$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: 3eHYxCeqJfQaZdDWuURIQyzS5hXHm4LulJh6v/SP19s= Subject key identifier: 11:B0:F0:D2:FD:EB:91:12:7F:35:9E:E3:92:2E:20:21:C6:F5:AF:2F Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0CEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0CE2 Signing time: Fri 30 May 2025 18:18:36 +0000 Manifest this update: Fri 30 May 2025 18:18:36 +0000 Manifest next update: Fri 06 Jun 2025 18:18:36 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: U0DP7A80x+7F1hGfx7hpPZDdhJ6pLhxm+9KtqXXUIss=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: 549cEJi0czWRyHHS6o5u4NQ6YCs80VKq9MH5xptp8mg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3307 (0xceb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: May 30 18:18:36 2025 GMT Not After : Jun 6 18:18:36 2025 GMT Subject: CN=6839f67c-9614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:17:16:de:87:89:d6:17:92:d3:56:82:e9:7b: c8:8b:9b:91:c2:be:29:52:8d:48:46:92:3f:c6:6f: ac:8a:b7:50:ae:02:d2:d0:ca:f1:81:b6:fb:4e:a5: 78:04:5c:58:12:78:a7:5d:d7:fd:dd:aa:bd:a4:a1: 6a:0a:27:22:4c:b3:b5:15:6b:6f:65:a4:d1:58:0a: ef:83:5d:76:cc:ce:e7:5c:bf:a8:1b:6f:eb:a9:a6: b9:cf:53:3d:2a:e7:f3:00:cb:3a:b1:32:50:26:97: 34:2f:ea:6a:f5:5d:7c:c5:05:ed:12:e4:cf:9d:cb: f3:be:b1:d8:8c:df:ca:d6:d8:95:f0:16:6a:cc:37: 75:64:e6:f9:84:4c:79:53:9c:0a:19:8c:40:92:1f: 0f:13:7b:6f:ce:b6:9f:a5:9c:d1:b5:ce:01:f7:42: 7f:48:03:1f:d9:5b:cc:a4:12:66:1f:5d:78:5e:e3: 51:d3:91:c5:33:f2:6d:d0:a5:63:81:b8:78:50:af: 04:68:53:6c:96:5a:fe:05:81:a6:a5:3f:21:73:ff: 7e:9a:08:51:cd:57:ca:9e:26:ba:c7:c0:92:c9:32: c5:15:89:70:a3:b1:19:6e:eb:d2:fe:18:48:4a:84: f2:d9:25:2d:57:00:99:71:a6:98:0a:00:ed:a9:da: c3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B0:F0:D2:FD:EB:91:12:7F:35:9E:E3:92:2E:20:21:C6:F5:AF:2F X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:bd:3b:b0:cf:f0:c8:89:a3:b6:b1:c1:75:35:91:3e:c2:1e: 94:c4:5e:bc:e4:70:45:cf:75:f2:65:00:b6:cf:55:52:b6:24: 4b:71:c6:fb:12:be:28:60:23:a7:a0:8c:2b:05:95:a9:2c:31: 84:ff:f3:fd:10:27:f9:76:07:de:e1:ba:12:2c:d6:64:f0:ed: 7b:22:b4:d1:da:fa:15:5c:8e:3b:b6:13:eb:c4:ad:7b:b0:5d: 19:eb:bf:b5:86:4d:3d:e1:2c:4b:72:3b:fb:71:b0:b9:19:2f: 91:e8:d7:aa:34:2e:dd:62:16:78:c6:ca:a7:e1:81:ec:61:38: 72:b3:95:d9:ea:bc:e3:80:30:48:7e:e1:58:0f:d1:aa:c1:9f: d7:84:fe:7f:a6:76:4f:32:37:79:e2:28:b5:91:8f:a3:5d:70: c4:8b:01:8f:2f:18:53:f3:30:9e:4d:b9:a0:4c:7b:f0:ef:f3: ea:70:48:e6:04:38:49:f8:a4:c0:88:c1:3c:55:be:5d:4f:6e: 80:c8:aa:7f:aa:81:37:73:2b:30:ae:92:5d:04:e0:73:87:4f: 04:a9:cf:99:6a:60:c2:27:a4:44:c8:02:df:b7:1d:a5:27:2f: dc:90:d4:e2:f7:74:5f:2e:64:43:db:d6:92:2b:e5:34:11:95: c7:a5:3b:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUwNTMwMTgxODM2WhcNMjUwNjA2MTgxODM2WjAYMRYwFAYD VQQDEw02ODM5ZjY3Yy05NjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxcW3oeJ1heS01aC6XvIi5uRwr4pUo1IRpI/xm+sirdQrgLS0Mrxgbb7TqV4 BFxYEninXdf93aq9pKFqCiciTLO1FWtvZaTRWArvg112zM7nXL+oG2/rqaa5z1M9 KufzAMs6sTJQJpc0L+pq9V18xQXtEuTPncvzvrHYjN/K1tiV8BZqzDd1ZOb5hEx5 U5wKGYxAkh8PE3tvzrafpZzRtc4B90J/SAMf2VvMpBJmH114XuNR05HFM/Jt0KVj gbh4UK8EaFNsllr+BYGmpT8hc/9+mghRzVfKnia6x8CSyTLFFYlwo7EZbuvS/hhI SoTy2SUtVwCZcaaYCgDtqdrDWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGw8NL9 65ESfzWe45IuICHG9a8vMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOvTuwz/DIiaO2scF1NZE+wh6UxF685HBFz3XyZQC2z1VStiRLccb7 Er4oYCOnoIwrBZWpLDGE//P9ECf5dgfe4boSLNZk8O17IrTR2voVXI47thPrxK17 sF0Z67+1hk094SxLcjv7cbC5GS+R6NeqNC7dYhZ4xsqn4YHsYThys5XZ6rzjgDBI fuFYD9GqwZ/XhP5/pnZPMjd54ii1kY+jXXDEiwGPLxhT8zCeTbmgTHvw7/PqcEjm BDhJ+KTAiME8Vb5dT26AyKp/qoE3cyswrpJdBOBzh08Eqc+ZamDCJ6REyALftx2l Jy/ckNTi93RfLmRD29aSK+U0EZXHpTun -----END CERTIFICATE-----Generated at Sat May 31 17:39:19 2025 by rpki-client