$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft File: XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json) Hash identifier: anRIyY681/uEi7uN/oAatAHAgw3tp2mami2YBuxYt3c= Subject key identifier: 6E:CB:C5:1A:83:86:A9:45:07:74:6C:23:DA:E3:AD:C4:6B:33:5B:AC Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C Certificate issuer: /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft Manifest number: 22 Signing time: Wed 02 Jul 2025 17:55:33 +0000 Manifest this update: Wed 02 Jul 2025 17:55:32 +0000 Manifest next update: Wed 09 Jul 2025 17:55:32 +0000 Files and hashes: 1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: 1YDY2j0vb3CfuP9lV2jieMdJw6wyohcaVKtzeZCB1pc=) 2: D5271A183ADB11F0BC52A042C4F9AE02.roa (hash: Je+up3kY6qu1B3So3Vnq/xOYjMIPNymqMCzCxvb8aL4=) 3: 87087F00267E11F09183092AC4F9AE02.roa (hash: vPD3MBlV+VYxtTk5npGCIsRmwvlSAFp0uTh8dXUbHV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Validity Not Before: Jul 2 17:55:32 2025 GMT Not After : Jul 9 17:55:32 2025 GMT Subject: CN=68657294-e7b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5a:75:a5:69:86:cb:4d:a7:e9:16:a1:3d:fb: ec:15:df:37:1e:33:a7:70:56:6e:20:98:46:47:eb: f9:5a:5b:6f:ef:0b:59:31:9c:2b:0d:cc:fa:78:6d: 78:1b:47:11:4c:c9:46:fc:72:09:60:40:5f:2d:43: 01:3f:c8:50:70:f4:e9:ba:02:ea:2e:62:0c:4a:58: d8:a9:90:ec:51:fb:78:cb:df:c5:8a:de:46:8a:d3: f4:3f:b7:36:f0:c4:e1:6a:1b:97:d3:4c:84:07:7c: 32:86:bc:97:1b:85:39:38:c9:be:63:ea:28:99:02: 8e:b9:a6:15:72:28:ff:8c:02:55:f5:d6:04:e0:c8: 7c:3c:83:42:67:49:c5:50:3a:c4:23:da:6e:5e:5d: b1:af:81:74:c0:74:e4:90:df:a4:de:4d:83:63:a4: 6d:01:c8:8a:57:46:a7:41:3c:71:44:ad:0a:3a:a3: 35:49:81:e2:4e:ee:fa:57:57:b5:14:2c:ec:13:2e: 9e:73:0d:e2:28:e2:50:ad:cc:d9:10:e6:95:85:e6: 02:e8:8c:ba:29:1c:3a:e6:40:f8:ae:7e:a6:6e:1d: e3:df:86:1d:4c:6a:82:12:8e:91:f5:7d:05:9e:b9: 07:ed:e8:1f:a7:b5:8c:c1:b6:3e:70:46:64:46:51: 7c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CB:C5:1A:83:86:A9:45:07:74:6C:23:DA:E3:AD:C4:6B:33:5B:AC X509v3 Authority Key Identifier: keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:f1:a1:4c:c2:83:0e:ae:b1:68:70:2c:69:65:16:67:dd:d3: d4:44:c5:f3:97:db:da:fd:84:bb:01:4f:5e:1c:fa:3d:2f:2b: ce:80:0c:cc:9b:ca:8c:be:dc:19:90:4b:fc:0e:62:3c:62:4a: 85:07:81:ea:03:ef:a9:34:c8:d2:f1:c7:aa:1a:14:45:c7:a8: c3:ba:95:a7:7d:a2:ad:98:db:c5:6f:da:7c:f3:de:8f:7a:b0: 50:e2:46:5a:de:89:d6:fa:19:85:25:8c:6a:4f:bc:d9:a8:32: 9d:d0:0f:a5:d0:81:91:92:84:63:16:74:85:ab:cf:f7:cb:33: 3a:d0:c1:6f:b6:fb:38:52:ff:de:60:19:da:cd:0f:22:ab:cc: 68:e1:8b:59:43:7d:c2:79:09:01:e6:16:37:ab:da:c4:d3:7a: 6f:57:f1:d6:7d:00:70:29:1f:3c:c3:cf:91:74:09:8b:8d:cc: 8a:df:73:ec:97:7b:88:17:f9:74:16:eb:75:0d:29:ce:c0:1b: 92:e3:d9:72:80:be:91:ce:65:8e:6c:fe:0f:b9:c6:0f:e0:b3: 1b:7c:ea:87:aa:70:8f:41:10:6c:54:6d:d7:4d:e8:0c:b0:76: 07:9f:8f:a7:68:9b:af:7c:96:c7:49:01:86:a8:eb:ff:32:0f: 0c:27:ec:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Njk4RTExMC8GA1UEBRMoNURCNzVCMkRGOTREMDQ0NzRBNkU1RTJENEI3OENDMDg0 QkZDMkE2QzAeFw0yNTA3MDIxNzU1MzJaFw0yNTA3MDkxNzU1MzJaMBgxFjAUBgNV BAMTDTY4NjU3Mjk0LWU3YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbWnWlaYbLTafpFqE9++wV3zceM6dwVm4gmEZH6/laW2/vC1kxnCsNzPp4bXgb RxFMyUb8cglgQF8tQwE/yFBw9Om6AuouYgxKWNipkOxR+3jL38WK3kaK0/Q/tzbw xOFqG5fTTIQHfDKGvJcbhTk4yb5j6iiZAo65phVyKP+MAlX11gTgyHw8g0JnScVQ OsQj2m5eXbGvgXTAdOSQ36TeTYNjpG0ByIpXRqdBPHFErQo6ozVJgeJO7vpXV7UU LOwTLp5zDeIo4lCtzNkQ5pWF5gLojLopHDrmQPiufqZuHePfhh1MaoISjpH1fQWe uQft6B+ntYzBtj5wRmRGUXyLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbsvFGoOG qUUHdGwj2uOtxGszW6wwHwYDVR0jBBgwFoAUXbdbLflNBEdKbl4tS3jMCEv8Kmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2OThFLzA5NUY2QzhDMjY3 QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVkS2JsNHRTM2pNQ0V2OEtt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGJkYkxmbE5CRWRLYmw0dFMzak1DRXY4S213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 OThFLzA5NUY2QzhDMjY3QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVk S2JsNHRTM2pNQ0V2OEttdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH3xoUzCgw6usWhwLGllFmfd09RExfOX29r9hLsBT14c+j0vK86ADMyb yoy+3BmQS/wOYjxiSoUHgeoD76k0yNLxx6oaFEXHqMO6lad9oq2Y28Vv2nzz3o96 sFDiRlreidb6GYUljGpPvNmoMp3QD6XQgZGShGMWdIWrz/fLMzrQwW+2+zhS/95g GdrNDyKrzGjhi1lDfcJ5CQHmFjer2sTTem9X8dZ9AHApHzzDz5F0CYuNzIrfc+yX e4gX+XQW63UNKc7AG5Lj2XKAvpHOZY5s/g+5xg/gsxt86oeqcI9BEGxUbddN6Ayw dgefj6dom698lsdJAYao6/8yDwwn7L0= -----END CERTIFICATE-----Generated at Thu Jul 3 13:17:39 2025 by rpki-client