$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft File: Cr_XemhpLv60MkAP_d3XrhsjvCc.mft (raw, json) Hash identifier: tJxYkLvH3weoTRy9/lTXuudvo2yhmjzba7sIIWvwLP8= Subject key identifier: 85:9C:14:A5:44:7B:76:E8:2B:ED:28:EA:30:BC:38:02:EB:E9:A8:CC Authority key identifier: 0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 Certificate issuer: /CN=A9194A8C/serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Certificate serial: 04D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft Manifest number: 0637 Signing time: Sat 05 Jul 2025 00:16:05 +0000 Manifest this update: Sat 05 Jul 2025 00:16:05 +0000 Manifest next update: Sat 12 Jul 2025 00:16:05 +0000 Files and hashes: 1: Cr_XemhpLv60MkAP_d3XrhsjvCc.crl (hash: RVow6qG5aK2wjY3cAmD/8XeSTO9C+Q3aKg80fcrfRFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1234 (0x4d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C, serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Validity Not Before: Jul 5 00:16:05 2025 GMT Not After : Jul 12 00:16:05 2025 GMT Subject: CN=68686ec5-2b3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ee:30:41:f3:f8:18:d0:7b:bf:6d:6e:cd:65: b0:ca:e3:20:23:07:88:10:85:cd:c6:84:c2:ae:2e: a9:7e:09:cc:0d:61:89:1f:f6:00:83:f6:44:32:77: 62:be:94:b1:5e:00:c6:25:ac:30:7f:7d:08:bc:2f: 34:a7:26:b4:98:3c:38:f2:a6:1a:a8:36:8a:3e:22: d5:7a:48:b9:a8:36:e8:21:ea:ab:4b:fe:5f:bc:b3: 27:c3:6a:a6:0a:7b:54:65:7b:87:8a:b6:2c:b9:99: 4e:1f:50:e6:19:b8:be:bd:aa:ec:b6:e7:b3:e1:1f: 26:52:70:d3:65:f3:13:d3:8e:89:1f:1c:7e:92:99: bc:62:93:ed:5a:0e:15:bd:20:e0:52:08:81:ab:70: 5c:3f:71:3b:5b:b3:4e:1d:5f:dd:fe:6b:42:22:66: a3:63:7e:58:46:55:24:c2:3b:f9:e6:2c:49:b2:6e: 4a:9e:3c:6a:50:6f:a1:23:44:19:85:f2:f5:8c:b6: ce:4c:08:06:37:f8:87:f5:ce:e5:19:38:90:dc:ff: d0:6d:4d:08:87:db:5c:cf:e4:03:b0:27:a2:9d:48: 7e:cd:7a:99:3f:36:47:e0:8b:58:2a:6c:26:d2:dd: 4d:96:ed:da:4d:ad:27:0a:3b:a3:05:ca:5c:d7:19: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9C:14:A5:44:7B:76:E8:2B:ED:28:EA:30:BC:38:02:EB:E9:A8:CC X509v3 Authority Key Identifier: keyid:0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:89:3b:c6:f2:b2:ec:0f:42:be:bd:d4:21:2c:b7:44:97:0a: fd:95:53:d5:1b:ab:57:75:86:6d:52:62:b6:24:ba:17:7f:87: e3:9e:01:dd:3e:f7:87:50:90:cf:ab:1f:42:be:75:eb:7e:5b: 58:f6:2a:c7:c8:29:87:47:be:1e:b5:aa:ab:c2:29:9b:6e:4e: ee:3a:5b:0b:1d:5a:ab:dc:6d:ee:41:32:24:72:3a:ab:b2:4d: e3:61:18:5f:06:e3:32:82:e7:db:28:10:75:7d:e6:91:56:27: 85:47:cb:32:58:62:c9:0c:a4:42:2a:8c:4d:35:0c:9b:22:70: 4d:39:39:70:2a:6c:8e:74:6a:20:ff:62:a3:88:9c:70:7b:b4: 55:d3:48:9b:6d:36:65:ec:68:de:d5:c6:b2:80:0f:9b:6c:a7: a8:8c:cc:29:ca:8f:71:6a:83:65:c3:23:3a:3c:ea:6d:d3:d4: 07:0e:b0:7b:56:0b:c5:17:bd:aa:a6:58:53:a4:e8:4b:64:c3: 5b:4d:2a:f6:c4:54:f2:6a:d8:e6:e5:63:24:59:73:5d:e1:95: e9:a4:bb:10:13:89:c9:6b:0b:11:94:04:4e:8a:52:9e:08:c8: 22:36:cf:f4:dd:54:1c:09:bb:7f:f3:95:70:a1:fb:2c:7c:3a: 5c:59:0c:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKDBBQkZENzdBNjg2OTJFRkVCNDMyNDAwRkZEREREN0FF MUIyM0JDMjcwHhcNMjUwNzA1MDAxNjA1WhcNMjUwNzEyMDAxNjA1WjAYMRYwFAYD VQQDEw02ODY4NmVjNS0yYjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoO4wQfP4GNB7v21uzWWwyuMgIweIEIXNxoTCri6pfgnMDWGJH/YAg/ZEMndi vpSxXgDGJawwf30IvC80pya0mDw48qYaqDaKPiLVeki5qDboIeqrS/5fvLMnw2qm CntUZXuHirYsuZlOH1DmGbi+varstuez4R8mUnDTZfMT046JHxx+kpm8YpPtWg4V vSDgUgiBq3BcP3E7W7NOHV/d/mtCImajY35YRlUkwjv55ixJsm5KnjxqUG+hI0QZ hfL1jLbOTAgGN/iH9c7lGTiQ3P/QbU0Ih9tcz+QDsCeinUh+zXqZPzZH4ItYKmwm 0t1Nlu3aTa0nCjujBcpc1xkwZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWcFKVE e3boK+0o6jC8OALr6ajMMB8GA1UdIwQYMBaAFAq/13poaS7+tDJAD/3d164bI7wn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2NjBNa0FQX2QzWHJoc2p2 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyX1hlbWhwTHY2ME1rQVBfZDNYcmhzanZDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE4Qy85RTY3MTFBNDJCMUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2 NjBNa0FQX2QzWHJoc2p2Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsiTvG8rLsD0K+vdQhLLdElwr9lVPVG6tXdYZtUmK2JLoXf4fjngHd PveHUJDPqx9CvnXrfltY9irHyCmHR74etaqrwimbbk7uOlsLHVqr3G3uQTIkcjqr sk3jYRhfBuMygufbKBB1feaRVieFR8syWGLJDKRCKoxNNQybInBNOTlwKmyOdGog /2KjiJxwe7RV00ibbTZl7Gje1caygA+bbKeojMwpyo9xaoNlwyM6POpt09QHDrB7 VgvFF72qplhTpOhLZMNbTSr2xFTyatjm5WMkWXNd4ZXppLsQE4nJawsRlAROilKe CMgiNs/03VQcCbt/85VwofssfDpcWQzi -----END CERTIFICATE-----Generated at Sat Jul 5 21:57:57 2025 by rpki-client