$ rpki-client -vvf rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft File: xctXefg2BxxSgISGkWfLwa4IuRc.mft (raw, json) Hash identifier: pKlk4cAtbwRfbzWOi+FJ2Jhl4jzF2v38vAA2S72ZQJM= Subject key identifier: 32:FC:C2:93:87:F3:B1:C8:F9:0F:D4:A3:23:54:AA:74:DA:90:55:B5 Authority key identifier: C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 Certificate issuer: /CN=A913F927/serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Certificate serial: 0C6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft Manifest number: 0C68 Signing time: Wed 02 Jul 2025 18:32:09 +0000 Manifest this update: Wed 02 Jul 2025 18:32:08 +0000 Manifest next update: Wed 09 Jul 2025 18:32:08 +0000 Files and hashes: 1: xctXefg2BxxSgISGkWfLwa4IuRc.crl (hash: /w64RwqqNLVKHQ+wW+is7jmaax21P/4bg72nzswANNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F927, serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Validity Not Before: Jul 2 18:32:08 2025 GMT Not After : Jul 9 18:32:08 2025 GMT Subject: CN=68657b29-7724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:f2:46:69:6d:6c:70:bb:99:5f:92:89:c8: 7e:19:52:ba:b2:78:8b:c1:da:4a:eb:22:ac:26:26: ce:fc:0c:a7:4b:30:f5:95:e4:2c:03:d3:f0:e9:6d: 18:a2:f6:ef:28:90:d6:c6:62:d8:31:73:85:18:94: a8:46:91:d3:0d:6e:4b:95:d4:34:07:d4:d5:c4:be: c4:89:3c:fe:cc:5b:16:ab:0a:cc:79:43:5a:7c:df: 83:71:35:d1:eb:e1:b5:a2:7b:20:3e:95:1e:a6:5e: 97:40:75:00:da:4b:28:3f:a2:6d:87:74:91:f5:52: 36:e5:7a:08:ef:97:e5:7e:cb:38:4b:5c:85:a6:44: 39:79:10:8d:dc:32:bd:e8:c4:18:b6:32:bc:65:07: 99:ad:c0:d1:a3:f8:3d:02:cc:9b:44:76:7e:1c:b1: 3d:23:58:53:18:a6:51:33:16:f3:e9:a3:d1:03:9a: e9:82:d5:5a:04:56:c0:af:b6:05:8f:4f:c3:15:ea: 74:71:1c:58:4e:42:10:ba:68:f3:fc:95:5c:bb:c6: fb:32:50:28:69:44:74:67:cc:24:dd:5e:40:71:51: 54:30:7c:df:69:1f:3d:4c:ae:88:13:9e:f8:d1:b7: 78:d0:f8:ed:98:92:7b:3f:ab:59:9b:62:68:d7:73: 9e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FC:C2:93:87:F3:B1:C8:F9:0F:D4:A3:23:54:AA:74:DA:90:55:B5 X509v3 Authority Key Identifier: keyid:C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:87:1a:b2:fb:65:2a:e8:db:e1:e1:54:47:b1:12:c3:e1:02: 4e:22:05:a6:20:9f:7b:27:fe:58:2a:9c:bc:2a:a8:34:39:b9: 67:cc:b9:1e:71:d7:c0:24:39:39:86:f8:84:7d:89:f2:ca:c7: a6:10:44:e0:e4:88:c1:01:29:2a:1b:15:11:88:91:21:2d:53: 30:5c:ad:8e:6e:6a:d3:35:ab:35:9a:2f:9c:42:c8:40:94:58: c3:83:01:7f:50:fb:d9:2f:a5:c8:85:ec:bd:42:a5:66:d1:65: 27:84:e8:07:a5:dc:43:9e:47:d9:47:fd:c4:ae:46:2d:b7:78: 0c:12:80:8b:c4:1e:1b:ed:e1:5c:f0:3a:ab:9b:9a:c9:8a:b6: 1d:e3:e3:02:d8:a7:eb:1a:cb:f8:fe:5a:1c:dd:3e:5a:bc:fb: 79:8a:d8:e2:8c:f1:a1:6b:e2:ad:29:b1:bd:eb:24:e2:80:1a: 28:b4:88:13:17:cd:56:56:df:e8:02:9c:cd:ee:d0:8c:40:ae: eb:e3:43:96:b9:4b:df:2a:d8:1e:5d:61:f9:d6:a9:04:7c:9f: cd:3c:6b:08:68:b0:5e:46:78:ad:67:63:37:24:e5:a9:7a:9e: 42:1e:24:2d:93:10:58:37:43:83:19:53:12:e4:51:bc:14:df: 97:01:41:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y5MjcxMTAvBgNVBAUTKEM1Q0I1Nzc5RjgzNjA3MUM1MjgwODQ4NjkxNjdDQkMx QUUwOEI5MTcwHhcNMjUwNzAyMTgzMjA4WhcNMjUwNzA5MTgzMjA4WjAYMRYwFAYD VQQDEw02ODY1N2IyOS03NzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQzyRmltbHC7mV+Sich+GVK6sniLwdpK6yKsJibO/AynSzD1leQsA9Pw6W0Y ovbvKJDWxmLYMXOFGJSoRpHTDW5LldQ0B9TVxL7EiTz+zFsWqwrMeUNafN+DcTXR 6+G1onsgPpUepl6XQHUA2ksoP6Jth3SR9VI25XoI75flfss4S1yFpkQ5eRCN3DK9 6MQYtjK8ZQeZrcDRo/g9AsybRHZ+HLE9I1hTGKZRMxbz6aPRA5rpgtVaBFbAr7YF j0/DFep0cRxYTkIQumjz/JVcu8b7MlAoaUR0Z8wk3V5AcVFUMHzfaR89TK6IE574 0bd40PjtmJJ7P6tZm2Jo13OeuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDL8wpOH 87HI+Q/UoyNUqnTakFW1MB8GA1UdIwQYMBaAFMXLV3n4NgccUoCEhpFny8GuCLkX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjkyNy9BRjUyMTFGRTAw QTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4eFNnSVNHa1dmTHdhNEl1 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hjdFhlZmcyQnh4U2dJU0drV2ZMd2E0SXVSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjkyNy9BRjUyMTFGRTAwQTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4 eFNnSVNHa1dmTHdhNEl1UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3hxqy+2Uq6Nvh4VRHsRLD4QJOIgWmIJ97J/5YKpy8Kqg0OblnzLke cdfAJDk5hviEfYnyysemEETg5IjBASkqGxURiJEhLVMwXK2ObmrTNas1mi+cQshA lFjDgwF/UPvZL6XIhey9QqVm0WUnhOgHpdxDnkfZR/3ErkYtt3gMEoCLxB4b7eFc 8Dqrm5rJirYd4+MC2KfrGsv4/loc3T5avPt5itjijPGha+KtKbG96yTigBootIgT F81WVt/oApzN7tCMQK7r40OWuUvfKtgeXWH51qkEfJ/NPGsIaLBeRnitZ2M3JOWp ep5CHiQtkxBYN0ODGVMS5FG8FN+XAUF5 -----END CERTIFICATE-----Generated at Wed Jul 2 19:59:48 2025 by rpki-client