$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft File: XOWb6kBJP8xXRnFpIvGYjZYpH74.mft (raw, json) Hash identifier: NTYDhiSxXsapHrZubrjgbHa+4tYJc7BRjrywMO4W9c0= Subject key identifier: 55:45:60:D7:D6:43:EE:0D:6B:C3:54:18:AA:D7:B9:CF:E9:35:81:45 Authority key identifier: 5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE Certificate issuer: /CN=A9116D68/serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Certificate serial: 086D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft Manifest number: 1778 Signing time: Fri 04 Jul 2025 17:55:37 +0000 Manifest this update: Fri 04 Jul 2025 17:55:37 +0000 Manifest next update: Fri 11 Jul 2025 17:55:37 +0000 Files and hashes: 1: XOWb6kBJP8xXRnFpIvGYjZYpH74.crl (hash: wFoFDOfit1DzQhPzQdP61DDeVUkRWs2wSjkdYRJ2ie4=) 2: 98A1BAB6E9B611EE89994B66C4F9AE02.roa (hash: t2aB2zeGB7GLVJUFKuYwNrlRUrrBiilMq9C3DO3eLYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68, serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Validity Not Before: Jul 4 17:55:37 2025 GMT Not After : Jul 11 17:55:37 2025 GMT Subject: CN=68681599-d11a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2c:87:b2:0c:dd:34:ab:26:b2:d8:fb:85:de: 1d:30:40:76:bf:49:d0:25:a9:e2:83:b4:72:ba:cd: ff:b6:b1:25:5c:a5:79:29:84:b7:b9:42:ee:bb:2d: a0:bb:b4:8a:fe:96:14:70:62:b2:1e:ea:eb:3f:5a: d3:67:a7:cb:f3:d4:36:da:ec:b9:e7:1b:82:66:22: 03:94:7a:ae:f9:ee:d4:24:52:a7:0d:a5:a5:12:3e: 9c:10:8c:cf:f5:85:32:65:1b:e4:b0:5b:54:21:2d: 9b:b1:dd:d6:e0:d1:1f:9d:b2:41:ff:29:53:65:4e: a8:b7:c8:8d:75:c1:f8:c8:73:ce:6d:a1:ba:7f:62: 73:e9:6a:7d:da:7b:8a:f4:69:e1:af:dd:3a:1e:2f: 7f:01:bc:88:40:28:e6:6e:43:b2:b8:10:4a:0f:90: 56:29:3a:56:5e:d2:ba:5c:54:17:f1:be:d0:0b:4d: 69:31:8a:65:62:28:bc:74:58:03:21:2c:40:05:68: 5a:b7:83:ce:d9:fe:08:c5:40:f0:aa:48:0c:8c:1c: e8:0a:e8:ff:bc:f8:42:71:8f:3b:c3:4c:96:8c:b9: cb:1c:61:c1:d6:c0:63:ec:96:96:3f:d3:16:73:90: 9e:e0:26:3b:07:c4:fd:49:d0:a0:a3:49:98:40:1e: 3d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:45:60:D7:D6:43:EE:0D:6B:C3:54:18:AA:D7:B9:CF:E9:35:81:45 X509v3 Authority Key Identifier: keyid:5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:de:82:5f:8e:f8:ea:d1:d6:4d:c0:6f:db:ba:13:0b:0e:eb: e8:1f:39:81:f3:5d:e8:78:e6:ac:bb:fe:31:21:41:9b:0d:28: c6:0f:e7:e1:82:e5:e7:92:c1:35:2f:91:da:3e:76:92:d9:3a: e0:43:77:28:a6:c5:41:d2:fe:e1:01:d0:79:4a:77:0a:a4:ec: 81:5e:e1:3e:59:03:df:e7:9b:2e:b5:63:7f:53:3a:7d:e2:9a: ce:ae:be:63:ca:9a:f2:13:4f:22:2f:69:d3:4b:42:85:2f:cd: 64:81:ba:8f:f9:22:12:6e:56:4e:ae:52:d4:03:50:ea:bb:e8: f9:08:65:62:37:37:0a:2c:6f:28:6c:69:f2:b5:14:9b:24:32: 00:da:f4:14:27:51:cc:5c:51:0a:60:31:2c:86:d8:79:94:64: c3:ed:25:32:6b:79:f4:f0:e9:52:71:14:e9:2b:ff:a8:cb:c3: a2:80:3f:30:f8:e4:c0:54:6e:8e:42:22:a8:96:16:30:5f:4c: 27:c6:25:11:89:e7:1e:a2:1e:9a:81:ea:72:ab:29:b4:0b:91: 5a:26:56:21:0d:f9:fc:18:68:c3:7a:36:e9:af:b8:9c:3f:21: 97:86:f7:15:be:c7:e4:95:13:80:e5:e4:dc:21:b0:21:ee:e1: 74:08:19:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKDVDRTU5QkVBNDA0OTNGQ0M1NzQ2NzE2OTIyRjE5ODhE OTYyOTFGQkUwHhcNMjUwNzA0MTc1NTM3WhcNMjUwNzExMTc1NTM3WjAYMRYwFAYD VQQDEw02ODY4MTU5OS1kMTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSyHsgzdNKsmstj7hd4dMEB2v0nQJanig7Ryus3/trElXKV5KYS3uULuuy2g u7SK/pYUcGKyHurrP1rTZ6fL89Q22uy55xuCZiIDlHqu+e7UJFKnDaWlEj6cEIzP 9YUyZRvksFtUIS2bsd3W4NEfnbJB/ylTZU6ot8iNdcH4yHPObaG6f2Jz6Wp92nuK 9Gnhr906Hi9/AbyIQCjmbkOyuBBKD5BWKTpWXtK6XFQX8b7QC01pMYplYii8dFgD ISxABWhat4PO2f4IxUDwqkgMjBzoCuj/vPhCcY87w0yWjLnLHGHB1sBj7JaWP9MW c5Ce4CY7B8T9SdCgo0mYQB49VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVFYNfW Q+4Na8NUGKrXuc/pNYFFMB8GA1UdIwQYMBaAFFzlm+pAST/MV0ZxaSLxmI2WKR++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4eFhSbkZwSXZHWWpaWXBI NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPV2I2a0JKUDh4WFJuRnBJdkdZalpZcEg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkQ2OC83MjRDQzg0Qzc4ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4 eFhSbkZwSXZHWWpaWXBINzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa3oJfjvjq0dZNwG/buhMLDuvoHzmB813oeOasu/4xIUGbDSjGD+fh guXnksE1L5HaPnaS2TrgQ3copsVB0v7hAdB5SncKpOyBXuE+WQPf55sutWN/Uzp9 4prOrr5jypryE08iL2nTS0KFL81kgbqP+SISblZOrlLUA1Dqu+j5CGViNzcKLG8o bGnytRSbJDIA2vQUJ1HMXFEKYDEshth5lGTD7SUya3n08OlScRTpK/+oy8OigD8w +OTAVG6OQiKolhYwX0wnxiURieceoh6agepyqym0C5FaJlYhDfn8GGjDejbpr7ic PyGXhvcVvsfklROA5eTcIbAh7uF0CBkO -----END CERTIFICATE-----Generated at Sat Jul 5 05:12:38 2025 by rpki-client