$ rpki-client -vvf rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft (raw, json) Hash identifier: SIBLSTCX0JSzSYV3FQgpDNrWjvgUNYiAgv83S6fhHkI= Subject key identifier: A6:BB:12:17:2A:5F:C8:50:84:F5:89:2B:11:F7:64:09:19:7C:A5:5D Authority key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 Certificate issuer: /CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft Manifest number: 0682 Signing time: Wed 02 Jul 2025 22:34:46 +0000 Manifest this update: Wed 02 Jul 2025 22:34:46 +0000 Manifest next update: Wed 09 Jul 2025 22:34:46 +0000 Files and hashes: 1: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl (hash: e0/0IzMTUU+swyeJi3kvUFWxPFyH+TfIafJg+jXn/Wc=) 2: 546C2E447BD711EB8DB97853C4F9AE02.roa (hash: LymCYpP9ODjDnMZgIvd8/QCM8E6rGc1JYF+pBCdV8o4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D05C, serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Validity Not Before: Jul 2 22:34:46 2025 GMT Not After : Jul 9 22:34:46 2025 GMT Subject: CN=6865b406-e4e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3c:a3:30:e1:47:b7:35:1c:4e:a2:a0:a0:2b: 07:a6:7a:bb:07:a7:41:79:a2:4e:06:43:08:2e:2f: 05:04:ed:fb:62:28:75:41:cc:45:43:cb:ed:db:17: 84:f3:97:db:d5:07:0e:6c:a4:14:5d:f1:4d:cf:c8: 4a:23:3b:31:29:83:5c:c3:8d:8a:d4:b4:93:ec:5b: a8:d4:84:10:67:1a:57:e7:fa:ba:a9:c9:d2:80:6c: 92:61:98:29:07:e4:a4:5b:c3:a4:c7:ad:3e:b3:29: bc:bd:43:b5:bd:f2:b6:d4:ce:c2:3e:45:2c:a0:dc: f9:46:53:75:d4:c9:d8:ff:c9:44:cf:de:aa:4b:a1: 5a:bf:8c:07:2e:df:18:f7:c8:4d:90:59:1a:e8:99: 2b:18:dd:dc:9d:52:f9:65:8c:11:73:c7:16:20:93: f5:bd:b8:f9:f0:89:20:1a:c8:d7:08:8f:e6:27:dd: 1d:91:72:e4:1f:74:af:1c:04:e3:68:37:44:cc:d6: 26:0e:42:8c:82:93:4d:86:57:fc:83:68:c6:59:c7: 56:91:4f:60:63:c8:8e:21:af:f8:5f:0f:72:9f:42: f3:94:a8:bb:dd:b9:ea:2c:a7:39:17:69:2d:c2:f4: 56:35:3b:35:a0:3e:14:6e:86:51:d9:70:4c:89:16: 02:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BB:12:17:2A:5F:C8:50:84:F5:89:2B:11:F7:64:09:19:7C:A5:5D X509v3 Authority Key Identifier: keyid:C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:a2:50:d5:51:26:e6:05:4a:bd:28:65:57:64:2c:a4:12:46: fd:6e:20:9f:2e:38:4c:c9:94:a7:5d:99:bb:c5:a2:c3:ee:44: 1f:2f:8e:dc:92:db:79:5f:0e:92:83:3f:ef:40:e4:91:9f:38: 6e:75:7a:75:9e:e7:c9:cb:65:5d:9a:32:bb:90:1c:19:c2:4a: 48:68:47:75:16:11:83:dd:9e:3c:e3:ca:e3:3a:3c:42:14:74: 4d:2e:fe:69:54:b8:76:07:be:c2:eb:74:7f:79:80:2c:03:b4: 01:ab:9d:d6:e8:a0:b7:60:8f:c3:e4:7e:9b:d1:3e:c1:d1:85: 1f:f7:c3:ec:03:a0:c8:1c:ec:78:a6:2c:f6:a8:b9:24:77:a8: 51:6c:99:7d:31:36:92:ff:60:b5:6c:d0:9e:72:a4:6f:39:ac: 4c:15:e1:66:d5:6e:0f:6a:73:56:72:77:4f:5c:fc:31:83:e9: ac:7b:7d:23:be:5c:95:ce:2e:0a:d5:02:d2:2d:2e:4c:54:56: 98:07:58:42:e0:15:7a:82:b9:80:36:7b:ed:f0:77:a6:7b:8d: 6f:47:54:47:72:6d:45:5b:d4:d6:c4:0d:1e:cb:bc:43:b9:2c: f5:f5:94:b0:88:98:ad:94:4f:0a:0a:41:a6:3c:30:70:73:58: 4c:0d:49:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwNUMxMTAvBgNVBAUTKEM2OTM5OUIxMzJFMUFFNkIyRUEzMTE2RTE0QjEwMDFD MDgxOUREQTkwHhcNMjUwNzAyMjIzNDQ2WhcNMjUwNzA5MjIzNDQ2WjAYMRYwFAYD VQQDEw02ODY1YjQwNi1lNGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDyjMOFHtzUcTqKgoCsHpnq7B6dBeaJOBkMILi8FBO37Yih1QcxFQ8vt2xeE 85fb1QcObKQUXfFNz8hKIzsxKYNcw42K1LST7Fuo1IQQZxpX5/q6qcnSgGySYZgp B+SkW8Okx60+sym8vUO1vfK21M7CPkUsoNz5RlN11MnY/8lEz96qS6Fav4wHLt8Y 98hNkFka6JkrGN3cnVL5ZYwRc8cWIJP1vbj58IkgGsjXCI/mJ90dkXLkH3SvHATj aDdEzNYmDkKMgpNNhlf8g2jGWcdWkU9gY8iOIa/4Xw9yn0LzlKi73bnqLKc5F2kt wvRWNTs1oD4UboZR2XBMiRYCVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa7Ehcq X8hQhPWJKxH3ZAkZfKVdMB8GA1UdIwQYMBaAFMaTmbEy4a5rLqMRbhSxABwIGd2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDA1Qy9ERUNFMEYwQTdC RDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJtc3VveEZ1RkxFQUhBZ1oz YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwT1pzVExocm1zdW94RnVGTEVBSEFnWjNhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDA1Qy9ERUNFMEYwQTdCRDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJt c3VveEZ1RkxFQUhBZ1ozYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPolDVUSbmBUq9KGVXZCykEkb9biCfLjhMyZSnXZm7xaLD7kQfL47c ktt5Xw6Sgz/vQOSRnzhudXp1nufJy2VdmjK7kBwZwkpIaEd1FhGD3Z4848rjOjxC FHRNLv5pVLh2B77C63R/eYAsA7QBq53W6KC3YI/D5H6b0T7B0YUf98PsA6DIHOx4 piz2qLkkd6hRbJl9MTaS/2C1bNCecqRvOaxMFeFm1W4PanNWcndPXPwxg+mse30j vlyVzi4K1QLSLS5MVFaYB1hC4BV6grmANnvt8Heme41vR1RHcm1FW9TWxA0ey7xD uSz19ZSwiJitlE8KCkGmPDBwc1hMDUn1 -----END CERTIFICATE-----Generated at Wed Jul 2 23:40:51 2025 by rpki-client