$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: 1lL0TFC3zmHzAZmQZQMAN2trY3DwaiSpEEu0Z1LBMAQ= Subject key identifier: 70:79:9D:80:D9:B7:3E:2E:FE:DF:86:56:5A:A0:83:4C:2C:6A:4A:C4 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0BE1 Signing time: Fri 06 Jun 2025 18:49:24 +0000 Manifest this update: Fri 06 Jun 2025 18:49:23 +0000 Manifest next update: Fri 13 Jun 2025 18:49:23 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: lXAe4Ib4AEh2PGW5Mf9IAEp/Qnzvt6ky4jzHn6CMjLE=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Jun 6 18:49:23 2025 GMT Not After : Jun 13 18:49:23 2025 GMT Subject: CN=68433834-3be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9e:48:9e:2a:10:af:53:39:2e:e7:40:fd:a6: a6:96:47:cd:1d:fc:79:eb:7e:f8:0e:eb:31:41:f5: 4d:55:87:16:9b:5f:2f:ea:a3:30:01:89:d5:71:3e: 68:12:2d:d4:fc:eb:d3:5b:55:68:f6:05:e7:3f:83: fd:e8:9c:94:e2:2d:d1:52:9a:a8:cd:c3:f9:03:8b: 8d:80:5e:8e:49:b7:f6:d3:e0:d5:cf:50:15:21:90: 64:2f:48:fd:70:0a:7a:69:fb:94:9d:dc:fb:a4:48: 7a:d3:85:dc:79:11:f3:0f:3d:a2:14:a4:57:c3:9b: 20:36:32:b5:ea:97:c2:18:15:5d:83:1d:ff:fa:41: db:d6:04:22:15:5b:5e:85:41:c9:41:44:f7:17:91: ca:1a:c8:2b:62:a0:60:6d:3d:f5:ec:34:84:70:b7: 70:ef:4d:a4:1e:f6:1e:c0:f6:ea:c0:33:61:57:99: 6f:4f:6f:8c:f2:17:c7:75:50:5e:87:0c:2e:3c:3f: 0a:e9:3b:55:68:76:95:3b:02:fe:d4:39:b2:5f:fb: 31:68:07:12:14:9e:de:47:cd:82:91:24:b8:46:92: f2:46:92:d7:b3:54:3f:2b:48:ca:13:32:60:29:a4: 1b:12:60:7b:ec:85:92:1f:74:71:f1:5a:bf:0b:dc: 4e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:79:9D:80:D9:B7:3E:2E:FE:DF:86:56:5A:A0:83:4C:2C:6A:4A:C4 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:61:0d:4a:c3:5d:e0:36:b5:7a:21:94:3f:b6:7f:86:85:9c: 62:98:fb:f4:f0:b4:c9:14:92:50:2c:c9:58:da:60:98:ef:c8: 82:2e:b8:db:6e:9e:ea:58:4f:c0:c6:2c:8c:0c:36:b5:c2:61: 7c:f1:b8:31:2c:f6:33:fc:c8:fe:84:06:23:2d:5e:db:48:b0: c6:9b:4a:76:c4:14:74:5a:96:81:c5:9a:fd:9b:7d:04:08:a8: cb:6a:d3:d8:40:7b:bb:7d:c3:38:c5:2b:f5:d6:97:5d:54:81: b5:30:a8:68:f0:90:f2:90:8d:7c:97:1a:5f:1f:22:4c:7e:0e: 6b:1e:85:b3:b0:b3:3b:ba:1b:67:97:fa:81:34:7d:0f:bf:ec: 8d:72:7c:32:60:5d:6f:f0:93:6b:aa:39:eb:52:fc:8e:d1:a2: 23:15:4f:f7:78:01:a8:ab:e7:42:1d:db:55:8a:cf:a1:71:ab: 19:74:97:fe:f1:1f:dc:74:8f:78:df:a1:ac:bd:3e:c2:5b:d0: a2:92:e4:e4:43:fa:88:b8:30:0a:c6:a2:13:57:77:68:3a:4c: 2b:9c:84:29:05:a6:3e:ce:f4:31:33:f7:0e:64:20:a1:93:27: 39:fe:0e:18:fb:63:cd:a8:b0:f6:68:f9:1e:f1:af:86:e6:d8: b4:4b:0c:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUwNjA2MTg0OTIzWhcNMjUwNjEzMTg0OTIzWjAYMRYwFAYD VQQDEw02ODQzMzgzNC0zYmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZ5InioQr1M5LudA/aamlkfNHfx56374DusxQfVNVYcWm18v6qMwAYnVcT5o Ei3U/OvTW1Vo9gXnP4P96JyU4i3RUpqozcP5A4uNgF6OSbf20+DVz1AVIZBkL0j9 cAp6afuUndz7pEh604XceRHzDz2iFKRXw5sgNjK16pfCGBVdgx3/+kHb1gQiFVte hUHJQUT3F5HKGsgrYqBgbT317DSEcLdw702kHvYewPbqwDNhV5lvT2+M8hfHdVBe hwwuPD8K6TtVaHaVOwL+1DmyX/sxaAcSFJ7eR82CkSS4RpLyRpLXs1Q/K0jKEzJg KaQbEmB77IWSH3Rx8Vq/C9xOgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHB5nYDZ tz4u/t+GVlqgg0wsakrEMB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDYQ1Kw13gNrV6IZQ/tn+GhZximPv08LTJFJJQLMlY2mCY78iCLrjb bp7qWE/AxiyMDDa1wmF88bgxLPYz/Mj+hAYjLV7bSLDGm0p2xBR0WpaBxZr9m30E CKjLatPYQHu7fcM4xSv11pddVIG1MKho8JDykI18lxpfHyJMfg5rHoWzsLM7uhtn l/qBNH0Pv+yNcnwyYF1v8JNrqjnrUvyO0aIjFU/3eAGoq+dCHdtVis+hcasZdJf+ 8R/cdI9436GsvT7CW9CikuTkQ/qIuDAKxqITV3doOkwrnIQpBaY+zvQxM/cOZCCh kyc5/g4Y+2PNqLD2aPke8a+G5ti0Swwc -----END CERTIFICATE-----Generated at Sat Jun 7 05:34:15 2025 by rpki-client