$ rpki-client -vvf rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft File: XCJQF8zJYrDnOQswzwpWIvfN-u0.mft (raw, json) Hash identifier: aTimNvcYANY1uvHFPlxP+cggIQRMdhh34QGOxIPfVOE= Subject key identifier: DD:CC:F1:09:41:2C:EB:FC:D8:D3:E8:C9:9B:0D:6D:08:98:0B:99:1D Authority key identifier: 5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED Certificate issuer: /CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Certificate serial: 12B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft Manifest number: 12AF Signing time: Fri 30 May 2025 17:14:50 +0000 Manifest this update: Fri 30 May 2025 17:14:50 +0000 Manifest next update: Fri 06 Jun 2025 17:14:50 +0000 Files and hashes: 1: XCJQF8zJYrDnOQswzwpWIvfN-u0.crl (hash: wUwWmsh9AgaTUhm5vO7MAQSQcD6Unwkip/jPKS4Tnvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4785 (0x12b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154330, serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Validity Not Before: May 30 17:14:50 2025 GMT Not After : Jun 6 17:14:50 2025 GMT Subject: CN=6839e78a-1d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:be:f5:58:63:42:ed:b0:7d:3c:b7:87:0b:f8: e9:25:04:66:b7:df:41:a2:5e:26:fe:18:ec:4f:50: 6d:ce:18:94:ca:11:82:08:c5:dc:4e:c2:32:a5:e5: 8c:e2:72:17:83:5a:04:7f:f8:4e:b3:db:36:da:7f: 3a:38:e8:3d:9e:3b:a8:67:e8:13:c9:c0:06:3c:dc: 04:34:01:09:46:49:c1:df:fd:b9:0c:24:aa:51:9b: 60:0b:ba:e6:54:4d:98:b0:d8:9c:0e:d4:b5:22:89: 22:56:50:48:c7:07:f5:40:a5:ec:27:39:0a:a3:a8: 99:6e:7a:b8:e3:3f:2c:81:88:d8:47:de:5c:ec:00: 1d:ba:c4:b1:cb:db:89:27:60:9b:63:1f:f4:ee:d5: 66:f8:01:7f:dc:89:c9:31:0a:d5:33:73:34:a5:17: b1:03:de:9f:63:fd:ee:7e:fa:0b:5a:23:ec:21:b1: 7e:0b:60:c4:68:2f:3e:38:9e:e9:d4:59:37:58:02: a6:1f:a5:eb:0d:1a:df:3a:c9:46:3f:60:bf:e2:f2: 5a:1f:b1:ac:d4:46:e1:de:1c:fb:83:6a:90:b8:7f: b8:60:be:c2:04:c6:f7:b8:b1:22:e3:83:9d:2e:e5: 16:c3:8e:76:07:0f:d7:42:1f:59:b3:e5:9c:6b:f5: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CC:F1:09:41:2C:EB:FC:D8:D3:E8:C9:9B:0D:6D:08:98:0B:99:1D X509v3 Authority Key Identifier: keyid:5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:90:cc:d2:2b:11:d3:2e:54:dd:33:39:b8:a6:aa:ed:d9:68: 5b:eb:b4:e7:f2:a2:91:13:33:88:44:9c:2a:b3:0d:df:f8:ed: c9:74:64:00:da:8c:fd:5f:79:6d:b4:0b:e7:43:67:be:66:bf: cc:67:95:fc:14:9d:f8:b5:82:62:b3:b6:45:48:a2:40:df:1f: b7:0b:78:85:fe:68:02:7e:61:80:57:79:48:37:1d:80:4b:c3: 0a:64:b9:1a:d4:0e:f5:8e:e5:52:77:10:ca:47:b1:d4:5f:0c: 97:ed:59:00:64:83:4d:40:9f:5a:5a:0b:de:d1:b3:38:ee:23: 23:6f:06:59:4f:10:db:6f:37:4b:92:ec:f6:d9:1a:ed:51:f6: 8f:a5:d3:c5:55:7b:e0:77:57:04:0d:28:4f:a8:ac:e0:53:98: 4c:41:3a:d3:36:d9:ca:9d:8e:3c:88:44:0e:d2:7e:a4:ee:84: 94:79:2f:8f:8d:80:a8:2e:b6:5f:67:0f:35:33:38:f1:db:16: 83:72:2a:5d:33:7a:fa:48:ae:4b:0b:49:01:ea:85:cb:63:56: 55:e9:c2:60:65:dd:e1:4a:7d:42:d9:a1:cf:e9:50:1e:0c:9c: 90:8d:25:4b:fa:79:7c:51:de:fa:90:0d:4b:ed:da:bd:8d:51: e2:4f:ad:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzMzAxMTAvBgNVBAUTKDVDMjI1MDE3Q0NDOTYyQjBFNzM5MEIzMENGMEE1NjIy RjdDREZBRUQwHhcNMjUwNTMwMTcxNDUwWhcNMjUwNjA2MTcxNDUwWjAYMRYwFAYD VQQDEw02ODM5ZTc4YS0xZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb71WGNC7bB9PLeHC/jpJQRmt99Bol4m/hjsT1BtzhiUyhGCCMXcTsIypeWM 4nIXg1oEf/hOs9s22n86OOg9njuoZ+gTycAGPNwENAEJRknB3/25DCSqUZtgC7rm VE2YsNicDtS1IokiVlBIxwf1QKXsJzkKo6iZbnq44z8sgYjYR95c7AAdusSxy9uJ J2CbYx/07tVm+AF/3InJMQrVM3M0pRexA96fY/3ufvoLWiPsIbF+C2DEaC8+OJ7p 1Fk3WAKmH6XrDRrfOslGP2C/4vJaH7Gs1Ebh3hz7g2qQuH+4YL7CBMb3uLEi44Od LuUWw452Bw/XQh9Zs+Wca/X0hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3M8QlB LOv82NPoyZsNbQiYC5kdMB8GA1UdIwQYMBaAFFwiUBfMyWKw5zkLMM8KViL3zfrt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDMzMC9FQUQ4NzYzQ0Mw OTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6SllyRG5PUXN3endwV0l2Zk4t dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDSlFGOHpKWXJEbk9Rc3d6d3BXSXZmTi11MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDMzMC9FQUQ4NzYzQ0MwOTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6Slly RG5PUXN3endwV0l2Zk4tdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgkMzSKxHTLlTdMzm4pqrt2Whb67Tn8qKREzOIRJwqsw3f+O3JdGQA 2oz9X3lttAvnQ2e+Zr/MZ5X8FJ34tYJis7ZFSKJA3x+3C3iF/mgCfmGAV3lINx2A S8MKZLka1A71juVSdxDKR7HUXwyX7VkAZINNQJ9aWgve0bM47iMjbwZZTxDbbzdL kuz22RrtUfaPpdPFVXvgd1cEDShPqKzgU5hMQTrTNtnKnY48iEQO0n6k7oSUeS+P jYCoLrZfZw81Mzjx2xaDcipdM3r6SK5LC0kB6oXLY1ZV6cJgZd3hSn1C2aHP6VAe DJyQjSVL+nl8Ud76kA1L7dq9jVHiT62f -----END CERTIFICATE-----Generated at Sat May 31 17:30:23 2025 by rpki-client