$ rpki-client -vvf rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft File: X-MMr29aMskZ0zWqlNDnMzzQVDU.mft (raw, json) Hash identifier: RjrskUJ+AOjebEdArM9FxDcDxw4WQKTt0kqIykwPtsg= Subject key identifier: 79:DB:74:56:93:E0:87:A8:98:CA:42:4D:BA:E5:B8:23:22:54:50:A1 Authority key identifier: 5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 Certificate issuer: /CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft Manifest number: 07E6 Signing time: Wed 02 Jul 2025 21:21:28 +0000 Manifest this update: Wed 02 Jul 2025 21:21:28 +0000 Manifest next update: Wed 09 Jul 2025 21:21:28 +0000 Files and hashes: 1: X-MMr29aMskZ0zWqlNDnMzzQVDU.crl (hash: 8jWUUEOk4OkxLEs/TAJGg6jMGaXpzuduQh9kQ/syMiY=) 2: FE02E774CFFD11EC8CFDFF68C4F9AE02.roa (hash: Mb3AFxuyqsJCVgV+HTF7n8MDdauyi9spCKyVJmftERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E403, serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Validity Not Before: Jul 2 21:21:28 2025 GMT Not After : Jul 9 21:21:28 2025 GMT Subject: CN=6865a2d8-ff63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:37:a8:41:03:5a:d1:88:20:81:2e:2e:f9: de:f4:4b:a3:20:1f:95:a8:68:2a:ad:95:c1:7e:9f: 8a:d2:9b:88:2c:b5:c0:9d:c4:0e:24:47:9e:d4:7d: b4:54:d6:5b:d1:5c:e6:22:52:87:e1:30:33:76:cb: 4f:42:4c:a0:8b:67:7d:b8:79:84:33:d2:14:6b:ea: 5d:ed:13:cc:81:c0:7d:e5:2a:c0:77:08:40:43:fa: f6:84:67:52:bc:31:1d:e5:a4:bf:bd:15:a0:e9:cc: 31:c8:d8:a1:a7:c9:55:50:2f:3c:14:a7:a5:32:27: fc:2d:1c:23:b7:bf:d0:ac:2f:d9:7a:d9:e1:fa:f2: d6:12:3d:08:fc:7a:1a:de:b5:ad:4d:97:91:de:80: 63:28:2e:e3:03:3a:b0:71:08:62:25:45:0a:33:95: 8f:c8:e3:bb:04:a5:5d:71:0c:65:2f:6c:1f:a2:27: 70:cf:03:df:2e:28:66:e8:c8:a5:a2:ff:c1:30:f3: 12:71:19:11:23:34:4a:97:ff:4e:00:f1:1a:98:49: e1:6a:01:dd:99:8d:ed:a1:33:a5:c0:ed:fb:61:e2: a9:3b:1d:34:5e:11:0a:86:b0:0c:70:06:b7:3a:41: 54:b1:83:69:fb:61:3d:49:3a:9a:3b:c2:a6:16:24: e4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:DB:74:56:93:E0:87:A8:98:CA:42:4D:BA:E5:B8:23:22:54:50:A1 X509v3 Authority Key Identifier: keyid:5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:84:0b:26:e5:5f:61:5c:15:82:c5:cf:42:48:5a:1c:0a:fe: 5c:8d:7e:85:03:d4:42:55:17:82:32:b5:fb:df:66:a0:5c:04: a0:1d:9b:2f:f8:c4:f5:4a:ed:c1:7f:09:b2:61:82:7d:a7:99: 7e:6b:ef:44:0a:9d:f7:9e:0f:16:3a:b0:2d:65:fc:85:b9:0a: 95:0b:39:e0:55:00:49:5b:51:45:4c:7d:3b:ff:07:73:f3:80: 2f:5d:97:ed:6d:1c:83:d7:72:63:a7:ba:76:15:71:4f:6f:75: ae:b0:45:15:77:46:a1:7f:1d:50:4d:8c:34:27:6f:56:b9:5d: 1b:3a:82:8d:72:b9:75:7f:55:20:cb:30:27:d2:eb:e7:37:ce: 30:f0:cd:27:b2:92:62:51:f8:7f:69:74:1b:47:89:6f:0c:9c: 01:b6:eb:ca:6e:a1:1a:83:a1:48:3b:3b:ff:dd:bd:e9:e3:a6: 99:7b:d4:37:79:1d:8f:b2:4c:df:4a:dc:9d:ec:c8:c4:c8:c9: 9a:6e:e6:ef:a7:34:eb:6d:bf:15:50:dc:1e:fa:f5:e5:c3:e2: 8a:fe:39:95:a1:14:f5:7a:ad:94:4b:8c:bb:40:c9:d1:bb:18: 1e:5a:7a:01:ee:88:63:e1:b8:83:d8:e3:1f:b8:57:1f:f1:01: a4:dc:7d:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU0MDMxMTAvBgNVBAUTKDVGRTMwQ0FGNkY1QTMyQzkxOUQzMzVBQTk0RDBFNzMz M0NEMDU0MzUwHhcNMjUwNzAyMjEyMTI4WhcNMjUwNzA5MjEyMTI4WjAYMRYwFAYD VQQDEw02ODY1YTJkOC1mZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvw3qEEDWtGIIIEuLvne9EujIB+VqGgqrZXBfp+K0puILLXAncQOJEee1H20 VNZb0VzmIlKH4TAzdstPQkygi2d9uHmEM9IUa+pd7RPMgcB95SrAdwhAQ/r2hGdS vDEd5aS/vRWg6cwxyNihp8lVUC88FKelMif8LRwjt7/QrC/Zetnh+vLWEj0I/Hoa 3rWtTZeR3oBjKC7jAzqwcQhiJUUKM5WPyOO7BKVdcQxlL2wfoidwzwPfLihm6Mil ov/BMPMScRkRIzRKl/9OAPEamEnhagHdmY3toTOlwO37YeKpOx00XhEKhrAMcAa3 OkFUsYNp+2E9STqaO8KmFiTkuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnbdFaT 4IeomMpCTbrluCMiVFChMB8GA1UdIwQYMBaAFF/jDK9vWjLJGdM1qpTQ5zM80FQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTQwMy9BMUNDRUNGRUY4 QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1za1oweldxbE5Ebk16elFW RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtTU1yMjlhTXNrWjB6V3FsTkRuTXp6UVZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTQwMy9BMUNDRUNGRUY4QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1z a1oweldxbE5Ebk16elFWRFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLhAsm5V9hXBWCxc9CSFocCv5cjX6FA9RCVReCMrX732agXASgHZsv +MT1Su3BfwmyYYJ9p5l+a+9ECp33ng8WOrAtZfyFuQqVCzngVQBJW1FFTH07/wdz 84AvXZftbRyD13Jjp7p2FXFPb3WusEUVd0ahfx1QTYw0J29WuV0bOoKNcrl1f1Ug yzAn0uvnN84w8M0nspJiUfh/aXQbR4lvDJwBtuvKbqEag6FIOzv/3b3p46aZe9Q3 eR2PskzfStyd7MjEyMmabubvpzTrbb8VUNwe+vXlw+KK/jmVoRT1eq2US4y7QMnR uxgeWnoB7ohj4biD2OMfuFcf8QGk3H1t -----END CERTIFICATE-----Generated at Thu Jul 3 07:14:00 2025 by rpki-client