$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: JjALNtwvGBaPf9Hy6DJ9myvW+h/jdu7H3AH/4s03hXY= Subject key identifier: 1B:0C:7A:F6:E0:20:1E:FA:F7:FB:97:E2:27:B4:AD:E9:0A:6C:A7:60 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 0664 Signing time: Wed 02 Jul 2025 22:46:56 +0000 Manifest this update: Wed 02 Jul 2025 22:46:55 +0000 Manifest next update: Wed 09 Jul 2025 22:46:55 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: ub6D8x71n72DiuYP/7clkME7xMDxIKqXXs6+tJV+reg=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Jul 2 22:46:55 2025 GMT Not After : Jul 9 22:46:55 2025 GMT Subject: CN=6865b6e0-f86b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d6:c1:80:b8:ee:62:ab:4e:79:cc:b3:8e:a7: 0f:1e:9f:d7:be:be:55:85:5b:ee:50:19:aa:74:91: d6:a1:48:96:5e:4e:bd:3d:6e:5c:60:8f:08:49:8a: 14:7a:d6:3a:85:f7:a4:cc:38:55:99:d5:29:c3:af: fc:6d:69:28:3d:9c:a3:9b:24:a1:81:f2:3e:da:9d: 03:e7:a5:b6:37:df:40:27:83:65:b1:3f:d0:06:f0: 10:9a:8e:aa:b8:d9:71:ad:13:7c:40:38:0a:bd:75: 1a:34:a7:75:2a:a3:fd:90:58:20:52:c0:93:d1:25: a9:4e:54:96:4d:11:87:94:05:17:55:56:f2:63:a9: 51:90:8b:6b:f1:40:56:f2:9c:59:e1:34:5c:1a:7d: 01:fa:05:d0:eb:cd:36:a6:c4:a9:b9:93:37:65:16: d7:4a:99:cd:4f:af:cc:36:2a:e4:16:8e:97:3d:c9: bc:60:5d:d0:26:af:97:de:ed:d9:92:9d:e1:07:47: b9:1e:82:90:ae:07:f1:af:9a:40:55:84:ff:8f:86: 38:5f:aa:1b:97:c6:3e:bd:47:b2:46:25:85:b0:d3: fb:e6:90:c6:14:b3:0e:09:62:94:a8:25:37:1f:de: 43:09:f8:44:37:3b:44:a1:96:c1:54:11:0f:cd:97: 21:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0C:7A:F6:E0:20:1E:FA:F7:FB:97:E2:27:B4:AD:E9:0A:6C:A7:60 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c6:3e:74:ec:c0:ad:44:f0:67:c0:be:fc:66:a8:6d:08:c3: 7d:e0:08:30:83:a6:29:65:95:69:5b:34:1b:0a:72:05:0a:b7: 51:6b:14:d2:65:25:d9:79:ae:dc:57:11:41:b9:65:6d:3a:72: 95:ca:30:85:74:a6:b3:d0:21:32:91:64:c6:a1:40:a9:a2:59: 44:ff:e9:05:42:a6:19:38:2a:25:4d:4e:e8:88:49:1c:62:b6: 7f:cb:22:3a:4e:68:8d:1e:d9:cb:3e:d5:e2:b2:56:b6:18:0c: 92:e3:3f:61:08:e4:97:f7:d0:dc:e6:0a:47:d9:dd:07:29:be: e3:4e:42:fb:6f:5d:b6:8e:7b:96:58:8f:97:44:97:49:43:14: b4:63:ac:cd:f0:f8:d8:be:8a:34:73:5a:e4:e2:c1:42:12:2a: 50:93:75:7f:31:37:d3:52:b3:67:8e:1f:dd:b2:1d:45:c1:e1: 15:ca:31:15:03:5b:f3:3b:47:9e:9c:0a:e2:e9:36:73:f4:8f: 10:ca:e0:18:24:95:ff:1d:ec:52:fb:bc:78:08:0b:75:45:08: f5:e5:0e:56:1d:14:6b:a2:12:1d:57:10:98:5a:21:b8:30:db: a6:3d:5d:ac:2c:7b:8d:de:43:1f:1a:25:c2:b7:0d:e3:27:61: 61:5f:d4:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUwNzAyMjI0NjU1WhcNMjUwNzA5MjI0NjU1WjAYMRYwFAYD VQQDEw02ODY1YjZlMC1mODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9bBgLjuYqtOecyzjqcPHp/Xvr5VhVvuUBmqdJHWoUiWXk69PW5cYI8ISYoU etY6hfekzDhVmdUpw6/8bWkoPZyjmyShgfI+2p0D56W2N99AJ4NlsT/QBvAQmo6q uNlxrRN8QDgKvXUaNKd1KqP9kFggUsCT0SWpTlSWTRGHlAUXVVbyY6lRkItr8UBW 8pxZ4TRcGn0B+gXQ6802psSpuZM3ZRbXSpnNT6/MNirkFo6XPcm8YF3QJq+X3u3Z kp3hB0e5HoKQrgfxr5pAVYT/j4Y4X6obl8Y+vUeyRiWFsNP75pDGFLMOCWKUqCU3 H95DCfhENztEoZbBVBEPzZchBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsMevbg IB769/uX4ie0rekKbKdgMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7xj507MCtRPBnwL78ZqhtCMN94Agwg6YpZZVpWzQbCnIFCrdRaxTS ZSXZea7cVxFBuWVtOnKVyjCFdKaz0CEykWTGoUCpollE/+kFQqYZOColTU7oiEkc YrZ/yyI6TmiNHtnLPtXisla2GAyS4z9hCOSX99Dc5gpH2d0HKb7jTkL7b122jnuW WI+XRJdJQxS0Y6zN8PjYvoo0c1rk4sFCEipQk3V/MTfTUrNnjh/dsh1FweEVyjEV A1vzO0eenAri6TZz9I8QyuAYJJX/HexS+7x4CAt1RQj15Q5WHRRrohIdVxCYWiG4 MNumPV2sLHuN3kMfGiXCtw3jJ2FhX9TX -----END CERTIFICATE-----Generated at Fri Jul 4 14:47:05 2025 by rpki-client