$ rpki-client -vvf rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft File: XoJBeVOzWp-LWaQuyUb00CTYd2s.mft (raw, json) Hash identifier: ub/mSUaijpwuEXEUAzToim0bm9fyBDqw8pevj2i+pwY= Subject key identifier: 56:8C:98:82:91:8B:DC:3B:A3:27:4B:73:01:30:DA:D9:DF:3E:85:4A Authority key identifier: 5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B Certificate issuer: /CN=A915B2F1/serialNumber=5E82417953B35A9F8B59A42EC946F4D024D8776B Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft Manifest number: 0646 Signing time: Wed 04 Jun 2025 22:27:38 +0000 Manifest this update: Wed 04 Jun 2025 22:27:38 +0000 Manifest next update: Wed 11 Jun 2025 22:27:38 +0000 Files and hashes: 1: XoJBeVOzWp-LWaQuyUb00CTYd2s.crl (hash: uENkEONR48gyWEQu8MoI/zfhR7DMCsEQdD9AMoi5dYg=) 2: 9378220A8DF211EBADEDD212C4F9AE02.roa (hash: VBf2KoYNobofH3/9baJ/IEUrVzYCh2sv0jk4TufySgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.crl rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B2F1, serialNumber=5E82417953B35A9F8B59A42EC946F4D024D8776B Validity Not Before: Jun 4 22:27:38 2025 GMT Not After : Jun 11 22:27:38 2025 GMT Subject: CN=6840c85a-aa8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:00:34:6a:a6:4b:2f:e2:65:c7:77:0c:4c:a6: 1a:b7:31:f8:71:4c:bb:4c:fd:3d:73:a7:71:ef:a7: e9:e5:ca:35:1d:83:aa:73:b8:19:43:24:42:29:67: e6:b2:16:c1:5b:65:3a:37:6e:c4:6f:d4:de:68:41: 9e:24:13:19:19:d4:b7:88:0d:d9:30:9c:2f:56:27: a4:00:e0:c6:a3:68:db:c8:05:92:fd:e5:61:e1:c9: 48:aa:be:5a:76:d7:7c:f4:d7:2b:3f:36:cf:b3:4a: 25:21:b8:ec:eb:08:6e:4f:c4:d7:7e:31:a4:e1:f8: 41:d2:67:6e:46:0d:14:1c:ff:67:9f:cb:63:26:43: 6d:2c:6a:8f:ac:ef:01:c0:78:a5:cf:ff:52:b0:10: bf:e9:a3:12:44:9e:62:e5:db:8b:51:5c:b5:3d:90: e4:19:f7:2b:d8:f1:9b:6a:78:7c:ba:9d:5f:34:9d: 95:d2:d0:9e:dc:71:5a:35:b9:4d:70:8e:7d:5f:b4: 81:3d:21:f8:28:98:8f:b3:59:e7:0f:db:8b:0d:e1: 21:bd:c7:f5:bc:bb:14:36:45:ae:5b:c4:f1:30:11: 13:f5:9f:21:6f:c2:92:54:dd:35:4c:64:e5:82:09: 24:35:82:96:39:f4:6a:a3:81:74:f9:34:02:80:99: dc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8C:98:82:91:8B:DC:3B:A3:27:4B:73:01:30:DA:D9:DF:3E:85:4A X509v3 Authority Key Identifier: keyid:5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:39:30:f3:11:49:fe:a2:2d:59:aa:ec:a5:dc:82:83:2d:fa: 90:59:a4:09:e6:3a:e2:fa:cc:5b:93:1c:3b:97:18:d0:73:5e: f0:b8:35:33:32:0c:39:b2:90:49:9e:30:8f:b3:8c:05:24:7e: 95:b2:a1:10:b2:96:89:b0:ed:90:f0:93:64:0e:81:66:a0:30: 9c:dd:67:9a:f0:5e:1a:60:11:1e:e5:b8:e9:37:c1:2c:95:ce: 3b:0d:31:28:d4:9f:9b:08:6a:09:8e:0a:4c:7a:d0:d9:ea:11: 39:a0:cf:e7:2d:10:da:08:db:a3:ac:11:e1:f0:e6:40:d4:d3: de:e5:18:0a:3d:ff:77:a2:64:90:50:55:33:ab:c1:9d:aa:71: 30:c9:09:64:ff:53:1d:2b:f7:00:bf:12:3a:57:7e:61:67:6e: e6:af:d0:58:99:05:93:1e:ad:02:9a:0b:ef:97:41:7b:f1:f4: 78:12:89:81:10:7c:56:7d:a2:d3:3d:06:21:33:80:fe:80:97: 95:53:41:f3:a2:bf:84:8e:9f:a4:b2:86:ef:12:b1:5a:d2:8c: c3:a6:ab:fc:23:83:16:ac:1e:45:12:8f:d7:26:64:02:aa:0a: 35:8e:c9:f9:41:5c:d3:5a:07:12:b3:c0:4e:c0:05:61:33:65: 69:b0:42:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIyRjExMTAvBgNVBAUTKDVFODI0MTc5NTNCMzVBOUY4QjU5QTQyRUM5NDZGNEQw MjREODc3NkIwHhcNMjUwNjA0MjIyNzM4WhcNMjUwNjExMjIyNzM4WjAYMRYwFAYD VQQDEw02ODQwYzg1YS1hYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AA0aqZLL+Jlx3cMTKYatzH4cUy7TP09c6dx76fp5co1HYOqc7gZQyRCKWfm shbBW2U6N27Eb9TeaEGeJBMZGdS3iA3ZMJwvViekAODGo2jbyAWS/eVh4clIqr5a dtd89NcrPzbPs0olIbjs6whuT8TXfjGk4fhB0mduRg0UHP9nn8tjJkNtLGqPrO8B wHilz/9SsBC/6aMSRJ5i5duLUVy1PZDkGfcr2PGbanh8up1fNJ2V0tCe3HFaNblN cI59X7SBPSH4KJiPs1nnD9uLDeEhvcf1vLsUNkWuW8TxMBET9Z8hb8KSVN01TGTl ggkkNYKWOfRqo4F0+TQCgJncfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaMmIKR i9w7oydLcwEw2tnfPoVKMB8GA1UdIwQYMBaAFF6CQXlTs1qfi1mkLslG9NAk2Hdr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjJGMS8yNjAwN0ZCNjhE RjExMUVCOEQwRUE1MTFDNEY5QUUwMi9Yb0pCZVZPeldwLUxXYVF1eVViMDBDVFlk MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvSkJlVk96V3AtTFdhUXV5VWIwMENUWWQycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjJGMS8yNjAwN0ZCNjhERjExMUVCOEQwRUE1MTFDNEY5QUUwMi9Yb0pCZVZPeldw LUxXYVF1eVViMDBDVFlkMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjOTDzEUn+oi1Zquyl3IKDLfqQWaQJ5jri+sxbkxw7lxjQc17wuDUz Mgw5spBJnjCPs4wFJH6VsqEQspaJsO2Q8JNkDoFmoDCc3Wea8F4aYBEe5bjpN8Es lc47DTEo1J+bCGoJjgpMetDZ6hE5oM/nLRDaCNujrBHh8OZA1NPe5RgKPf93omSQ UFUzq8GdqnEwyQlk/1MdK/cAvxI6V35hZ27mr9BYmQWTHq0Cmgvvl0F78fR4EomB EHxWfaLTPQYhM4D+gJeVU0Hzor+Ejp+ksobvErFa0ozDpqv8I4MWrB5FEo/XJmQC qgo1jsn5QVzTWgcSs8BOwAVhM2VpsEL+ -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:28 2025 by rpki-client