$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: 84dxuIE0zcgXem9v6qLHGyPfCg9ebNB0GKPFRBWgTfU= Subject key identifier: 90:9D:36:D1:E6:DB:4D:08:6E:8A:E8:7A:9A:82:4F:5A:F1:ED:13:E7 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 01B6 Signing time: Tue 15 Jul 2025 03:24:10 +0000 Manifest this update: Tue 15 Jul 2025 03:24:10 +0000 Manifest next update: Tue 22 Jul 2025 03:24:10 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: PBg2GWraNt8vRRCmzO1jfMKjmEubMOFuEssxG0szzak=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 03:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Jul 15 03:24:10 2025 GMT Not After : Jul 22 03:24:10 2025 GMT Subject: CN=6875c9da-9223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a1:66:a1:be:60:17:4f:ea:34:2f:8a:ba:42: a5:ee:63:67:64:fd:1d:b8:9e:1d:9e:cc:31:63:19: 2f:fd:ac:18:8d:20:a5:b4:97:bc:fe:62:e4:cc:31: 6c:1e:20:b4:a2:a1:0d:36:76:ee:34:a0:c5:a0:e3: d3:55:e4:8e:37:10:f8:ac:df:4b:ac:cc:a2:27:a9: b1:b5:05:3a:14:2c:71:2a:9a:a6:c2:fc:95:2a:0b: 94:2b:e7:35:de:bb:36:b3:6a:43:2b:19:17:b8:21: b4:40:52:57:58:35:83:2d:41:1a:16:43:e9:c0:8f: da:a5:07:03:f4:a6:35:5d:f1:95:b7:5a:5a:21:f2: b4:85:c5:a4:e0:e2:76:ab:d3:16:eb:d6:31:d9:0f: 83:11:36:91:ab:ce:15:d3:bd:54:70:12:aa:cc:35: 9d:5d:d9:2f:b4:0e:b9:62:84:63:07:2c:e5:15:48: 21:ba:f6:65:84:b4:fd:26:ff:bc:16:54:9e:90:8b: ec:70:c7:b8:38:3d:69:bd:e5:9a:33:43:3c:6b:76: b6:ad:02:b2:5a:23:36:b6:90:7f:91:d5:e2:bf:a9: e0:d6:27:cd:76:99:95:99:bc:cb:0e:a6:bc:d1:d5: 3e:0a:d2:2b:f5:22:4c:2c:3c:bd:bd:6f:e2:92:ce: fe:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9D:36:D1:E6:DB:4D:08:6E:8A:E8:7A:9A:82:4F:5A:F1:ED:13:E7 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:40:29:99:29:ee:b9:ba:b2:e9:4e:2c:e3:71:8f:1a:a5:11: 96:9f:f5:31:3b:a7:8d:f3:91:7d:c1:e6:cb:ac:ae:97:71:5f: 23:29:6d:7d:28:9d:a9:60:b9:00:b9:46:d0:92:8d:4a:0d:9f: 9d:6a:b2:ae:37:7c:cc:38:cd:a0:61:fa:3f:8a:62:77:98:dc: 91:79:f2:c1:ad:4a:3f:72:e3:91:a1:6c:bf:5f:9d:d0:72:a3: 3c:85:44:a6:2f:fd:6e:97:17:74:0c:d7:ee:16:61:c5:2c:00: d6:1f:b4:fe:8f:ab:a9:d1:d9:49:23:55:3d:cb:e4:87:c3:35: f2:c4:55:27:ac:66:9d:75:59:62:45:1b:da:cb:db:9a:dd:a2: 4f:93:66:93:b1:7f:9d:74:84:d8:05:c4:18:51:dc:6f:45:86: 1e:4e:e0:d2:40:46:b5:41:cf:da:e4:63:f9:31:8c:65:88:cf: 78:66:d3:a4:64:ca:0a:50:b9:38:5c:5a:af:02:38:6e:95:0f: 39:d0:1f:85:e6:3e:59:1a:41:e7:cb:cc:cf:cb:24:96:31:fc: 3f:0f:4e:72:ed:ec:42:57:ab:2c:76:3d:54:ca:f8:00:85:66: 3b:b7:de:f0:ce:5b:0e:0d:9f:b2:70:47:eb:8d:b5:4d:a8:85: c9:6f:ec:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwNzE1MDMyNDEwWhcNMjUwNzIyMDMyNDEwWjAYMRYwFAYD VQQDEw02ODc1YzlkYS05MjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaFmob5gF0/qNC+KukKl7mNnZP0duJ4dnswxYxkv/awYjSCltJe8/mLkzDFs HiC0oqENNnbuNKDFoOPTVeSONxD4rN9LrMyiJ6mxtQU6FCxxKpqmwvyVKguUK+c1 3rs2s2pDKxkXuCG0QFJXWDWDLUEaFkPpwI/apQcD9KY1XfGVt1paIfK0hcWk4OJ2 q9MW69Yx2Q+DETaRq84V071UcBKqzDWdXdkvtA65YoRjByzlFUghuvZlhLT9Jv+8 FlSekIvscMe4OD1pveWaM0M8a3a2rQKyWiM2tpB/kdXiv6ng1ifNdpmVmbzLDqa8 0dU+CtIr9SJMLDy9vW/iks7+vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCdNtHm 200IboroepqCT1rx7RPnMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKQCmZKe65urLpTizjcY8apRGWn/UxO6eN85F9webLrK6XcV8jKW19 KJ2pYLkAuUbQko1KDZ+darKuN3zMOM2gYfo/imJ3mNyRefLBrUo/cuORoWy/X53Q cqM8hUSmL/1ulxd0DNfuFmHFLADWH7T+j6up0dlJI1U9y+SHwzXyxFUnrGaddVli RRvay9ua3aJPk2aTsX+ddITYBcQYUdxvRYYeTuDSQEa1Qc/a5GP5MYxliM94ZtOk ZMoKULk4XFqvAjhulQ850B+F5j5ZGkHny8zPyySWMfw/D05y7exCV6ssdj1UyvgA hWY7t97wzlsODZ+ycEfrjbVNqIXJb+w7 -----END CERTIFICATE-----Generated at Wed Jul 16 23:09:47 2025 by rpki-client