$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: tfbK2pAcNplg/XZoIyBZr0VZhN0p9G7bK7sbg6DmTug= Subject key identifier: 65:00:A5:29:3F:69:02:5C:1D:0A:6B:1C:60:9A:B9:36:11:CE:EB:A2 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 072C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0720 Signing time: Wed 02 Jul 2025 22:07:51 +0000 Manifest this update: Wed 02 Jul 2025 22:07:51 +0000 Manifest next update: Wed 09 Jul 2025 22:07:51 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: mtMfEYRoQsqhKo7Pwcu5bVf4XbEIvyZo+mX3vvIgpkY=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: IwbM0qanfV+e3+145YunmnHjT+laZw+y8+B4ZLa5xus=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1836 (0x72c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Jul 2 22:07:51 2025 GMT Not After : Jul 9 22:07:51 2025 GMT Subject: CN=6865adb7-10d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1f:c8:99:35:56:46:ef:db:b4:2f:05:cd:2a: 17:75:a0:39:72:d7:c2:14:93:2e:39:60:18:03:3b: fa:bc:27:28:ac:26:f4:89:30:22:3f:e6:7f:36:3d: a7:a8:04:1a:c1:79:13:0f:0d:38:ce:1c:68:34:28: c3:36:87:d7:ca:41:63:d6:1b:00:10:aa:c0:46:dc: 6d:db:b5:6d:38:8e:5a:d2:7b:21:01:e2:33:51:df: 0f:b8:61:de:37:11:ba:9b:c0:91:a3:82:43:c6:a4: 1c:fb:8e:ea:60:fe:85:2b:a4:a4:e6:db:08:5c:85: fd:65:45:65:4d:55:6e:04:14:26:27:b3:1b:9c:32: 01:ad:58:ee:53:b0:fb:28:21:40:c3:ed:b4:9c:b0: 97:25:84:ac:b7:2a:b7:65:a4:b9:5b:e5:0d:73:f8: b3:e5:8c:32:a8:a3:b9:49:7b:fb:ac:98:4d:75:3f: 90:9f:a3:65:f7:8b:fb:89:90:24:e2:d2:59:bf:c1: 21:96:48:e7:ac:1f:94:fe:fc:16:c8:b1:9a:d4:d0: 2a:bd:8f:0c:7d:4d:fb:d3:f9:dc:9c:4f:cb:11:4d: 33:95:7d:e8:59:99:05:34:8e:1e:c5:e9:34:9b:e0: d5:79:13:6b:c8:98:72:c8:83:fc:c3:ab:3c:94:0d: 60:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:00:A5:29:3F:69:02:5C:1D:0A:6B:1C:60:9A:B9:36:11:CE:EB:A2 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:1b:93:88:11:84:1c:ad:2f:95:9f:93:6a:7f:e5:fd:bb:64: 04:d7:b5:a7:05:35:26:47:1e:c4:41:17:40:50:d0:a2:9e:e8: 5a:db:0f:d9:39:41:0d:67:79:c0:f7:3d:82:48:4a:84:2d:51: 43:41:28:55:4c:a9:c8:0d:d5:fe:0a:f8:77:33:3f:61:c2:91: b5:8b:26:74:86:42:6f:03:e0:c0:66:d1:87:2a:b2:6c:43:9f: d7:f7:a7:8a:b5:94:ce:41:2e:1b:fe:df:0a:64:a2:d4:88:3a: d5:2f:3f:f1:77:da:24:4e:cd:7a:fc:e0:bc:12:49:f5:c3:b5: 57:bd:96:6b:99:04:1f:82:e8:7f:c2:31:fa:fa:73:69:e8:23: db:26:3d:cb:78:db:91:53:7b:7b:70:83:ff:75:8f:ff:08:43: c8:5a:10:89:6b:11:9e:bc:61:fc:19:d2:f2:47:3f:9b:b9:8d: 46:7a:83:fb:9c:de:19:6e:6b:42:86:b8:03:db:d6:96:8c:2b: 71:a2:c2:ce:90:04:0b:7a:0e:16:38:6f:98:63:23:d1:4d:1c: 5f:7d:b8:f9:0f:96:4f:fd:6b:e0:2f:57:5f:b8:61:15:c1:08: 84:a9:d5:a1:f6:02:54:fb:b6:8a:51:e0:d7:f7:44:66:67:53: 85:df:c7:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwNzAyMjIwNzUxWhcNMjUwNzA5MjIwNzUxWjAYMRYwFAYD VQQDEw02ODY1YWRiNy0xMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAth/ImTVWRu/btC8FzSoXdaA5ctfCFJMuOWAYAzv6vCcorCb0iTAiP+Z/Nj2n qAQawXkTDw04zhxoNCjDNofXykFj1hsAEKrARtxt27VtOI5a0nshAeIzUd8PuGHe NxG6m8CRo4JDxqQc+47qYP6FK6Sk5tsIXIX9ZUVlTVVuBBQmJ7MbnDIBrVjuU7D7 KCFAw+20nLCXJYSstyq3ZaS5W+UNc/iz5YwyqKO5SXv7rJhNdT+Qn6Nl94v7iZAk 4tJZv8EhlkjnrB+U/vwWyLGa1NAqvY8MfU370/ncnE/LEU0zlX3oWZkFNI4exek0 m+DVeRNryJhyyIP8w6s8lA1gewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUApSk/ aQJcHQprHGCauTYRzuuiMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwG5OIEYQcrS+Vn5Nqf+X9u2QE17WnBTUmRx7EQRdAUNCinuha2w/Z OUENZ3nA9z2CSEqELVFDQShVTKnIDdX+Cvh3Mz9hwpG1iyZ0hkJvA+DAZtGHKrJs Q5/X96eKtZTOQS4b/t8KZKLUiDrVLz/xd9okTs16/OC8Ekn1w7VXvZZrmQQfguh/ wjH6+nNp6CPbJj3LeNuRU3t7cIP/dY//CEPIWhCJaxGevGH8GdLyRz+buY1GeoP7 nN4ZbmtChrgD29aWjCtxosLOkAQLeg4WOG+YYyPRTRxffbj5D5ZP/WvgL1dfuGEV wQiEqdWh9gJU+7aKUeDX90RmZ1OF38c0 -----END CERTIFICATE-----Generated at Thu Jul 3 09:11:57 2025 by rpki-client