$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: A5H6BkvDuze1r1Jhw3Q2p5z28mMbivjJ7GzeFpidzWM= Subject key identifier: 11:F2:9F:36:CF:36:73:33:65:8D:E1:67:17:4B:75:2D:F3:3C:8F:77 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 018A Signing time: Thu 03 Jul 2025 03:37:43 +0000 Manifest this update: Thu 03 Jul 2025 03:37:42 +0000 Manifest next update: Thu 10 Jul 2025 03:37:42 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: aMNCK+fCBTb6r7VUX/6jKwAaU07TV7k5z12kQxBrw8w=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4, serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: Jul 3 03:37:42 2025 GMT Not After : Jul 10 03:37:42 2025 GMT Subject: CN=6865fb06-eab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ee:16:80:78:1b:df:0b:4a:4e:83:21:c8:62: b7:e1:24:7a:a9:0d:80:ff:10:07:93:9b:a5:c5:d2: b9:cf:10:58:36:6a:25:ef:cc:eb:b0:e7:07:19:dd: f7:c9:60:5e:8c:f7:55:f7:74:85:05:dc:64:00:5f: 71:18:55:6c:83:95:cf:5e:b2:09:50:d3:14:46:cb: bd:39:b3:43:93:b9:73:5f:dc:28:9a:82:e8:35:91: 6d:6e:8d:07:cd:3a:24:93:8b:70:f4:f7:76:0d:f7: a0:77:e6:1e:40:af:01:08:82:4b:a2:b5:f0:50:57: 36:0f:a1:0d:57:9a:a7:b5:81:0c:93:7e:eb:78:48: cd:38:3c:65:16:04:d5:86:c8:cb:3f:28:01:71:59: 9d:92:0b:38:7a:37:5f:6e:11:61:2b:c2:99:73:cb: 44:73:bf:4a:8f:01:68:9b:15:7b:64:e0:82:aa:ad: cb:c7:08:4f:1f:0c:11:53:fb:13:94:f6:3a:2a:ff: 67:60:e5:25:7f:d2:a0:07:c4:71:35:2b:9c:c5:4d: 5d:cd:fb:14:34:4a:d8:2c:77:ce:e9:e8:58:e2:7e: 6c:17:d5:34:39:2a:05:34:a4:38:7c:08:6e:f9:1f: 34:01:48:18:37:e8:4e:da:4f:5e:ba:97:a8:25:27: 6c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F2:9F:36:CF:36:73:33:65:8D:E1:67:17:4B:75:2D:F3:3C:8F:77 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:6b:4a:36:4a:f6:f8:07:fe:61:e6:5d:7c:6e:d7:f9:17:79: 2e:07:d8:81:f5:f0:b9:f0:27:35:08:3c:f4:f8:9d:d9:af:b2: ad:a5:73:ef:ce:2f:4f:a0:ce:49:ac:6e:df:e2:26:ae:98:58: d7:7a:bf:09:d0:a4:37:7c:49:f8:a3:9c:c4:14:a1:df:ac:7e: 16:89:0e:c7:f0:e9:2a:8c:b2:72:6d:00:7e:fe:a7:b3:ee:17: c2:bb:51:6a:a5:d3:36:ec:b8:14:ed:66:c6:3e:63:b7:f6:45: 30:0c:b6:16:df:af:92:04:d0:aa:dc:c5:7b:9c:9a:92:a0:b1: 52:fe:03:e5:5e:5f:4b:a4:e8:24:53:09:22:0b:80:57:a0:eb: c4:96:bc:88:4f:3b:a0:37:cc:9b:7f:2f:b7:cb:0f:5e:c5:0f: 63:06:e6:91:94:95:87:2c:ac:9d:6f:ff:5a:8a:a9:47:3f:81: b7:4e:80:df:f2:dd:b7:22:4b:a2:b1:80:60:7c:0b:ab:35:32: a2:97:a6:95:73:1a:cd:98:da:47:6b:68:c7:0a:47:6d:23:4b: 3c:12:8b:14:7e:4b:42:b6:6e:0e:02:7c:10:a1:87:db:ab:c4: b0:97:f5:7d:20:c5:3a:00:98:00:d5:0f:51:28:e1:1d:64:bc: e6:4b:7a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUwNzAzMDMzNzQyWhcNMjUwNzEwMDMzNzQyWjAYMRYwFAYD VQQDEw02ODY1ZmIwNi1lYWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+4WgHgb3wtKToMhyGK34SR6qQ2A/xAHk5ulxdK5zxBYNmol78zrsOcHGd33 yWBejPdV93SFBdxkAF9xGFVsg5XPXrIJUNMURsu9ObNDk7lzX9womoLoNZFtbo0H zTokk4tw9Pd2Dfegd+YeQK8BCIJLorXwUFc2D6ENV5qntYEMk37reEjNODxlFgTV hsjLPygBcVmdkgs4ejdfbhFhK8KZc8tEc79KjwFomxV7ZOCCqq3LxwhPHwwRU/sT lPY6Kv9nYOUlf9KgB8RxNSucxU1dzfsUNErYLHfO6ehY4n5sF9U0OSoFNKQ4fAhu +R80AUgYN+hO2k9eupeoJSds6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHynzbP NnMzZY3hZxdLdS3zPI93MB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCea0o2Svb4B/5h5l18btf5F3kuB9iB9fC58Cc1CDz0+J3Zr7KtpXPv zi9PoM5JrG7f4iaumFjXer8J0KQ3fEn4o5zEFKHfrH4WiQ7H8OkqjLJybQB+/qez 7hfCu1FqpdM27LgU7WbGPmO39kUwDLYW36+SBNCq3MV7nJqSoLFS/gPlXl9LpOgk UwkiC4BXoOvElryITzugN8ybfy+3yw9exQ9jBuaRlJWHLKydb/9aiqlHP4G3ToDf 8t23IkuisYBgfAurNTKil6aVcxrNmNpHa2jHCkdtI0s8EosUfktCtm4OAnwQoYfb q8Swl/V9IMU6AJgA1Q9RKOEdZLzmS3ov -----END CERTIFICATE-----Generated at Thu Jul 3 10:08:50 2025 by rpki-client