifier: C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B Certificate issuer: /CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft Manifest number: 0187 Signing time: Sat 07 Jun 2025 03:08:50 +0000 Manifest this update: Sat 07 Jun 2025 03:08:49 +0000 Manifest next update: Sat 14 Jun 2025 03:08:49 +0000 Files and hashes: 1: xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl (hash: 7lHYK7w2VudYQZ5q+gExw9vsKH98CIKrn6a6ApWzVgA=) 2: 59AFB718ECB911ED99732649C4F9AE02.roa (hash: +N1Z+YRZBmqUzAg48fb4th5gmmSesIwu/VfApSVKW6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132DC8, serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Validity Not Before: Jun 7 03:08:49 2025 GMT Not After : Jun 14 03:08:49 2025 GMT Subject: CN=6843ad42-960d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b5:43:b9:6a:47:92:46:66:3f:da:86:69:fd: 8a:50:28:2a:a1:8b:20:49:69:92:a5:7a:53:3d:ba: 1e:d8:2a:35:fc:51:3e:db:e9:e7:3b:cb:1a:25:dc: 33:04:f6:9e:63:a5:3e:56:0f:6b:32:d3:0c:20:9e: a8:75:75:8c:cf:c3:d9:f6:b0:b2:86:8b:b6:28:73: 8b:8d:56:23:b6:57:0f:8c:dd:66:8b:e9:67:c2:4b: 28:29:d2:53:55:90:80:1f:bb:07:7f:c9:f4:ad:13: e3:96:a9:8d:ea:09:c7:8a:ac:89:93:f0:71:21:07: 56:40:f4:69:34:fe:16:bd:e1:c8:6a:11:ef:60:c9: e4:b4:83:48:39:06:1f:3a:bd:ad:68:cf:f2:9d:26: c8:da:d0:c5:d9:39:30:3c:76:a8:4a:a2:8c:ae:0f: bb:06:4b:ea:9a:51:5b:a2:b3:40:0a:6c:5b:62:8c: 7e:ac:72:12:d1:aa:40:89:69:7c:4a:cf:6b:68:54: 57:be:be:a5:73:f5:1a:d9:a0:a5:7e:d6:d2:cf:02: 81:db:05:99:66:64:63:0c:ef:19:3e:1b:7d:e6:1e: 97:4b:a4:be:16:1e:30:e1:34:ad:d9:70:cc:cc:c8: 35:f1:b3:55:ec:e3:a8:85:a4:8b:e4:6f:78:5a:2e: 7b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:77:85:F1:91:DE:0B:BF:33:D2:95:D7:69:E5:24:E3:CB:A6:87:8F X509v3 Authority Key Identifier: keyid:C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:dc:fb:5c:31:fb:0a:28:b1:ad:0c:46:50:95:e9:30:3d:b0: 0e:9d:51:2a:63:cf:ce:3c:c4:05:95:f4:da:57:1f:5d:9c:da: fc:c5:16:21:f7:79:21:85:c1:e5:90:63:90:0a:d9:b3:23:0e: dc:2e:72:55:a4:0c:72:f0:dd:6c:fe:d7:2c:c5:d7:d5:1d:67: 0a:c2:bc:70:03:6b:76:03:19:bc:2d:31:46:d8:6c:50:a3:42: e0:4c:6d:37:cb:0a:de:01:fd:24:12:dc:1b:65:93:56:c5:90: f0:a0:b9:81:e8:6b:eb:22:69:19:95:ea:5b:e0:d2:26:d3:75: f8:9e:81:d8:ab:c7:c2:0c:16:bc:a8:11:45:49:53:b1:c9:95: e3:a0:81:cc:c5:1e:3f:fd:89:83:08:1e:b3:a3:2e:cb:1b:4e: 0f:bd:1d:a5:82:fe:94:dd:55:9f:66:9e:c5:68:51:f7:01:21: d2:12:03:01:c3:7f:33:77:53:29:fb:aa:9e:72:21:d5:05:07: 27:cf:26:14:70:18:32:28:a0:fb:47:c7:57:07:a8:a9:de:0a: 8d:a6:3b:70:8f:f9:81:2e:b5:09:d5:f6:ee:c4:40:0a:0a:45: e1:60:c4:8d:6a:28:77:99:ea:9f:f3:3a:30:33:e5:8e:04:14: 1b:35:b8:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEQzgxMTAvBgNVBAUTKEM0RDI2QUMwNkM4QTY1MjU4QUQ0NDkxQjY5REY4MzI5 MEJFMTgzN0IwHhcNMjUwNjA3MDMwODQ5WhcNMjUwNjE0MDMwODQ5WjAYMRYwFAYD VQQDEw02ODQzYWQ0Mi05NjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rVDuWpHkkZmP9qGaf2KUCgqoYsgSWmSpXpTPboe2Co1/FE+2+nnO8saJdwz BPaeY6U+Vg9rMtMMIJ6odXWMz8PZ9rCyhou2KHOLjVYjtlcPjN1mi+lnwksoKdJT VZCAH7sHf8n0rRPjlqmN6gnHiqyJk/BxIQdWQPRpNP4WveHIahHvYMnktINIOQYf Or2taM/ynSbI2tDF2TkwPHaoSqKMrg+7BkvqmlFborNACmxbYox+rHIS0apAiWl8 Ss9raFRXvr6lc/Ua2aClftbSzwKB2wWZZmRjDO8ZPht95h6XS6S+Fh4w4TSt2XDM zMg18bNV7OOohaSL5G94Wi57BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZ3hfGR 3gu/M9KV12nlJOPLpoePMB8GA1UdIwQYMBaAFMTSasBsimUlitRJG2nfgykL4YN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkRDOC80NDRDNkYxNEVD QjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pTV0sxRWtiYWQtREtRdmhn M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOSnF3R3lLWlNXSzFFa2JhZC1ES1F2aGczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkRDOC80NDRDNkYxNEVDQjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pT V0sxRWtiYWQtREtRdmhnM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm3PtcMfsKKLGtDEZQlekwPbAOnVEqY8/OPMQFlfTaVx9dnNr8xRYh 93khhcHlkGOQCtmzIw7cLnJVpAxy8N1s/tcsxdfVHWcKwrxwA2t2Axm8LTFG2GxQ o0LgTG03ywreAf0kEtwbZZNWxZDwoLmB6GvrImkZlepb4NIm03X4noHYq8fCDBa8 qBFFSVOxyZXjoIHMxR4//YmDCB6zoy7LG04PvR2lgv6U3VWfZp7FaFH3ASHSEgMB w38zd1Mp+6qeciHVBQcnzyYUcBgyKKD7R8dXB6ip3gqNpjtwj/mBLrUJ1fbuxEAK CkXhYMSNaih3meqf8zowM+WOBBQbNbgc -----END CERTIFICATE-----Generated at Sat Jun 7 06:01:56 2025 by rpki-client