$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft File: XTwWiWSSv8hwyKALZou_6VlF-No.mft (raw, json) Hash identifier: Ux5UmkKUrz4JnlyPvQY0t34bfl2skO4mHgk0yRGlb3g= Subject key identifier: 1E:A7:23:7A:D6:60:1B:E0:57:18:7C:C5:9F:A2:56:2C:F4:63:89:2E Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft Manifest number: 0136 Signing time: Sat 31 May 2025 04:10:14 +0000 Manifest this update: Sat 31 May 2025 04:10:13 +0000 Manifest next update: Sat 07 Jun 2025 04:10:13 +0000 Files and hashes: 1: XTwWiWSSv8hwyKALZou_6VlF-No.crl (hash: svM20wznl/162D/k6NSd7VpYqsuLM3Eh1v3uzeBkJ6E=) 2: DFE29CB669E511EE92E9E35AC4F9AE02.roa (hash: 1ZszVXnu+oof2agkcsw2N+1e9S9zcssyc5TigB7H1/w=) 3: DF0BED1069E511EE92E9E35AC4F9AE02.roa (hash: e26WrvOpcLVtFLCEGQEyLqc/kWvK3maBfU7Yb9x41Mg=) 4: 065143FAB71C11EF9C368D66C4F9AE02.roa (hash: ejDPctxuPr+08V8pahIdV3zpYnFneVGtkqcwrd8I5VM=) 5: DF7C0A6E69E511EE92E9E35AC4F9AE02.roa (hash: NbEb3oWP2ceJtb7zrqoj41m3/pXeHDptDVhijrcSdOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: May 31 04:10:13 2025 GMT Not After : Jun 7 04:10:13 2025 GMT Subject: CN=683a8126-f42d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ca:0d:1b:f2:47:8a:65:23:74:51:ee:4d:4e: c2:41:75:ad:b5:c9:72:6c:d8:30:be:a7:d9:89:1d: 78:56:fa:c5:af:cf:db:96:f7:d8:a3:79:9d:29:cd: df:43:69:f3:83:ce:79:da:36:e5:70:6d:a4:a4:3c: 00:66:4c:2d:7f:37:f7:75:60:85:8d:a9:9c:a2:3e: f2:b3:6b:3d:ac:b7:c1:00:3a:72:08:8a:4e:7d:d1: ad:bd:10:2f:c1:62:d4:60:81:7e:ab:4f:6e:fd:d3: 0a:69:a8:11:24:68:1c:a5:fc:2d:72:85:5c:1f:68: 7b:02:9f:1c:38:58:ec:9c:09:91:62:fb:ee:03:6c: 80:5b:bb:ec:fe:23:3c:01:35:b0:da:d0:e9:48:6e: 55:8c:42:ad:33:96:fd:c6:12:9b:62:51:25:ea:e0: be:9c:ff:66:40:5c:92:25:7b:9d:37:29:5d:4e:3b: 2f:3a:c2:0d:47:fe:c4:e2:98:c5:7f:a2:3a:b8:8d: 88:c0:86:93:12:d9:b9:2b:8c:6c:fe:de:cc:93:d5: ae:32:42:88:0c:61:50:27:0b:32:f9:e4:06:d5:82: 8f:77:37:b8:7b:09:38:da:b3:f8:db:07:4e:75:60: 41:4a:50:86:da:16:64:9d:d2:71:61:5b:f2:90:63: 21:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A7:23:7A:D6:60:1B:E0:57:18:7C:C5:9F:A2:56:2C:F4:63:89:2E X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:04:76:71:fe:1c:15:54:00:da:df:7e:8c:a0:ef:93:b9:3e: b7:f4:34:e4:5b:7d:99:04:80:bd:3f:e7:3e:0e:fa:86:5a:70: 6b:dd:ca:9e:8e:fe:6b:eb:a6:2f:12:34:e7:9f:98:67:fc:f2: 40:1b:ea:16:94:10:37:a3:7f:68:06:03:3f:e8:86:b8:14:8c: 1c:56:f5:21:e1:eb:6b:24:a4:cd:aa:8c:e9:66:5a:19:e3:67: 20:1f:82:a2:f4:7e:1d:95:e0:12:2d:94:64:61:c4:c0:a7:de: cc:62:3a:ef:0e:c8:46:94:81:76:4f:ee:a2:33:32:eb:c5:18: f1:4c:1a:8f:44:2c:1e:85:a8:28:ff:d0:e9:26:5a:0b:51:7b: e0:4d:f4:e1:28:0a:e1:ab:c4:31:8e:5f:5b:17:9f:3f:91:99: c4:c8:8e:d0:07:f3:0e:5d:8b:e6:fd:d5:fe:e3:8f:e8:49:d2: 6a:15:1b:86:01:e8:9c:70:2c:71:56:41:37:c3:8b:07:e7:fd: b2:af:42:6f:9a:c3:3c:c4:73:9b:a1:c0:2a:bf:16:19:89:fc: d3:7b:01:6f:cb:4c:da:c9:67:50:b4:18:cc:05:e2:87:7a:7b: 35:3b:d3:51:e3:82:11:eb:b2:3d:c2:6f:d0:a0:ae:44:b1:20: 59:84:2b:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjUwNTMxMDQxMDEzWhcNMjUwNjA3MDQxMDEzWjAYMRYwFAYD VQQDEw02ODNhODEyNi1mNDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8oNG/JHimUjdFHuTU7CQXWttclybNgwvqfZiR14VvrFr8/blvfYo3mdKc3f Q2nzg8552jblcG2kpDwAZkwtfzf3dWCFjamcoj7ys2s9rLfBADpyCIpOfdGtvRAv wWLUYIF+q09u/dMKaagRJGgcpfwtcoVcH2h7Ap8cOFjsnAmRYvvuA2yAW7vs/iM8 ATWw2tDpSG5VjEKtM5b9xhKbYlEl6uC+nP9mQFySJXudNyldTjsvOsINR/7E4pjF f6I6uI2IwIaTEtm5K4xs/t7Mk9WuMkKIDGFQJwsy+eQG1YKPdze4ewk42rP42wdO dWBBSlCG2hZkndJxYVvykGMhJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6nI3rW YBvgVxh8xZ+iViz0Y4kuMB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM3Qy8yQjVDQUFFODY5RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4 aHd5S0FMWm91XzZWbEYtTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQBHZx/hwVVADa336MoO+TuT639DTkW32ZBIC9P+c+DvqGWnBr3cqe jv5r66YvEjTnn5hn/PJAG+oWlBA3o39oBgM/6Ia4FIwcVvUh4etrJKTNqozpZloZ 42cgH4Ki9H4dleASLZRkYcTAp97MYjrvDshGlIF2T+6iMzLrxRjxTBqPRCwehago /9DpJloLUXvgTfThKArhq8Qxjl9bF58/kZnEyI7QB/MOXYvm/dX+44/oSdJqFRuG AeiccCxxVkE3w4sH5/2yr0JvmsM8xHObocAqvxYZifzTewFvy0zayWdQtBjMBeKH ens1O9NR44IR67I9wm/QoK5EsSBZhCuk -----END CERTIFICATE-----Generated at Sat May 31 16:27:42 2025 by rpki-client