$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: 3YwdZm+bo4U2wWQTIKztuDINXpJuBDNJ9rdWkSd3boU= Subject key identifier: 3B:5C:68:4C:D5:0E:B7:70:9F:EE:03:3E:D5:C2:2B:D6:43:EE:4A:C9 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 01FA Signing time: Thu 03 Jul 2025 02:38:38 +0000 Manifest this update: Thu 03 Jul 2025 02:38:37 +0000 Manifest next update: Thu 10 Jul 2025 02:38:37 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: C6/WCfTaQUIv1LUyZGEhZinMVyZlItgtRAnkxkZiY1I=) 2: D98071A44F4411F0AF01D40FC4F9AE02.roa (hash: bPBsCe6a2VFWcNMWeHmOx+7VTXSQy1aeyYkZxcsxaxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Jul 3 02:38:37 2025 GMT Not After : Jul 10 02:38:37 2025 GMT Subject: CN=6865ed2e-1efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7d:9d:f2:73:b7:f7:b6:03:58:03:a7:9a:a1: 7f:a5:c2:16:ee:23:8d:5e:96:b2:2b:a8:41:8d:ce: 9d:d7:98:31:15:44:eb:44:1e:b4:b7:0f:6d:61:1a: a3:a0:24:ab:49:b0:3f:3b:aa:80:66:70:43:ea:7c: 7a:7a:44:b6:33:a1:60:f9:0e:08:82:52:4a:42:9b: d9:ac:a3:c8:c3:a8:07:6f:7b:0a:da:c2:d7:15:14: ab:aa:fe:14:26:d1:7a:d4:1c:de:42:ab:2d:9f:f2: b3:d2:84:41:5a:8c:65:47:3e:c0:d3:09:83:a0:b0: de:22:8c:f2:d0:71:3a:69:71:2e:e0:6d:13:c7:26: 48:1a:17:6d:9c:98:aa:40:5a:8e:f6:64:4d:4a:4b: e6:06:6e:a4:4e:4c:6a:52:93:44:aa:84:8d:f8:ee: 8f:94:ef:51:07:b3:1c:dd:7b:4d:ae:b1:3b:76:98: 7d:0d:a3:a5:43:ce:71:2b:e2:9f:d5:7f:c8:fb:4c: c7:43:78:c0:3b:e1:35:d9:e6:7d:4a:e1:9b:80:dd: 15:7b:9a:ce:f1:2b:e1:78:94:06:73:f7:f1:50:50: ab:61:04:b6:f8:0a:34:2a:65:59:d5:e1:a2:d0:05: 6b:3e:1d:a6:bc:a9:fa:8c:0f:6f:cc:34:3c:b2:a3: 4a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5C:68:4C:D5:0E:B7:70:9F:EE:03:3E:D5:C2:2B:D6:43:EE:4A:C9 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:96:47:08:05:17:31:98:a6:6e:e3:6c:96:74:92:ef:1e:49: a3:55:87:39:e0:f5:ef:58:31:3b:41:a4:44:70:97:e6:86:77: 9b:b4:1b:4f:95:c0:1e:6f:fe:da:93:1c:af:da:e4:c0:38:a3: 25:66:14:e7:64:f7:86:45:47:a9:2e:f0:bf:01:df:f5:34:60: 75:85:4b:8b:5d:e8:c0:bd:45:1a:e3:fb:3e:ed:ae:d0:e9:41: 01:22:b3:67:ed:b2:16:b8:1d:89:e1:c2:80:4d:3b:03:ec:c6: 4b:67:43:b8:b5:6d:39:82:39:6d:36:65:a7:53:b5:53:3d:92: 82:1b:d3:5f:ea:49:51:0d:75:b1:06:37:29:d0:88:26:4b:a2: 9c:aa:de:fd:4a:51:d6:41:24:31:ec:30:48:42:c2:dd:88:db: a9:53:7f:22:1b:f9:20:33:09:7d:c2:9e:2a:d7:10:03:6e:fe: 6a:1d:3e:5f:4d:d9:3c:48:8b:09:0b:f7:b9:20:0a:33:1d:b6: 2d:e6:d1:84:49:0e:be:e1:5c:9b:d5:8e:e4:1c:41:41:49:41: 47:a2:d3:c3:7f:5a:49:d9:bf:c3:ab:45:7f:91:53:db:fe:68: e4:67:be:a4:6b:2d:c0:c3:f7:29:ac:32:86:bb:7d:c0:28:74: 06:a7:ca:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUwNzAzMDIzODM3WhcNMjUwNzEwMDIzODM3WjAYMRYwFAYD VQQDEw02ODY1ZWQyZS0xZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH2d8nO397YDWAOnmqF/pcIW7iONXpayK6hBjc6d15gxFUTrRB60tw9tYRqj oCSrSbA/O6qAZnBD6nx6ekS2M6Fg+Q4IglJKQpvZrKPIw6gHb3sK2sLXFRSrqv4U JtF61BzeQqstn/Kz0oRBWoxlRz7A0wmDoLDeIozy0HE6aXEu4G0TxyZIGhdtnJiq QFqO9mRNSkvmBm6kTkxqUpNEqoSN+O6PlO9RB7Mc3XtNrrE7dph9DaOlQ85xK+Kf 1X/I+0zHQ3jAO+E12eZ9SuGbgN0Ve5rO8SvheJQGc/fxUFCrYQS2+Ao0KmVZ1eGi 0AVrPh2mvKn6jA9vzDQ8sqNKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtcaEzV Drdwn+4DPtXCK9ZD7krJMB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBflkcIBRcxmKZu42yWdJLvHkmjVYc54PXvWDE7QaREcJfmhnebtBtP lcAeb/7akxyv2uTAOKMlZhTnZPeGRUepLvC/Ad/1NGB1hUuLXejAvUUa4/s+7a7Q 6UEBIrNn7bIWuB2J4cKATTsD7MZLZ0O4tW05gjltNmWnU7VTPZKCG9Nf6klRDXWx Bjcp0IgmS6Kcqt79SlHWQSQx7DBIQsLdiNupU38iG/kgMwl9wp4q1xADbv5qHT5f Tdk8SIsJC/e5IAozHbYt5tGESQ6+4Vyb1Y7kHEFBSUFHotPDf1pJ2b/Dq0V/kVPb /mjkZ76kay3Aw/cprDKGu33AKHQGp8oS -----END CERTIFICATE-----Generated at Thu Jul 3 10:37:49 2025 by rpki-client