$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: T6rCw4QENMtcx4P+Get9O0Y+Axj6nB2XX2H3AiKVPwA= Subject key identifier: 62:55:10:8E:87:7B:49:E2:ED:13:47:31:00:C5:EA:93:0B:66:DC:69 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 88 Signing time: Sat 31 May 2025 06:58:11 +0000 Manifest this update: Sat 31 May 2025 06:58:11 +0000 Manifest next update: Sat 07 Jun 2025 06:58:11 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: uRTALS6K6GRcN6D9OoO50oGRfTqmwQjTPDvGFoCK6Pw=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: 0W2/njWu/4NeHHOITSUzSzI4ic/vgB1fnauNrzPM4sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: May 31 06:58:11 2025 GMT Not After : Jun 7 06:58:11 2025 GMT Subject: CN=683aa883-2544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e7:80:46:fb:8c:a6:13:d8:9f:b0:3c:44:32: 04:61:5d:0f:e8:2a:d9:81:2d:68:cd:d3:de:36:32: 59:b7:27:67:64:8c:c4:a6:6d:75:a4:fc:4f:73:95: 73:a2:19:52:94:d2:ae:cd:4d:d6:74:3d:ce:db:a9: ab:2a:83:a1:fb:8e:6f:66:d0:aa:0d:0d:94:0a:f9: cf:10:f6:4b:44:8d:91:ab:b0:e5:57:a0:e3:7c:f2: 2f:d3:b1:41:e0:8d:20:14:fa:0f:ba:b3:f7:be:c4: 99:6a:4d:d0:74:cc:02:f1:ef:16:e3:55:5c:22:7a: ab:8d:c4:85:95:a8:79:77:c9:54:0e:b3:dd:b8:97: d7:24:bc:56:24:19:2d:a3:b9:d1:a2:ad:ee:4a:60: 39:f3:c7:df:44:7a:60:79:27:8a:ad:30:26:dd:f9: c1:52:94:20:68:de:cb:36:84:8b:66:3e:07:2c:57: 29:75:71:21:44:4c:29:ca:47:a6:82:ff:b1:f1:28: 72:f6:05:d5:aa:22:e7:a2:b5:49:f7:a3:9e:f9:7a: b6:d5:c7:c7:94:86:3c:ba:a3:08:96:0b:da:c5:98: b4:c2:c9:68:4d:05:92:30:ef:85:fc:9d:0f:4f:c2: ee:ae:b9:da:29:2b:6a:f0:51:02:9a:1b:6e:71:85: 5c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:55:10:8E:87:7B:49:E2:ED:13:47:31:00:C5:EA:93:0B:66:DC:69 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:40:64:9c:88:de:9d:08:b4:ab:1d:c5:e8:73:3e:51:90:85: a2:96:03:51:b8:52:9a:be:b3:3c:63:2f:fe:3f:02:7e:bb:ae: 13:98:20:91:de:43:4b:ee:3d:da:02:0b:12:f4:03:bd:5b:d8: d2:51:6e:2d:5a:60:03:41:84:c6:da:09:93:35:8c:3b:80:8f: df:84:11:07:dd:e4:30:24:c1:fb:f1:8a:bf:75:b8:18:62:dc: e9:1d:d9:7c:f5:65:3b:5a:82:8d:3b:2e:cf:6a:65:a5:14:78: b5:7a:69:0d:4a:9d:2c:d3:04:e6:b3:41:f2:15:82:52:21:79: 01:d5:1c:29:c0:be:9b:9a:56:89:54:b8:3b:24:23:dc:17:c1: 30:1d:aa:1a:09:68:10:a6:52:47:ac:aa:c4:e4:53:98:fd:2f: c1:58:8f:b0:35:a0:aa:e0:7a:bd:f4:9c:97:2d:d8:f8:d5:62: c9:26:eb:d6:26:28:79:de:1e:8a:37:99:6d:fb:64:d8:8f:cd: 35:d9:03:98:97:f7:2d:fb:af:c4:f2:90:5c:55:1c:6c:93:b1: bb:de:48:7f:8a:d5:0f:cc:54:ad:84:a4:48:b6:20:68:b2:12: a0:d7:f8:66:9e:8b:f0:99:cb:cf:25:85:62:ec:44:7a:da:1b: 33:ac:9d:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjUwNTMxMDY1ODExWhcNMjUwNjA3MDY1ODExWjAYMRYwFAYD VQQDEw02ODNhYTg4My0yNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ueARvuMphPYn7A8RDIEYV0P6CrZgS1ozdPeNjJZtydnZIzEpm11pPxPc5Vz ohlSlNKuzU3WdD3O26mrKoOh+45vZtCqDQ2UCvnPEPZLRI2Rq7DlV6DjfPIv07FB 4I0gFPoPurP3vsSZak3QdMwC8e8W41VcInqrjcSFlah5d8lUDrPduJfXJLxWJBkt o7nRoq3uSmA588ffRHpgeSeKrTAm3fnBUpQgaN7LNoSLZj4HLFcpdXEhREwpykem gv+x8Shy9gXVqiLnorVJ96Oe+Xq21cfHlIY8uqMIlgvaxZi0wsloTQWSMO+F/J0P T8LurrnaKStq8FECmhtucYVcUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJVEI6H e0ni7RNHMQDF6pMLZtxpMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqQGSciN6dCLSrHcXocz5RkIWilgNRuFKavrM8Yy/+PwJ+u64TmCCR 3kNL7j3aAgsS9AO9W9jSUW4tWmADQYTG2gmTNYw7gI/fhBEH3eQwJMH78Yq/dbgY YtzpHdl89WU7WoKNOy7PamWlFHi1emkNSp0s0wTms0HyFYJSIXkB1RwpwL6bmlaJ VLg7JCPcF8EwHaoaCWgQplJHrKrE5FOY/S/BWI+wNaCq4Hq99JyXLdj41WLJJuvW Jih53h6KN5lt+2TYj8012QOYl/ct+6/E8pBcVRxsk7G73kh/itUPzFSthKRItiBo shKg1/hmnovwmcvPJYVi7ER62hszrJ2j -----END CERTIFICATE-----Generated at Sat May 31 16:43:05 2025 by rpki-client