$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: uPOCVPblV/kDkm5FLa6DCk6KaFUhe3M4XLHu0O8h17w= Subject key identifier: C6:4C:D7:C1:FE:01:E8:27:AA:E8:96:CE:AF:C2:02:4F:6D:50:1A:D3 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: AC Signing time: Sun 01 Jun 2025 05:21:29 +0000 Manifest this update: Sun 01 Jun 2025 05:21:28 +0000 Manifest next update: Sun 08 Jun 2025 05:21:28 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: 4PzLw6yIMRsVq/z07ZVUZNvT8e8M1ebeXiaoWnXpzJg=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Jun 1 05:21:28 2025 GMT Not After : Jun 8 05:21:28 2025 GMT Subject: CN=683be358-0d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fe:ec:d9:67:62:10:1e:52:62:c5:37:84:71: 49:eb:ce:97:69:66:bf:f9:bf:49:ce:83:a8:84:2d: 6d:51:ae:15:da:63:28:f7:ad:d7:b2:8b:1a:4b:fc: 33:cd:6f:c9:ad:88:1e:9a:d5:fd:fa:86:89:30:a3: 75:5f:d7:6e:a6:b6:26:c2:bc:22:80:0d:fb:eb:11: 19:0d:e3:d2:c0:f8:11:6b:e1:32:13:0c:78:3c:bc: 4a:35:72:cf:46:9b:64:8f:40:51:3f:14:da:4c:35: 23:0e:a4:fc:a9:af:e3:54:70:c8:dd:44:d2:00:8b: 39:be:7e:93:42:3c:53:3e:b6:e7:52:cc:d6:94:0b: d5:3f:da:c5:9f:96:70:d3:c5:f3:05:fa:02:f9:d6: 9d:fc:3b:69:96:da:81:0d:94:76:2b:ea:b8:16:49: 66:34:9a:99:a5:cc:8e:b2:c2:09:55:b1:fc:14:01: 73:d1:66:c1:db:3f:c8:83:7a:c9:a1:f4:55:4f:9b: 4f:0e:5c:b4:f6:03:fd:61:80:d9:37:42:b3:2d:fd: 71:12:5c:5e:b7:33:00:b5:4d:1a:07:bf:3d:74:c8: 76:bf:f1:8e:5f:6d:f5:6a:0c:3f:60:08:48:cf:29: f4:54:12:07:99:88:0e:ec:8b:e1:45:58:a7:ea:08: 9b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:4C:D7:C1:FE:01:E8:27:AA:E8:96:CE:AF:C2:02:4F:6D:50:1A:D3 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:43:86:20:30:b9:f0:d2:fd:68:83:00:a9:03:3e:ae:06:ef: 2a:1c:4e:e9:e1:00:70:38:dd:c0:56:9a:b6:a2:87:bc:28:c6: 46:b4:12:27:f4:68:42:2c:ef:b8:9f:29:d9:80:07:bb:a1:71: 14:61:f2:9c:9b:8a:af:6a:9a:87:bb:c4:55:67:57:d6:ae:4d: 0b:25:40:d0:4f:25:ae:39:08:fb:26:8b:4e:6b:f5:ef:2c:5c: d7:c7:16:9a:8a:41:cf:94:6f:3f:c6:69:fd:15:aa:be:9d:93: eb:92:8c:0d:0f:49:e5:42:88:d2:bd:7b:e0:f4:a0:db:df:00: 20:1c:a6:28:56:12:fd:1d:d3:c6:f6:63:57:21:06:6e:4f:e1: 07:33:9a:7a:64:6c:79:ac:28:b9:6f:00:ac:ee:4a:ff:3d:ad: 51:74:7f:93:38:c4:60:6a:5c:67:9c:a3:d1:c9:9b:6b:ce:8a: 7c:84:82:08:92:fe:05:98:00:ff:26:f6:d4:db:f4:ca:46:51: 67:bd:48:f6:bd:69:e7:0f:2d:ae:d3:2a:6b:16:02:4d:37:ed: 44:1e:89:50:18:44:b4:04:82:a8:a2:31:d4:eb:56:d5:b6:dd: 7d:6c:d0:29:fc:8b:37:17:63:3e:a4:27:74:01:09:cf:6e:e3: 65:c4:ac:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwNjAxMDUyMTI4WhcNMjUwNjA4MDUyMTI4WjAYMRYwFAYD VQQDEw02ODNiZTM1OC0wZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/7s2WdiEB5SYsU3hHFJ686XaWa/+b9JzoOohC1tUa4V2mMo963XsosaS/wz zW/JrYgemtX9+oaJMKN1X9duprYmwrwigA376xEZDePSwPgRa+EyEwx4PLxKNXLP Rptkj0BRPxTaTDUjDqT8qa/jVHDI3UTSAIs5vn6TQjxTPrbnUszWlAvVP9rFn5Zw 08XzBfoC+dad/DtpltqBDZR2K+q4FklmNJqZpcyOssIJVbH8FAFz0WbB2z/Ig3rJ ofRVT5tPDly09gP9YYDZN0KzLf1xElxetzMAtU0aB789dMh2v/GOX231agw/YAhI zyn0VBIHmYgO7IvhRVin6gibRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZM18H+ AegnquiWzq/CAk9tUBrTMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Q4YgMLnw0v1ogwCpAz6uBu8qHE7p4QBwON3AVpq2ooe8KMZGtBIn 9GhCLO+4nynZgAe7oXEUYfKcm4qvapqHu8RVZ1fWrk0LJUDQTyWuOQj7JotOa/Xv LFzXxxaaikHPlG8/xmn9Faq+nZPrkowND0nlQojSvXvg9KDb3wAgHKYoVhL9HdPG 9mNXIQZuT+EHM5p6ZGx5rCi5bwCs7kr/Pa1RdH+TOMRgalxnnKPRyZtrzop8hIII kv4FmAD/JvbU2/TKRlFnvUj2vWnnDy2u0yprFgJNN+1EHolQGES0BIKoojHU61bV tt19bNAp/Is3F2M+pCd0AQnPbuNlxKyT -----END CERTIFICATE-----Generated at Mon Jun 2 20:10:12 2025 by rpki-client