$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft File: XEFCLE7PHfpomnDePAORsdR-Vew.mft (raw, json) Hash identifier: CXhNVS2nKNFIaw/rz00gFRw4R2RfNjYcF7XyaPqaR9I= Subject key identifier: 51:D7:B8:48:63:2B:57:08:E9:03:98:EA:32:4A:4C:AF:87:E3:A1:46 Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft Manifest number: 0273 Signing time: Thu 05 Jun 2025 01:34:33 +0000 Manifest this update: Thu 05 Jun 2025 01:34:32 +0000 Manifest next update: Thu 12 Jun 2025 01:34:32 +0000 Files and hashes: 1: XEFCLE7PHfpomnDePAORsdR-Vew.crl (hash: i+fyJBYQvPQzBg3niE7JV0nHn6RHqHqDZliNqTI/kT8=) 2: D11B9044112011EDAC1D3B15C4F9AE02.roa (hash: jBBbANmuNZVxVrVIl9nOmJTDHehO/z/tNRNLXj+1oS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Jun 5 01:34:32 2025 GMT Not After : Jun 12 01:34:32 2025 GMT Subject: CN=6840f429-fd32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ac:fb:7e:d6:a1:68:13:43:5e:a9:ae:b6:73: a8:0d:c7:04:f0:fa:d4:a0:c0:e8:6f:bc:90:f3:d1: b7:f1:29:7e:73:0f:28:26:e8:73:5a:a8:90:c7:0d: e7:cc:b2:d7:bb:ce:ef:10:36:7b:2e:88:73:b9:82: d5:ce:be:7f:6d:86:09:d1:04:4f:33:77:b8:87:25: 6a:8e:aa:d8:7e:26:4a:6f:54:70:f9:d5:59:48:20: 21:0e:8b:96:d2:25:48:6f:ba:fc:17:ef:6f:be:f7: a7:42:3e:19:ac:24:c5:92:68:c8:c6:52:73:6b:31: 89:66:1d:c7:cd:9c:d9:f0:a5:10:f8:c0:5b:3b:06: 6c:1c:45:6c:3d:9b:09:cc:8c:3f:58:92:5e:d9:8d: 7d:51:6d:f3:e2:86:73:a1:d0:a4:f0:cd:f2:a3:b1: b4:56:37:de:b4:24:cd:ca:76:87:3f:0b:57:09:42: 79:a2:78:f3:ca:cf:0c:ba:1a:2c:f8:37:96:f5:5c: 94:7c:0b:82:5f:b2:cd:52:d5:86:34:63:81:59:e0: 14:10:f9:5a:a3:c8:02:74:38:e7:91:73:17:1c:41: df:b5:82:57:d0:c0:c9:67:54:ca:0f:c5:f6:40:8f: a9:27:83:1e:0a:de:5c:e0:a1:95:ed:a1:88:34:86: f3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D7:B8:48:63:2B:57:08:E9:03:98:EA:32:4A:4C:AF:87:E3:A1:46 X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:46:fb:cb:5f:a3:f6:94:3e:58:10:63:4f:37:dd:f9:85:8b: d6:f4:e6:b9:b7:ee:a3:43:aa:9a:c2:1d:85:1b:73:e2:55:88: d5:9d:d7:0b:52:bf:99:9f:f7:70:11:26:78:18:5b:42:69:f0: 29:7f:74:ad:a2:0d:25:23:57:d1:9f:97:d4:09:5e:7f:5c:15: e5:53:e2:02:26:b5:7b:e9:5a:2f:3b:a1:f7:3c:52:92:c9:c2: 37:98:0e:84:51:a2:4f:38:b0:ee:6b:3a:98:a1:a6:21:5a:9d: 1f:d3:ca:48:a7:66:1d:a8:5b:ab:12:92:48:4a:6d:b1:e3:b5: e8:11:92:f7:7f:22:10:25:41:e2:e3:9f:91:0b:3e:02:7d:52: b7:74:24:a1:6a:4c:e5:1c:8a:92:12:a8:43:e9:f7:8d:b5:55: c1:20:54:6a:70:48:d3:0c:03:b3:cd:40:75:e9:d5:39:a1:ad: a9:20:72:25:12:74:e5:d9:1e:7f:60:5d:49:8a:fe:a3:3b:d6: 02:03:e8:a8:3f:92:a6:77:4c:33:60:01:ee:85:6a:9d:0c:d5: 53:6c:a3:20:0f:fa:f7:9a:8b:f9:5e:c9:96:9a:68:12:99:95: 6a:ee:b8:c5:80:07:71:fa:1e:ef:ea:a5:20:a9:4b:14:c0:cc: 11:85:41:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUwNjA1MDEzNDMyWhcNMjUwNjEyMDEzNDMyWjAYMRYwFAYD VQQDEw02ODQwZjQyOS1mZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKz7ftahaBNDXqmutnOoDccE8PrUoMDob7yQ89G38Sl+cw8oJuhzWqiQxw3n zLLXu87vEDZ7LohzuYLVzr5/bYYJ0QRPM3e4hyVqjqrYfiZKb1Rw+dVZSCAhDouW 0iVIb7r8F+9vvvenQj4ZrCTFkmjIxlJzazGJZh3HzZzZ8KUQ+MBbOwZsHEVsPZsJ zIw/WJJe2Y19UW3z4oZzodCk8M3yo7G0VjfetCTNynaHPwtXCUJ5onjzys8Muhos +DeW9VyUfAuCX7LNUtWGNGOBWeAUEPlao8gCdDjnkXMXHEHftYJX0MDJZ1TKD8X2 QI+pJ4MeCt5c4KGV7aGINIbzHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHXuEhj K1cI6QOY6jJKTK+H46FGMB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjE5RC9EMjY5NURERTExMUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhm cG9tbkRlUEFPUnNkUi1WZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4RvvLX6P2lD5YEGNPN935hYvW9Oa5t+6jQ6qawh2FG3PiVYjVndcL Ur+Zn/dwESZ4GFtCafApf3Stog0lI1fRn5fUCV5/XBXlU+ICJrV76VovO6H3PFKS ycI3mA6EUaJPOLDuazqYoaYhWp0f08pIp2YdqFurEpJISm2x47XoEZL3fyIQJUHi 45+RCz4CfVK3dCShakzlHIqSEqhD6feNtVXBIFRqcEjTDAOzzUB16dU5oa2pIHIl EnTl2R5/YF1Jiv6jO9YCA+ioP5Kmd0wzYAHuhWqdDNVTbKMgD/r3mov5XsmWmmgS mZVq7rjFgAdx+h7v6qUgqUsUwMwRhUEp -----END CERTIFICATE-----Generated at Thu Jun 5 19:42:52 2025 by rpki-client