$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: YaBpsoE5yvg6P7EALy0EkybaJyEUjYRRML8Ztb1Yaz0= Subject key identifier: C5:E5:BE:A0:B5:B7:AE:52:AB:38:BA:7A:9D:9A:A1:30:36:F7:B1:A9 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 067D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 0679 Signing time: Wed 02 Jul 2025 22:38:26 +0000 Manifest this update: Wed 02 Jul 2025 22:38:25 +0000 Manifest next update: Wed 09 Jul 2025 22:38:25 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: 4xUeqaqVjas9AhwuI4w7ulNI+UcSAxWE1MAGX1zFcaA=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: DpNVsF8S1R1VahxgyAnkQsdhv9Y/GOwsBJQM35rMSJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Jul 2 22:38:25 2025 GMT Not After : Jul 9 22:38:25 2025 GMT Subject: CN=6865b4e2-baad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5d:3a:35:60:fe:c7:78:6a:5f:f7:91:98:1a: c2:cd:96:5d:1a:4e:a0:3e:97:79:9c:fe:01:c1:1c: a4:e1:9e:92:1a:7c:cb:a7:1b:63:6a:e6:25:44:f4: e8:04:6b:85:1d:41:07:0c:10:c5:37:e6:81:ca:dc: fa:7f:57:76:1b:e2:4c:a7:40:a0:5c:40:a6:41:55: 76:6e:3e:d6:c1:63:de:e7:b8:6b:15:56:98:55:84: 91:0b:d3:cc:17:e1:08:2b:67:f0:d4:65:5e:6c:13: f0:38:6e:8b:f8:cc:9c:c0:d7:f9:88:ac:9e:c1:e9: 26:13:6b:9f:71:ed:9c:46:a1:d9:59:bc:71:6e:eb: 65:40:74:70:1b:83:e8:d5:89:7a:73:0b:82:2a:e0: 3e:31:14:8f:8f:00:cb:9d:26:d2:1b:25:64:0b:b9: 63:d2:f6:ee:45:c0:bd:11:c4:21:d5:74:b3:15:e7: 88:79:69:51:6b:87:f4:92:d6:4d:7f:24:bc:1d:e3: 00:fb:3d:e9:90:0b:14:f9:a8:b1:73:56:d5:ba:5c: 03:25:fb:40:09:13:fc:aa:0d:6c:9c:ae:dc:8d:44: a7:d0:e4:ec:c3:1d:3b:42:d8:d1:bf:84:ed:93:5d: c8:57:6c:65:1f:5d:8f:b2:ba:b6:c5:d8:d3:c9:32: 02:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E5:BE:A0:B5:B7:AE:52:AB:38:BA:7A:9D:9A:A1:30:36:F7:B1:A9 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:ba:09:9b:53:d9:16:2c:d9:51:86:8a:f8:78:61:a2:c1:89: ab:bb:f0:71:ce:bd:4d:36:66:85:92:03:a0:d6:6f:bb:91:1f: e7:be:19:59:a9:1d:c2:98:ac:6f:d6:fe:de:ac:fa:66:2b:06: 2a:bf:bb:2e:34:07:a2:ca:79:76:69:bb:4d:82:52:38:ee:3c: 94:af:08:9d:36:a2:ad:10:c6:b6:4e:6e:05:02:e8:0c:ad:88: c7:b6:b3:51:b7:ae:b9:4b:ea:40:88:9d:e4:0a:f4:b0:9f:76: 56:4b:b0:e6:69:6b:de:70:28:64:e7:a2:16:89:c1:3b:54:1b: c2:bb:08:52:91:bb:ce:d7:59:b9:03:ec:c5:ef:23:9c:57:1d: 57:5a:5b:58:52:d0:6a:8c:fb:d7:fb:ae:4b:be:84:8f:5b:1b: dd:af:96:09:a7:aa:32:bb:04:9f:3f:82:19:30:f5:a7:f2:c6: fa:91:e6:07:f1:8e:4d:dc:20:09:8d:e8:05:1a:b8:c5:bf:f4: 50:e3:9e:b8:9b:ea:e7:b5:69:40:b6:83:05:c5:63:de:21:14: a7:cc:01:fb:f8:09:ac:02:fd:c9:b3:0e:22:5a:a7:bd:2e:09: 47:31:c5:36:ed:5a:ab:6a:7b:07:60:b5:d1:dc:a2:76:28:ab: 83:50:f2:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUwNzAyMjIzODI1WhcNMjUwNzA5MjIzODI1WjAYMRYwFAYD VQQDEw02ODY1YjRlMi1iYWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqV06NWD+x3hqX/eRmBrCzZZdGk6gPpd5nP4BwRyk4Z6SGnzLpxtjauYlRPTo BGuFHUEHDBDFN+aBytz6f1d2G+JMp0CgXECmQVV2bj7WwWPe57hrFVaYVYSRC9PM F+EIK2fw1GVebBPwOG6L+MycwNf5iKyewekmE2ufce2cRqHZWbxxbutlQHRwG4Po 1Yl6cwuCKuA+MRSPjwDLnSbSGyVkC7lj0vbuRcC9EcQh1XSzFeeIeWlRa4f0ktZN fyS8HeMA+z3pkAsU+aixc1bVulwDJftACRP8qg1snK7cjUSn0OTswx07QtjRv4Tt k13IV2xlH12Psrq2xdjTyTICmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXlvqC1 t65Sqzi6ep2aoTA297GpMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATugmbU9kWLNlRhor4eGGiwYmru/Bxzr1NNmaFkgOg1m+7kR/nvhlZ qR3CmKxv1v7erPpmKwYqv7suNAeiynl2abtNglI47jyUrwidNqKtEMa2Tm4FAugM rYjHtrNRt665S+pAiJ3kCvSwn3ZWS7DmaWvecChk56IWicE7VBvCuwhSkbvO11m5 A+zF7yOcVx1XWltYUtBqjPvX+65LvoSPWxvdr5YJp6oyuwSfP4IZMPWn8sb6keYH 8Y5N3CAJjegFGrjFv/RQ4564m+rntWlAtoMFxWPeIRSnzAH7+AmsAv3Jsw4iWqe9 LglHMcU27VqransHYLXR3KJ2KKuDUPLx -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:34 2025 by rpki-client