$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: nbsfjquabS8HklS4G63pnNMLIShZfrvmQQRkJZiDmQo= Subject key identifier: 94:0A:74:1F:9D:09:FB:D0:05:CF:02:93:1F:89:08:64:74:C5:F1:3F Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 0279 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 0276 Signing time: Sat 05 Jul 2025 02:17:00 +0000 Manifest this update: Sat 05 Jul 2025 02:16:59 +0000 Manifest next update: Sat 12 Jul 2025 02:16:59 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: BnHxxRO22spFliC/R2uoz8bYxjdqvJNJI/S8AGReQro=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: rj0KTjzf+DtNN3R81snVNcDYp+a1rWXY0u8rHIUHCk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Jul 5 02:16:59 2025 GMT Not After : Jul 12 02:16:59 2025 GMT Subject: CN=68688b1c-aece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:24:fb:c9:bc:13:c5:e2:d7:01:11:76:96:ac: d8:f0:19:21:b8:4e:16:9e:f2:54:20:41:ef:89:a3: d1:38:bf:d2:98:53:9c:5f:d3:41:0b:bd:fb:57:59: 86:d8:ad:a2:89:20:7f:0c:4b:61:eb:0f:b9:d7:9b: bb:05:95:5b:3d:ec:ef:ef:79:1e:06:4a:cb:bc:a6: 0d:fa:17:30:a0:47:67:f6:8d:3e:e8:11:ab:a1:ac: 3f:04:a5:2d:cf:b0:40:22:7a:ad:b9:f8:80:27:ef: ba:d6:99:09:44:2b:bf:6c:3d:4c:8b:16:99:49:b9: 44:06:68:80:d1:d3:23:7b:6e:31:90:b9:2c:ad:62: 90:ef:da:b7:42:19:8a:4a:29:e1:0a:ec:44:11:dd: 1f:da:7c:4c:1f:96:19:52:a5:f8:f0:2d:93:dc:38: ad:4c:b5:81:30:20:cf:0f:35:89:f9:b9:81:28:03: a9:8c:4d:8a:1b:b3:c1:ad:5d:ba:8e:93:d1:b9:a2: 3b:57:04:de:b9:cc:c1:66:00:2c:9d:27:9c:ed:98: 97:7d:ef:fd:b1:53:f8:b6:4b:ec:d3:a7:9e:2b:02: 5f:c4:14:64:63:76:4e:4a:04:e1:da:0f:21:c2:5c: b9:10:b4:50:0c:7b:2f:1a:86:92:6e:ab:9f:c4:50: ff:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0A:74:1F:9D:09:FB:D0:05:CF:02:93:1F:89:08:64:74:C5:F1:3F X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:99:ec:63:c7:06:d3:84:bc:f0:7e:f2:5f:73:b7:59:c9:02: 06:6a:3f:5d:d9:a3:70:56:0c:be:b2:cb:21:d0:c0:d8:1a:4b: 19:f5:ae:7c:f6:67:4f:db:ae:d8:d4:6c:18:8b:ff:5d:f6:99: 2b:89:1c:2b:0b:3c:3c:03:44:a4:c5:4a:05:fd:63:c2:96:99: d1:d9:b7:46:ae:8f:1d:23:fc:c7:83:27:dc:34:d5:54:35:a5: b7:0f:54:a2:4a:1e:94:b5:82:45:a6:fa:52:e3:1c:4c:87:84: 6a:ee:50:53:7b:53:b2:fc:35:4a:a8:57:75:0d:f8:23:1a:b6: d9:6b:26:f3:1f:09:c1:d3:69:47:64:c9:80:e0:6c:9e:a0:6b: d6:63:13:84:c9:81:c9:75:99:b7:69:c3:fa:61:ae:8f:53:66: 75:4d:91:41:18:b1:8c:86:1b:cd:ac:41:e4:b6:90:eb:1d:a4: 52:45:62:9f:85:81:b0:3c:19:ba:10:94:44:22:d5:2d:5c:fc: 2b:ea:39:55:0c:70:33:b7:6a:20:16:8a:f4:92:7c:45:2c:c0: 04:86:29:a5:5f:9b:07:10:85:16:72:fd:6c:fa:b0:27:94:a4: 78:12:71:79:53:0d:9c:37:08:6c:72:83:f9:c6:95:a2:fd:ac: 36:5a:3b:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUwNzA1MDIxNjU5WhcNMjUwNzEyMDIxNjU5WjAYMRYwFAYD VQQDEw02ODY4OGIxYy1hZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CT7ybwTxeLXARF2lqzY8BkhuE4WnvJUIEHviaPROL/SmFOcX9NBC737V1mG 2K2iiSB/DEth6w+515u7BZVbPezv73keBkrLvKYN+hcwoEdn9o0+6BGroaw/BKUt z7BAInqtufiAJ++61pkJRCu/bD1MixaZSblEBmiA0dMje24xkLksrWKQ79q3QhmK SinhCuxEEd0f2nxMH5YZUqX48C2T3DitTLWBMCDPDzWJ+bmBKAOpjE2KG7PBrV26 jpPRuaI7VwTeuczBZgAsnSec7ZiXfe/9sVP4tkvs06eeKwJfxBRkY3ZOSgTh2g8h wly5ELRQDHsvGoaSbqufxFD/AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQKdB+d CfvQBc8Ckx+JCGR0xfE/MB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8mexjxwbThLzwfvJfc7dZyQIGaj9d2aNwVgy+sssh0MDYGksZ9a58 9mdP267Y1GwYi/9d9pkriRwrCzw8A0SkxUoF/WPClpnR2bdGro8dI/zHgyfcNNVU NaW3D1SiSh6UtYJFpvpS4xxMh4Rq7lBTe1Oy/DVKqFd1DfgjGrbZaybzHwnB02lH ZMmA4GyeoGvWYxOEyYHJdZm3acP6Ya6PU2Z1TZFBGLGMhhvNrEHktpDrHaRSRWKf hYGwPBm6EJREItUtXPwr6jlVDHAzt2ogFor0knxFLMAEhimlX5sHEIUWcv1s+rAn lKR4EnF5Uw2cNwhscoP5xpWi/aw2WjtK -----END CERTIFICATE-----Generated at Sat Jul 5 11:30:10 2025 by rpki-client