$ rpki-client -vvf rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft File: xGxDuid9LBDufR7_PfDi78iFGh0.mft (raw, json) Hash identifier: 3kDf2MZ29L4iktZ6UFUwX1hxwtYKKd+jY68Gh225uS0= Subject key identifier: 77:54:A6:6F:B7:19:D2:7C:A2:AA:38:DA:9A:A1:7C:5D:63:FD:8C:E1 Authority key identifier: C4:6C:43:BA:27:7D:2C:10:EE:7D:1E:FF:3D:F0:E2:EF:C8:85:1A:1D Certificate issuer: /CN=A913638A/serialNumber=C46C43BA277D2C10EE7D1EFF3DF0E2EFC8851A1D Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft Manifest number: 6E Signing time: Sat 31 May 2025 06:27:19 +0000 Manifest this update: Sat 31 May 2025 06:27:19 +0000 Manifest next update: Sat 07 Jun 2025 06:27:19 +0000 Files and hashes: 1: xGxDuid9LBDufR7_PfDi78iFGh0.crl (hash: tqTLniGJWjkB90dNmblb1JtyRvWDzA71r/H4jBbaXYs=) 2: 9D7ED59A954711EF9830412DC4F9AE02.roa (hash: uh0RsXXXDr4A3r/l+n4K/1lemqOiMBSx6tfsdjRL1A4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.crl rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913638A, serialNumber=C46C43BA277D2C10EE7D1EFF3DF0E2EFC8851A1D Validity Not Before: May 31 06:27:19 2025 GMT Not After : Jun 7 06:27:19 2025 GMT Subject: CN=683aa147-f868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e5:5d:aa:fc:2e:a2:56:b9:c8:33:18:05:c3: 51:bc:1f:dc:6d:8c:92:af:f2:04:a8:77:78:b6:59: e3:78:be:e0:45:b8:a9:48:f5:b7:a9:45:ec:f2:1e: 58:a3:49:7c:54:94:bd:91:31:90:22:ea:17:68:24: b6:1e:7e:84:f5:65:dc:f2:58:e4:8d:80:c8:7f:2e: b5:4a:04:0d:6b:c8:dd:b8:e0:4c:0c:bb:53:6a:0e: 28:74:58:e6:37:76:75:59:ba:8b:eb:9a:ba:16:34: 80:b1:3a:5a:b8:6d:a0:5a:a7:b4:22:a4:30:d1:94: 12:77:b3:2d:79:50:84:3e:56:ac:4b:68:2f:16:a3: 7b:85:6e:14:51:40:d9:56:67:c8:e5:c6:66:0c:78: 64:5e:dd:80:7a:6c:46:a4:07:88:0c:b3:6a:16:72: 85:4d:26:6b:38:3c:08:9f:2a:e9:2b:48:18:bd:aa: 5e:86:08:88:03:b4:5d:fc:46:51:00:85:27:a8:a2: 38:43:b8:4b:4e:8e:d2:b7:f3:43:56:21:fa:99:8c: 2a:2d:bf:95:cb:60:02:70:29:83:40:00:5a:83:ae: 8c:6f:bd:fd:dc:8f:3e:58:f2:8c:92:9d:2f:38:b3: 78:8d:f7:87:d6:d0:2e:c9:3f:e6:3c:d8:0f:6a:05: 31:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:54:A6:6F:B7:19:D2:7C:A2:AA:38:DA:9A:A1:7C:5D:63:FD:8C:E1 X509v3 Authority Key Identifier: keyid:C4:6C:43:BA:27:7D:2C:10:EE:7D:1E:FF:3D:F0:E2:EF:C8:85:1A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:2c:69:7d:33:54:25:10:16:42:37:93:1e:74:11:7f:24:8c: 40:f0:37:47:7e:c7:21:cc:7f:52:96:8a:2c:27:3c:aa:51:12: 03:ca:aa:7e:54:20:3c:01:46:a2:8b:5b:fa:85:89:d0:f9:ee: fe:33:9a:49:a2:33:71:9b:bf:6d:f3:e4:1c:a2:d4:ba:41:9b: fa:b7:23:c8:aa:22:62:c1:d3:1a:af:e0:c6:d3:1d:e0:45:02: 52:c0:ac:ae:42:31:58:77:1d:8c:5b:8a:b9:dc:ff:c4:63:e7: c5:b3:a7:6f:aa:f9:f2:83:59:27:5f:05:4a:69:89:f6:0d:ab: 68:94:2e:3e:6f:07:e1:a9:8a:46:65:cd:5d:51:60:ce:16:97: 22:5e:be:83:f6:6c:72:28:13:af:2e:f2:f3:de:5f:05:87:27: 0a:31:d4:4a:cb:67:97:c8:d4:18:9a:d8:62:27:cd:ef:46:fb: 9e:49:bc:6e:42:1e:71:96:93:95:a7:38:e6:e2:fe:a8:6e:6e: a9:81:10:0e:61:29:89:0a:b5:1c:03:f7:06:1f:9f:94:74:c4: af:f1:49:4d:f4:2e:f3:8a:40:1e:b1:f2:dd:86:86:54:07:ef: aa:14:c3:0e:c6:b8:d6:1f:61:33:89:76:2a:63:d3:d9:80:27: 76:b4:30:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjM4QTExMC8GA1UEBRMoQzQ2QzQzQkEyNzdEMkMxMEVFN0QxRUZGM0RGMEUyRUZD ODg1MUExRDAeFw0yNTA1MzEwNjI3MTlaFw0yNTA2MDcwNjI3MTlaMBgxFjAUBgNV BAMTDTY4M2FhMTQ3LWY4NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC95V2q/C6iVrnIMxgFw1G8H9xtjJKv8gSod3i2WeN4vuBFuKlI9bepRezyHlij SXxUlL2RMZAi6hdoJLYefoT1ZdzyWOSNgMh/LrVKBA1ryN244EwMu1NqDih0WOY3 dnVZuovrmroWNICxOlq4baBap7QipDDRlBJ3sy15UIQ+VqxLaC8Wo3uFbhRRQNlW Z8jlxmYMeGRe3YB6bEakB4gMs2oWcoVNJms4PAifKukrSBi9ql6GCIgDtF38RlEA hSeoojhDuEtOjtK380NWIfqZjCotv5XLYAJwKYNAAFqDroxvvf3cjz5Y8oySnS84 s3iN94fW0C7JP+Y82A9qBTHLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd1Smb7cZ 0nyiqjjamqF8XWP9jOEwHwYDVR0jBBgwFoAUxGxDuid9LBDufR7/PfDi78iFGh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzhBLzVCREQyQ0FFOTU0 NzExRUY5NjgwOEYyQ0M0RjlBRTAyL3hHeER1aWQ5TEJEdWZSN19QZkRpNzhpRkdo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveEd4RHVpZDlMQkR1ZlI3X1BmRGk3OGlGR2gwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzhBLzVCREQyQ0FFOTU0NzExRUY5NjgwOEYyQ0M0RjlBRTAyL3hHeER1aWQ5TEJE dWZSN19QZkRpNzhpRkdoMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJgsaX0zVCUQFkI3kx50EX8kjEDwN0d+xyHMf1KWiiwnPKpREgPKqn5U IDwBRqKLW/qFidD57v4zmkmiM3Gbv23z5Byi1LpBm/q3I8iqImLB0xqv4MbTHeBF AlLArK5CMVh3HYxbirnc/8Rj58Wzp2+q+fKDWSdfBUppifYNq2iULj5vB+GpikZl zV1RYM4WlyJevoP2bHIoE68u8vPeXwWHJwox1ErLZ5fI1Bia2GInze9G+55JvG5C HnGWk5WnOObi/qhubqmBEA5hKYkKtRwD9wYfn5R0xK/xSU30LvOKQB6x8t2GhlQH 76oUww7GuNYfYTOJdipj09mAJ3a0MPE= -----END CERTIFICATE-----Generated at Sat May 31 17:26:15 2025 by rpki-client