$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: /Fc1gJi82y7xucIqJok/C53WjZQ0+yQoGfrN0Gf/R1g= Subject key identifier: C0:8B:AF:5B:33:36:8C:4B:5C:67:97:17:81:AE:44:93:6F:76:DF:CF Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 75 Signing time: Sun 01 Jun 2025 06:31:50 +0000 Manifest this update: Sun 01 Jun 2025 06:31:50 +0000 Manifest next update: Sun 08 Jun 2025 06:31:50 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: uG+Q5P7ewJ45BSeIZ+8mXDjmiGvXA1lkhRGrKiALkr4=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Jun 1 06:31:50 2025 GMT Not After : Jun 8 06:31:50 2025 GMT Subject: CN=683bf3d6-42ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f0:d3:5a:d9:46:80:32:eb:ea:64:82:b3:3c: ba:d5:9c:f9:8a:6b:8e:28:1b:ad:31:5c:04:08:62: 83:3c:d1:41:89:11:34:91:e2:8b:f2:47:e7:07:1c: 33:97:5f:41:04:50:2a:ec:4e:d2:70:96:27:80:d7: 8f:77:64:c4:b4:00:9b:65:2e:db:9b:1a:95:26:77: 3a:fb:6a:5f:89:88:3d:ad:bd:e9:c3:26:67:29:0e: a2:55:6b:2f:fc:bf:eb:55:5d:74:6c:15:0c:d3:ee: 34:f0:7a:6d:66:7c:19:c5:ff:b3:f7:4b:99:60:25: 9d:bd:27:a6:99:17:3b:52:c7:58:b3:16:15:46:60: af:ae:7e:fa:53:25:30:c5:44:eb:a2:11:e6:11:79: 49:66:af:1c:28:f8:e4:a0:8a:2f:0b:af:94:ea:e9: ad:28:66:2e:68:85:9d:9c:6d:ac:1d:e2:d2:20:fe: 3c:b3:0a:5b:d3:1d:64:4a:27:02:f6:fd:ea:b3:ef: 5f:c4:0f:e6:13:87:ab:22:30:71:63:db:a1:47:e9: d5:1d:5d:43:12:12:76:da:1d:86:ba:ea:df:6c:bf: a2:0a:a8:01:9d:3c:3d:19:5e:c4:7c:21:06:12:ed: e7:ab:66:30:e0:9b:44:2c:b8:56:a0:76:ad:85:d8: da:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8B:AF:5B:33:36:8C:4B:5C:67:97:17:81:AE:44:93:6F:76:DF:CF X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:59:56:b4:22:ec:e0:42:ea:c8:92:96:ea:cb:0a:c5:43:e4: 03:56:2e:ca:42:7f:ff:0e:bb:63:f1:d5:91:ae:84:3a:da:ce: ab:d2:70:7b:71:50:ec:b4:ea:4e:53:04:c6:3e:1e:7c:81:9e: b2:d1:83:83:e1:76:88:c7:9e:ca:d9:94:1d:22:0d:a5:b3:b7: 48:f8:c2:93:7a:3d:ff:7a:de:1f:62:3d:e7:e1:81:6f:f3:81: 03:74:3f:87:1c:f0:e0:90:48:76:d5:1f:3b:b8:3c:96:b8:f4: 17:8b:90:13:fe:13:dd:8c:b6:5f:5a:4f:28:49:2d:e6:20:a6: 06:76:0b:47:c2:1d:09:a1:13:a9:fa:0e:e9:24:49:d1:e2:db: 99:07:59:33:86:b1:97:d6:67:33:bf:27:f6:a3:32:fb:69:93: a5:31:a0:41:9e:02:02:09:c3:42:0e:dd:c8:2f:9c:0d:64:69: 35:4a:12:89:1b:c2:82:40:ff:cf:91:c3:d7:b9:b3:d7:b0:9d: d9:82:c4:7e:40:37:61:f4:28:f2:b6:74:fe:79:59:cd:87:4e: cc:b1:f6:64:64:3c:92:f9:fa:3e:9f:8f:0a:be:39:c8:37:23: e3:51:dd:7f:f2:78:00:30:4e:b3:e5:a4:d1:fc:10:ca:dc:20: 03:95:46:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTA2MDEwNjMxNTBaFw0yNTA2MDgwNjMxNTBaMBgxFjAUBgNV BAMTDTY4M2JmM2Q2LTQyYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF8NNa2UaAMuvqZIKzPLrVnPmKa44oG60xXAQIYoM80UGJETSR4ovyR+cHHDOX X0EEUCrsTtJwlieA1493ZMS0AJtlLtubGpUmdzr7al+JiD2tvenDJmcpDqJVay/8 v+tVXXRsFQzT7jTwem1mfBnF/7P3S5lgJZ29J6aZFztSx1izFhVGYK+ufvpTJTDF ROuiEeYReUlmrxwo+OSgii8Lr5Tq6a0oZi5ohZ2cbawd4tIg/jyzClvTHWRKJwL2 /eqz71/ED+YTh6siMHFj26FH6dUdXUMSEnbaHYa66t9sv6IKqAGdPD0ZXsR8IQYS 7eerZjDgm0QsuFagdq2F2No7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwIuvWzM2 jEtcZ5cXga5Ek292388wHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIhZVrQi7OBC6siSlurLCsVD5ANWLspCf/8Ou2Px1ZGuhDrazqvScHtx UOy06k5TBMY+HnyBnrLRg4PhdojHnsrZlB0iDaWzt0j4wpN6Pf963h9iPefhgW/z gQN0P4cc8OCQSHbVHzu4PJa49BeLkBP+E92Mtl9aTyhJLeYgpgZ2C0fCHQmhE6n6 DukkSdHi25kHWTOGsZfWZzO/J/ajMvtpk6UxoEGeAgIJw0IO3cgvnA1kaTVKEokb woJA/8+Rw9e5s9ewndmCxH5AN2H0KPK2dP55Wc2HTsyx9mRkPJL5+j6fjwq+Ocg3 I+NR3X/yeAAwTrPlpNH8EMrcIAOVRjA= -----END CERTIFICATE-----Generated at Mon Jun 2 20:21:28 2025 by rpki-client