$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: YAE12c1iictdMsM2w5PK1e3jV4krfa1IIlnsGqoUxvM= Subject key identifier: A7:0E:23:05:1A:A3:32:B3:5F:9D:98:C5:9C:B6:DA:B9:25:6C:F0:C6 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 0800 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 07FA Signing time: Fri 04 Jul 2025 21:17:49 +0000 Manifest this update: Fri 04 Jul 2025 21:17:49 +0000 Manifest next update: Fri 11 Jul 2025 21:17:49 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: /WjWvBE8yL58Soeb0X3R9VZMEnpbasTbETvDZc36LrY=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: 8MctpWGtN4TB9CaLOxK2lVRFp6WdGzpjql1y9Hz4Ctk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Jul 4 21:17:49 2025 GMT Not After : Jul 11 21:17:49 2025 GMT Subject: CN=686844fd-0022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ab:fc:8b:d6:49:bb:ab:e4:42:1a:0a:ed:ba: 14:c1:41:bd:02:4e:02:0d:17:83:4c:9a:8e:55:41: b3:b0:4d:2e:64:ad:10:aa:d9:bb:d6:2e:a7:87:43: a2:cb:b1:d8:4c:48:34:4a:a1:3e:48:ca:86:86:90: 6c:ac:39:2e:bb:1c:9b:5a:b9:e2:32:cb:e9:de:d0: 35:ac:de:62:92:34:1c:0f:de:c6:c6:90:f0:a3:7a: 24:6f:0e:c3:8a:ef:87:36:26:47:e9:df:21:b4:17: 0d:6a:0a:d0:c9:cd:09:36:4f:50:70:65:08:aa:cc: eb:a4:72:29:b7:fb:30:0a:f7:e4:ee:25:2f:14:82: 89:9d:de:d0:92:b2:98:01:f8:39:a0:b9:1a:2a:7e: 44:e2:fb:2f:ea:4c:f2:0c:cf:6c:d0:f6:96:4f:9f: a5:0d:f3:c9:12:80:4c:06:f6:e5:5e:5d:3c:ca:82: 97:b7:39:26:99:e5:42:ae:70:cd:f7:aa:99:1d:63: 1f:a6:51:ce:e3:e5:21:2d:d0:1f:d7:94:58:06:82: c9:95:39:d3:72:65:eb:52:4a:32:3c:b7:18:70:d8: a2:f5:ea:19:7b:61:9f:70:7d:e3:b4:f9:ef:8c:23: fa:4c:4d:4a:d9:13:17:b8:82:6a:53:92:b2:1a:4f: 84:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0E:23:05:1A:A3:32:B3:5F:9D:98:C5:9C:B6:DA:B9:25:6C:F0:C6 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:a8:9c:8c:e6:d2:4f:5e:d3:fa:89:33:f2:5c:29:bf:d8:4c: cc:61:bc:60:c9:28:22:d6:ce:2e:11:90:7f:34:d0:43:42:5f: 8d:43:94:f0:df:97:77:c8:5c:42:6e:7f:a5:ea:e1:db:79:61: 70:84:9f:ab:64:d9:be:0b:02:ee:24:8d:93:bb:ef:9a:39:04: ab:f1:cd:8a:37:41:54:08:40:7f:e7:f0:84:d9:b8:f8:a8:cd: 54:07:20:f1:8a:e4:2e:65:8e:4d:3b:c6:78:a0:ae:e0:b1:a4: 3e:89:cc:92:36:ae:54:8d:64:cf:31:b6:12:62:38:b1:2e:25: a7:5d:83:a4:77:ec:9e:de:6d:e7:9b:98:ad:a7:f7:8d:89:10: d1:d2:6f:65:66:ad:2b:ed:c9:aa:09:7c:81:6d:58:89:e3:7f: 5f:53:c8:7c:29:84:fe:06:be:82:61:c7:e7:69:6e:30:77:fa: d7:1e:9f:eb:b9:e6:e2:0a:9f:2a:b4:55:07:d2:8b:3f:6a:b2: 6b:9e:78:bb:b9:e9:00:db:8c:14:ae:5b:37:db:5c:92:37:05: 15:96:71:59:98:5d:ae:69:7f:d9:69:94:f3:0a:1f:70:23:e5: 66:48:8c:43:dd:f2:f2:18:94:df:6e:30:74:e2:c0:bd:4f:2c: 2c:bb:65:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUwNzA0MjExNzQ5WhcNMjUwNzExMjExNzQ5WjAYMRYwFAYD VQQDEw02ODY4NDRmZC0wMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Kv8i9ZJu6vkQhoK7boUwUG9Ak4CDReDTJqOVUGzsE0uZK0Qqtm71i6nh0Oi y7HYTEg0SqE+SMqGhpBsrDkuuxybWrniMsvp3tA1rN5ikjQcD97GxpDwo3okbw7D iu+HNiZH6d8htBcNagrQyc0JNk9QcGUIqszrpHIpt/swCvfk7iUvFIKJnd7QkrKY Afg5oLkaKn5E4vsv6kzyDM9s0PaWT5+lDfPJEoBMBvblXl08yoKXtzkmmeVCrnDN 96qZHWMfplHO4+UhLdAf15RYBoLJlTnTcmXrUkoyPLcYcNii9eoZe2GfcH3jtPnv jCP6TE1K2RMXuIJqU5KyGk+EdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcOIwUa ozKzX52YxZy22rklbPDGMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvqJyM5tJPXtP6iTPyXCm/2EzMYbxgySgi1s4uEZB/NNBDQl+NQ5Tw 35d3yFxCbn+l6uHbeWFwhJ+rZNm+CwLuJI2Tu++aOQSr8c2KN0FUCEB/5/CE2bj4 qM1UByDxiuQuZY5NO8Z4oK7gsaQ+icySNq5UjWTPMbYSYjixLiWnXYOkd+ye3m3n m5itp/eNiRDR0m9lZq0r7cmqCXyBbViJ439fU8h8KYT+Br6CYcfnaW4wd/rXHp/r uebiCp8qtFUH0os/arJrnni7uekA24wUrls321ySNwUVlnFZmF2uaX/ZaZTzCh9w I+VmSIxD3fLyGJTfbjB04sC9Tywsu2Xt -----END CERTIFICATE-----Generated at Sat Jul 5 22:28:53 2025 by rpki-client