$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: kleazjqeh7tQkicmQ1JC2vVYMb3wdzHZ3NItV9tdA4E= Subject key identifier: 57:E1:C4:B0:7A:13:3E:24:A2:B0:08:15:94:09:97:D5:6D:00:97:74 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 02F9 Signing time: Tue 01 Jul 2025 01:54:30 +0000 Manifest this update: Tue 01 Jul 2025 01:54:29 +0000 Manifest next update: Tue 08 Jul 2025 01:54:29 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: I8Inbz5KH3PBBl2znoVesAoPBCMFCAUC4XC71ThQBIg=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Jul 1 01:54:29 2025 GMT Not After : Jul 8 01:54:29 2025 GMT Subject: CN=68633fd5-7a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:17:13:d7:c1:17:e4:4a:b1:2d:bb:04:93:6d: b1:69:5b:b0:00:3b:70:4b:a2:3e:f4:53:60:42:29: d8:9a:7e:12:c0:e3:9c:7a:f0:d8:3e:b6:c8:5f:3c: fd:bd:c4:c4:6d:27:b6:82:2e:ea:96:39:57:73:44: 2e:92:69:fc:17:b2:71:0e:9c:76:40:8b:07:27:7c: be:68:02:bb:f4:4e:17:75:67:2c:1c:b7:df:c3:8a: 97:4d:7d:61:bc:5e:2c:23:3a:4f:3a:52:c7:ea:e6: 4f:67:6c:15:d1:42:ff:7e:bb:df:4a:63:78:e6:bb: 51:7b:62:27:02:af:ce:dc:8e:20:55:93:1a:6b:92: d8:9b:f0:a1:eb:0e:36:31:8c:1c:54:d0:fb:e9:41: ff:9a:14:ce:0a:5c:96:49:5b:0e:fe:14:b6:bd:df: 45:77:cc:0b:3e:75:d3:21:fe:5b:67:3a:b0:ec:4f: fb:3e:63:1e:d1:62:1f:47:81:d3:ad:f3:a9:88:8c: 1f:07:d7:2a:a6:5d:3a:25:90:b2:79:d2:ad:52:7a: 2f:4e:29:89:18:8a:a0:cd:9a:73:90:3d:81:1b:a6: 92:b7:5e:b4:47:8d:86:b6:4a:4b:11:38:07:33:b5: 88:08:97:aa:6b:6e:84:5c:f9:fb:40:2d:35:77:cb: aa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E1:C4:B0:7A:13:3E:24:A2:B0:08:15:94:09:97:D5:6D:00:97:74 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:1a:c1:69:fa:44:ff:b7:28:2e:1f:ec:1f:3d:93:55:30:c7: d9:17:22:c9:8d:90:53:ff:2a:c8:86:97:11:5a:3b:d3:ed:aa: f1:f7:d5:51:36:2a:aa:21:13:76:f4:ef:08:9b:27:d9:12:87: b7:22:2f:83:1e:2e:a3:8b:d3:86:b4:0a:59:ca:48:64:a7:a7: 96:03:a8:b8:56:ea:4a:e6:fa:28:1b:28:8d:9d:f1:13:f4:0f: da:c2:71:86:35:5c:99:61:e4:be:64:b6:dc:41:cf:43:34:31: 00:43:c3:cd:3c:a1:4b:97:14:03:eb:5b:e0:0d:d0:eb:ea:08: 8f:2f:bd:00:e0:e7:1a:24:2d:76:eb:45:bb:95:17:fa:11:b2: fa:10:47:68:4d:3a:e4:4e:bf:24:2b:6d:7a:d6:b0:31:3d:26: 20:d3:fb:99:68:4e:84:62:09:e5:2d:a9:1f:a1:3a:e2:6b:03: 3b:75:44:bb:1b:0b:11:80:70:a1:27:c6:db:b9:07:4d:b2:ba: 3c:f0:dd:0c:e8:d9:5d:f5:48:56:ad:b7:74:27:cf:12:a3:7a: 7c:ac:a3:8d:45:77:be:cb:b1:e4:a4:0a:3b:cc:42:0c:b0:3f: 56:2f:a9:b9:d3:2d:fd:e1:16:88:cf:5f:d8:75:b4:23:be:cc: c1:3e:99:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwNzAxMDE1NDI5WhcNMjUwNzA4MDE1NDI5WjAYMRYwFAYD VQQDEw02ODYzM2ZkNS03YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxcT18EX5EqxLbsEk22xaVuwADtwS6I+9FNgQinYmn4SwOOcevDYPrbIXzz9 vcTEbSe2gi7qljlXc0Qukmn8F7JxDpx2QIsHJ3y+aAK79E4XdWcsHLffw4qXTX1h vF4sIzpPOlLH6uZPZ2wV0UL/frvfSmN45rtRe2InAq/O3I4gVZMaa5LYm/Ch6w42 MYwcVND76UH/mhTOClyWSVsO/hS2vd9Fd8wLPnXTIf5bZzqw7E/7PmMe0WIfR4HT rfOpiIwfB9cqpl06JZCyedKtUnovTimJGIqgzZpzkD2BG6aSt160R42GtkpLETgH M7WICJeqa26EXPn7QC01d8uqPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfhxLB6 Ez4korAIFZQJl9VtAJd0MB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZGsFp+kT/tyguH+wfPZNVMMfZFyLJjZBT/yrIhpcRWjvT7arx99VR NiqqIRN29O8ImyfZEoe3Ii+DHi6ji9OGtApZykhkp6eWA6i4VupK5vooGyiNnfET 9A/awnGGNVyZYeS+ZLbcQc9DNDEAQ8PNPKFLlxQD61vgDdDr6giPL70A4OcaJC12 60W7lRf6EbL6EEdoTTrkTr8kK2161rAxPSYg0/uZaE6EYgnlLakfoTriawM7dUS7 GwsRgHChJ8bbuQdNsro88N0M6Nld9UhWrbd0J88So3p8rKONRXe+y7HkpAo7zEIM sD9WL6m50y394RaIz1/YdbQjvszBPpnv -----END CERTIFICATE-----Generated at Wed Jul 2 23:27:36 2025 by rpki-client