$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: ZtSRyNWUBKx6taEws4T2oxyN0I/Ci04vTQdRNW80mtQ= Subject key identifier: 9B:5F:3E:D3:E4:74:80:0A:57:FD:BD:B0:62:A1:09:AD:D9:D3:26:B9 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2513 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2513 Signing time: Wed 02 Jul 2025 14:16:35 +0000 Manifest this update: Wed 02 Jul 2025 14:16:34 +0000 Manifest next update: Wed 09 Jul 2025 14:16:34 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: 1Zh5uEbSEfmVWCAjVWL8xLFPLe8d6NGHQc3XhGg3/8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9491 (0x2513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Jul 2 14:16:34 2025 GMT Not After : Jul 9 14:16:34 2025 GMT Subject: CN=68653f43-aa60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9e:31:a1:66:61:a5:81:d7:97:36:86:30:82: be:de:cd:ba:34:d1:ab:83:fb:50:42:6e:ba:13:05: e2:ed:cb:cd:8b:27:a7:cc:54:e4:3d:1d:30:92:ec: bf:11:36:e5:fa:01:03:c1:68:5a:cf:af:a5:c0:a8: 84:27:97:1d:8d:f4:6b:51:9d:f1:89:5a:cc:08:78: 9a:79:4a:94:a8:c2:58:5c:12:b7:e5:a3:e4:29:6c: 90:40:a9:b3:8b:49:42:2d:97:58:dc:6b:98:56:77: cb:76:4d:d7:8d:0a:df:83:8a:00:84:e3:7c:a8:53: a2:26:0b:d5:72:f1:ef:15:43:3d:f7:83:6a:b1:e9: a2:5d:4f:8f:4b:84:d6:71:2b:b8:1b:9a:cf:cc:c5: 42:51:ce:f6:51:c1:aa:2a:2a:c5:da:f6:38:11:42: 21:9d:7f:24:2f:91:fc:27:96:1c:46:ed:9a:0e:d0: 71:4d:aa:6c:9d:6a:de:35:25:0e:7a:99:12:49:51: cd:60:67:b5:ff:d0:17:56:4c:2a:76:54:a6:2b:02: 24:fa:dd:8b:08:ca:07:b0:64:5d:13:6d:e9:c1:56: 85:e5:46:9e:5d:5d:b5:27:84:49:94:d5:70:a8:9e: 81:eb:b3:ed:4f:a3:5e:9a:87:fe:e6:f7:7e:3f:71: 1e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5F:3E:D3:E4:74:80:0A:57:FD:BD:B0:62:A1:09:AD:D9:D3:26:B9 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:38:1b:89:53:8a:09:d1:9c:07:a8:b6:43:49:14:99:47:6d: 79:0e:af:7c:b6:8c:7f:77:77:7c:6c:e2:c5:dd:85:66:bb:15: 13:48:4d:b3:7e:8d:64:4b:84:11:5f:d6:1a:9d:5f:65:14:2b: d9:a7:8f:7f:a4:41:6b:f4:e9:ca:61:6f:b7:fc:c8:e9:14:b6: 64:6a:41:81:4d:1e:8c:34:5b:b3:a1:92:36:f2:8d:50:0f:dd: ca:22:cb:4c:87:a4:df:c6:24:f1:13:7c:48:28:18:28:b3:2b: 56:73:9a:4e:51:7d:8d:69:27:33:54:06:d4:a8:dd:10:f4:6a: bb:8f:75:af:28:7f:69:4d:27:86:d6:f7:a0:93:b1:44:c9:e2: 58:e9:4f:c8:00:4d:dd:75:af:de:a5:2a:ad:56:a4:50:d4:e8: 4d:0f:ad:10:f1:a9:3a:38:14:ad:ec:cf:70:5a:90:46:3a:95: ce:06:1d:7f:52:b7:98:a6:c8:4f:47:99:e1:d8:9d:30:56:23: b2:58:97:c9:a1:a8:9b:94:3f:f0:c9:0c:fa:97:95:bc:bf:3c: e0:54:dc:4f:e6:10:44:a4:27:dc:3e:18:f7:c2:28:83:d2:1e: 6f:fb:3f:25:4a:44:ee:52:3c:05:7b:d1:f2:a6:45:e5:6a:94: f7:a5:e4:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjUwNzAyMTQxNjM0WhcNMjUwNzA5MTQxNjM0WjAYMRYwFAYD VQQDEw02ODY1M2Y0My1hYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ4xoWZhpYHXlzaGMIK+3s26NNGrg/tQQm66EwXi7cvNiyenzFTkPR0wkuy/ ETbl+gEDwWhaz6+lwKiEJ5cdjfRrUZ3xiVrMCHiaeUqUqMJYXBK35aPkKWyQQKmz i0lCLZdY3GuYVnfLdk3XjQrfg4oAhON8qFOiJgvVcvHvFUM994NqsemiXU+PS4TW cSu4G5rPzMVCUc72UcGqKirF2vY4EUIhnX8kL5H8J5YcRu2aDtBxTapsnWreNSUO epkSSVHNYGe1/9AXVkwqdlSmKwIk+t2LCMoHsGRdE23pwVaF5UaeXV21J4RJlNVw qJ6B67PtT6Nemof+5vd+P3Ee7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtfPtPk dIAKV/29sGKhCa3Z0ya5MB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmOBuJU4oJ0ZwHqLZDSRSZR215Dq98tox/d3d8bOLF3YVmuxUTSE2z fo1kS4QRX9YanV9lFCvZp49/pEFr9OnKYW+3/MjpFLZkakGBTR6MNFuzoZI28o1Q D93KIstMh6TfxiTxE3xIKBgosytWc5pOUX2NaSczVAbUqN0Q9Gq7j3WvKH9pTSeG 1vegk7FEyeJY6U/IAE3dda/epSqtVqRQ1OhND60Q8ak6OBSt7M9wWpBGOpXOBh1/ UreYpshPR5nh2J0wViOyWJfJoaiblD/wyQz6l5W8vzzgVNxP5hBEpCfcPhj3wiiD 0h5v+z8lSkTuUjwFe9HypkXlapT3peQ9 -----END CERTIFICATE-----Generated at Thu Jul 3 23:53:13 2025 by rpki-client