$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: AOvMGWidCvrASZeMW7y5zEzQyVVV5YOaRH+XM+EIVy0= Subject key identifier: 0D:F9:C9:FB:41:F5:0C:0D:D9:B4:36:8B:85:9F:3B:FD:2D:14:91:31 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 01EA Signing time: Sun 01 Jun 2025 02:22:40 +0000 Manifest this update: Sun 01 Jun 2025 02:22:40 +0000 Manifest next update: Sun 08 Jun 2025 02:22:40 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: c3LgZbbviNn38NXAYl92imvWS9iKJOHdNDT2xsuPm1A=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Jun 1 02:22:40 2025 GMT Not After : Jun 8 02:22:40 2025 GMT Subject: CN=683bb970-21e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9d:a5:a6:32:1a:76:5a:1a:a1:00:89:ed:3b: d7:aa:cb:c2:e7:c5:d9:7b:e8:b4:c1:1d:5e:e9:43: 86:ff:60:ef:e2:75:d5:52:43:33:f1:be:c1:a2:81: 57:ac:1a:a4:a0:bd:7f:2e:4d:57:73:1e:be:bb:0b: 71:66:1a:b2:85:c1:8f:06:e9:14:49:a5:ba:58:18: 55:35:83:02:1d:df:ad:0f:da:9e:60:f0:10:57:c0: ef:9c:d2:b0:1c:3b:86:83:68:3b:19:59:2d:70:3b: eb:80:aa:bd:91:3c:31:ab:c7:65:be:b9:e7:e3:25: 55:b8:d4:06:9a:74:f8:79:15:0a:02:58:c0:64:51: 85:39:a7:2e:a5:2f:95:de:a4:ae:08:01:be:99:a3: 79:62:23:eb:f0:74:67:66:d3:a1:5e:5a:c2:2b:35: d7:51:fe:3f:70:10:75:4e:d9:eb:09:d6:b9:b3:02: 57:ed:51:22:42:7b:45:e9:e2:2d:20:43:58:8e:05: 8c:b3:77:d6:f1:24:9e:a0:a2:14:4a:49:2c:d3:bf: 9a:c9:a8:3f:c3:85:d1:4e:64:9a:d4:d3:fb:6e:54: 5a:af:61:33:41:7c:24:ac:30:3e:c5:06:58:c7:f8: 2e:15:41:ba:58:c3:d8:0b:ef:cf:0c:0a:be:e6:ff: bb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F9:C9:FB:41:F5:0C:0D:D9:B4:36:8B:85:9F:3B:FD:2D:14:91:31 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:63:9b:54:8a:27:65:14:47:be:0c:fd:0b:73:ba:15:74:18: 7f:19:ca:5f:70:c4:96:b9:d8:1a:81:fb:74:b4:c2:ed:ce:6a: 79:9f:83:8a:fa:ae:6b:eb:97:83:24:f1:f5:33:45:07:03:d8: 02:84:41:1d:ee:16:f6:84:1b:0e:70:eb:5b:80:68:31:e8:66: eb:77:34:66:32:5c:b0:5d:7b:63:09:62:56:dc:10:87:ef:1a: 32:21:43:99:a4:ae:f7:ee:50:b9:aa:79:2d:66:28:42:a7:12: 7f:31:df:f5:78:19:90:87:2c:3d:e3:c2:fb:df:84:04:78:fd: 7f:72:24:4f:3d:2c:a4:df:94:83:01:a1:0f:8d:c2:15:d8:75: 9a:2e:7a:2b:75:04:49:38:a9:5d:9e:ea:3b:c1:9e:90:6c:ba: d4:e6:0b:6b:ad:f0:50:d8:ee:68:ab:63:c4:13:49:ca:27:bf: 13:0a:68:49:17:ee:0c:d9:7d:be:dd:39:35:da:3b:25:cd:94: 31:ce:d2:90:c3:07:a6:c7:97:ff:ca:35:fa:48:07:74:d1:a0: f9:d0:4e:22:e8:47:67:87:be:3d:bc:8c:1b:bd:70:13:d4:71: 06:95:a0:2f:83:9b:ac:6c:a5:81:f4:8d:eb:ea:1d:bd:be:8d: e3:53:f0:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwNjAxMDIyMjQwWhcNMjUwNjA4MDIyMjQwWjAYMRYwFAYD VQQDEw02ODNiYjk3MC0yMWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJ2lpjIadloaoQCJ7TvXqsvC58XZe+i0wR1e6UOG/2Dv4nXVUkMz8b7BooFX rBqkoL1/Lk1Xcx6+uwtxZhqyhcGPBukUSaW6WBhVNYMCHd+tD9qeYPAQV8DvnNKw HDuGg2g7GVktcDvrgKq9kTwxq8dlvrnn4yVVuNQGmnT4eRUKAljAZFGFOacupS+V 3qSuCAG+maN5YiPr8HRnZtOhXlrCKzXXUf4/cBB1TtnrCda5swJX7VEiQntF6eIt IENYjgWMs3fW8SSeoKIUSkks07+ayag/w4XRTmSa1NP7blRar2EzQXwkrDA+xQZY x/guFUG6WMPYC+/PDAq+5v+7TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA35yftB 9QwN2bQ2i4WfO/0tFJExMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaY5tUiidlFEe+DP0Lc7oVdBh/GcpfcMSWudgagft0tMLtzmp5n4OK +q5r65eDJPH1M0UHA9gChEEd7hb2hBsOcOtbgGgx6GbrdzRmMlywXXtjCWJW3BCH 7xoyIUOZpK737lC5qnktZihCpxJ/Md/1eBmQhyw948L734QEeP1/ciRPPSyk35SD AaEPjcIV2HWaLnordQRJOKldnuo7wZ6QbLrU5gtrrfBQ2O5oq2PEE0nKJ78TCmhJ F+4M2X2+3Tk12jslzZQxztKQwwemx5f/yjX6SAd00aD50E4i6Ednh749vIwbvXAT 1HEGlaAvg5usbKWB9I3r6h29vo3jU/DO -----END CERTIFICATE-----Generated at Mon Jun 2 07:13:24 2025 by rpki-client