$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft File: XotdlW6b29kHcBQqxw_fm2OIxtg.mft (raw, json) Hash identifier: v4/rEX8/cIp317IImsdQ1yHHXKoZWfLmJlNJ/9JksDU= Subject key identifier: 2C:7E:52:89:98:CE:B0:51:6F:C1:15:78:99:24:94:E8:12:2B:33:00 Authority key identifier: 5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 Certificate issuer: /CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft Manifest number: 044E Signing time: Thu 05 Jun 2025 00:05:12 +0000 Manifest this update: Thu 05 Jun 2025 00:05:12 +0000 Manifest next update: Thu 12 Jun 2025 00:05:12 +0000 Files and hashes: 1: XotdlW6b29kHcBQqxw_fm2OIxtg.crl (hash: Hi8BsGW1NvClv3cTFSLve618k89I10l54uyJyelK8kk=) 2: 097C49CC56FC11EC8032440FC4F9AE02.roa (hash: LDObm+V0VfIIUmkFfanPpTePErVvUeuNiy33kvT6Iys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D2EE, serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Validity Not Before: Jun 5 00:05:12 2025 GMT Not After : Jun 12 00:05:12 2025 GMT Subject: CN=6840df38-76b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:56:d7:6f:53:70:52:8d:e2:95:b9:42:04:a4: 19:14:85:5e:2c:00:b3:ef:56:40:1b:0d:ae:67:0d: 3a:90:c5:ff:29:d2:95:39:37:0e:a1:0e:35:cb:38: 51:3a:37:8b:5e:de:76:35:b0:99:7c:98:3a:48:41: 80:d3:15:6c:76:1f:07:6b:4e:f1:fe:30:5c:8a:2c: 26:0c:e1:4e:38:a3:89:5e:ef:66:7f:83:3b:26:bc: f0:81:2b:c7:05:97:34:e9:1a:fd:ca:70:84:c4:5d: 8f:6f:a6:92:36:47:01:ba:5a:69:2f:c2:10:11:dd: d4:e9:a6:60:d6:c8:66:03:a8:66:99:c6:94:30:dc: 28:50:39:f1:49:3f:dc:af:12:b5:b3:cf:3a:3e:3f: c2:1c:eb:72:60:37:8d:2d:0b:4e:a6:e4:6a:64:de: 93:17:e5:91:63:ae:9b:1f:19:18:6d:e0:e6:c0:69: 4d:43:5f:48:d0:b2:7a:95:cc:45:9f:22:4d:d4:8a: 8c:48:57:bd:42:3c:6f:7f:83:97:79:51:81:b0:0c: 5a:6f:f5:d5:9a:92:31:ba:17:ec:16:cc:e4:be:86: 20:a0:fa:2c:00:fb:22:6f:10:46:9a:5d:74:ab:26: 5a:57:fa:99:ca:68:ff:13:a4:cb:fc:b6:05:a7:ae: 70:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7E:52:89:98:CE:B0:51:6F:C1:15:78:99:24:94:E8:12:2B:33:00 X509v3 Authority Key Identifier: keyid:5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:7f:58:ad:fe:a3:48:0d:f9:73:ed:f4:e4:93:df:99:db:6e: 7f:3a:ec:2b:39:cf:7b:2b:e9:b3:0b:e6:6d:f8:9b:7e:19:ba: c3:99:6b:f3:35:5a:48:89:5a:54:bf:5a:d0:f1:c4:96:06:d4: 11:a6:8b:15:05:f4:2c:28:8c:6b:14:1d:00:4f:23:1a:a1:29: ba:64:d0:7b:e7:37:79:be:dc:3a:d5:03:ad:41:41:a2:86:86: 47:7d:c8:9f:77:6d:41:d0:cb:0d:20:c2:72:13:71:c8:7e:cf: f1:0b:9b:3f:b9:a0:be:c6:48:bc:23:dc:66:06:4b:27:ff:96: 7c:da:39:08:3f:d2:75:c5:c9:d9:0d:e3:f4:ca:63:9d:32:0d: 91:b5:68:3c:57:be:a7:22:b2:97:41:e2:45:7b:bd:d2:91:96: 96:1c:26:d6:92:d4:56:57:c3:88:41:d6:65:f1:0f:d1:e7:cf: 1e:c9:02:b4:79:e0:9c:aa:e0:a0:c7:23:f4:64:68:59:79:ae: 35:04:a2:2c:33:9d:4b:55:75:1d:00:2d:f6:28:60:f3:32:9e: d7:92:23:92:ec:f5:fd:16:79:83:a3:16:56:80:50:8a:dd:9d: 8a:01:77:e4:65:9b:83:8a:60:c2:32:ce:b2:2e:63:3a:a1:b3: c9:89:f4:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyRUUxMTAvBgNVBAUTKDVFOEI1RDk1NkU5QkRCRDkwNzcwMTQyQUM3MEZERjlC NjM4OEM2RDgwHhcNMjUwNjA1MDAwNTEyWhcNMjUwNjEyMDAwNTEyWjAYMRYwFAYD VQQDEw02ODQwZGYzOC03NmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVbXb1NwUo3ilblCBKQZFIVeLACz71ZAGw2uZw06kMX/KdKVOTcOoQ41yzhR OjeLXt52NbCZfJg6SEGA0xVsdh8Ha07x/jBciiwmDOFOOKOJXu9mf4M7JrzwgSvH BZc06Rr9ynCExF2Pb6aSNkcBulppL8IQEd3U6aZg1shmA6hmmcaUMNwoUDnxST/c rxK1s886Pj/CHOtyYDeNLQtOpuRqZN6TF+WRY66bHxkYbeDmwGlNQ19I0LJ6lcxF nyJN1IqMSFe9Qjxvf4OXeVGBsAxab/XVmpIxuhfsFszkvoYgoPosAPsibxBGml10 qyZaV/qZymj/E6TL/LYFp65wTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx+UomY zrBRb8EVeJkklOgSKzMAMB8GA1UdIwQYMBaAFF6LXZVum9vZB3AUKscP35tjiMbY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDJFRS84RDk2Njc1NDU2 RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5a0hjQlFxeHdfZm0yT0l4 dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvdGRsVzZiMjlrSGNCUXF4d19mbTJPSXh0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDJFRS84RDk2Njc1NDU2RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5 a0hjQlFxeHdfZm0yT0l4dGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEf1it/qNIDflz7fTkk9+Z225/OuwrOc97K+mzC+Zt+Jt+GbrDmWvz NVpIiVpUv1rQ8cSWBtQRposVBfQsKIxrFB0ATyMaoSm6ZNB75zd5vtw61QOtQUGi hoZHfcifd21B0MsNIMJyE3HIfs/xC5s/uaC+xki8I9xmBksn/5Z82jkIP9J1xcnZ DeP0ymOdMg2RtWg8V76nIrKXQeJFe73SkZaWHCbWktRWV8OIQdZl8Q/R588eyQK0 eeCcquCgxyP0ZGhZea41BKIsM51LVXUdAC32KGDzMp7XkiOS7PX9FnmDoxZWgFCK 3Z2KAXfkZZuDimDCMs6yLmM6obPJifRI -----END CERTIFICATE-----Generated at Fri Jun 6 16:51:53 2025 by rpki-client