$ rpki-client -vvf rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft File: -XxrnwabbALLPY6tWvc-UGwIyjg.mft (raw, json) Hash identifier: Y6RoX5Ui8YZAZ32NjWjvs0F6Wt7dbhWp3CKSusx7wnQ= Subject key identifier: 4F:24:7F:13:55:A8:F5:3F:1D:45:68:33:9F:78:E1:19:2D:87:76:51 Authority key identifier: F9:7C:6B:9F:06:9B:6C:02:CB:3D:8E:AD:5A:F7:3E:50:6C:08:CA:38 Certificate issuer: /CN=A914DB69/serialNumber=F97C6B9F069B6C02CB3D8EAD5AF73E506C08CA38 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft Manifest number: 0140 Signing time: Sun 29 Jun 2025 03:30:17 +0000 Manifest this update: Sun 29 Jun 2025 03:30:16 +0000 Manifest next update: Sun 06 Jul 2025 03:30:16 +0000 Files and hashes: 1: -XxrnwabbALLPY6tWvc-UGwIyjg.crl (hash: RHGC7KV1O0FkuK3D9XNuPpQlMPOdXRpWhTkqUoDaBBQ=) 2: C4AA7A3A6E5F11EE9F66E967C4F9AE02.roa (hash: B+UIB58IevJFHi1QUj4sqmfL/RMK0LGyhhucuugtqng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.crl rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DB69, serialNumber=F97C6B9F069B6C02CB3D8EAD5AF73E506C08CA38 Validity Not Before: Jun 29 03:30:16 2025 GMT Not After : Jul 6 03:30:16 2025 GMT Subject: CN=6860b349-eaf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d8:46:40:35:47:8f:7d:8d:59:ac:11:e0:be: 5e:94:d8:71:91:94:f6:cb:c7:3d:0b:3b:29:31:31: 55:88:86:c7:96:ab:06:01:4e:8e:71:03:37:58:49: 1f:e7:4a:4a:d0:08:5f:29:3d:e2:e1:18:41:4f:53: 83:85:96:06:41:80:ac:cc:00:74:82:bb:23:3e:0b: 90:2d:cd:f5:a0:88:0d:19:49:4f:2e:45:94:6e:ae: bf:93:c2:89:32:bd:05:c8:76:d9:d4:d3:cd:e4:1b: 0a:80:99:11:b7:1e:28:e7:41:f9:3d:3c:c3:bb:61: 4b:3b:7f:db:6c:1c:1d:e0:69:89:09:37:a2:66:29: d4:0e:4e:b2:89:58:d5:88:86:d7:65:bc:8b:6a:6a: a4:63:e0:d5:5a:25:32:5e:68:19:e2:c0:ab:a2:f1: 33:7a:6e:89:03:40:39:cd:7f:54:d6:a3:c0:79:0f: c3:2c:b4:cc:4f:fc:4e:d4:08:4f:84:6b:53:92:9c: 36:93:a4:a8:91:2f:5a:bd:db:0d:36:b3:9b:45:f5: 04:be:83:14:12:2b:df:ae:a8:10:e8:10:35:66:6f: a1:92:ae:5d:e6:cd:aa:50:5f:8e:1d:aa:fa:8f:2e: 69:95:b4:6f:d1:4b:ca:6e:9f:b4:3a:15:41:2a:4f: 50:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:24:7F:13:55:A8:F5:3F:1D:45:68:33:9F:78:E1:19:2D:87:76:51 X509v3 Authority Key Identifier: keyid:F9:7C:6B:9F:06:9B:6C:02:CB:3D:8E:AD:5A:F7:3E:50:6C:08:CA:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:2c:04:75:85:35:50:17:9c:68:4c:43:ab:c0:86:65:52:53: ad:86:c8:e8:f7:0a:ef:8b:e7:a0:e5:15:2e:82:f3:27:10:be: 06:6f:98:cc:9e:5d:b6:df:39:bc:e7:91:13:04:fc:56:38:2c: f3:3b:73:a2:4b:3a:d9:21:14:16:e8:28:e2:7a:1d:d0:a1:9c: 9a:f4:fd:5a:dd:55:31:b0:f8:c4:5a:ac:ec:1e:c5:b7:75:e6: ad:81:4f:2b:5a:da:37:41:a2:99:cc:15:71:5e:5e:2b:8b:58: 09:1d:a8:e9:7e:50:92:50:3a:a8:5a:d1:7e:d4:77:f5:21:74: 3c:c2:6b:6e:40:1b:1b:df:3e:f1:9e:23:e1:3d:ee:4d:a5:96: f7:d8:3e:d7:65:f3:1d:06:97:68:fa:24:da:9f:c3:2e:6f:bd: 35:c9:79:da:ca:ec:09:d1:3e:c2:6f:a9:5d:90:9d:7e:8e:36: ce:f0:84:db:14:73:6b:0a:23:8c:2b:bb:24:3c:b9:03:0b:ab: f3:79:e0:da:84:b9:57:81:d4:c1:0e:ff:1b:03:eb:9b:af:48: 0b:68:f2:13:f1:9d:17:cd:70:a5:de:e2:c0:26:eb:7b:c2:e4: 30:35:0b:c3:fd:1c:c9:12:93:94:3e:7b:37:01:67:39:ec:18: 8e:2a:7a:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERCNjkxMTAvBgNVBAUTKEY5N0M2QjlGMDY5QjZDMDJDQjNEOEVBRDVBRjczRTUw NkMwOENBMzgwHhcNMjUwNjI5MDMzMDE2WhcNMjUwNzA2MDMzMDE2WjAYMRYwFAYD VQQDEw02ODYwYjM0OS1lYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAythGQDVHj32NWawR4L5elNhxkZT2y8c9CzspMTFViIbHlqsGAU6OcQM3WEkf 50pK0AhfKT3i4RhBT1ODhZYGQYCszAB0grsjPguQLc31oIgNGUlPLkWUbq6/k8KJ Mr0FyHbZ1NPN5BsKgJkRtx4o50H5PTzDu2FLO3/bbBwd4GmJCTeiZinUDk6yiVjV iIbXZbyLamqkY+DVWiUyXmgZ4sCrovEzem6JA0A5zX9U1qPAeQ/DLLTMT/xO1AhP hGtTkpw2k6SokS9avdsNNrObRfUEvoMUEivfrqgQ6BA1Zm+hkq5d5s2qUF+OHar6 jy5plbRv0UvKbp+0OhVBKk9Q+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8kfxNV qPU/HUVoM5944Rkth3ZRMB8GA1UdIwQYMBaAFPl8a58Gm2wCyz2OrVr3PlBsCMo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REI2OS9EQTg2MENDODZF NUMxMUVFOUMwMTMzNjFDNEY5QUUwMi8tWHhybndhYmJBTExQWTZ0V3ZjLVVHd0l5 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeHJud2FiYkFMTFBZNnRXdmMtVUd3SXlqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REI2OS9EQTg2MENDODZFNUMxMUVFOUMwMTMzNjFDNEY5QUUwMi8tWHhybndhYmJB TExQWTZ0V3ZjLVVHd0l5amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9LAR1hTVQF5xoTEOrwIZlUlOthsjo9wrvi+eg5RUugvMnEL4Gb5jM nl223zm855ETBPxWOCzzO3OiSzrZIRQW6Cjieh3QoZya9P1a3VUxsPjEWqzsHsW3 deatgU8rWto3QaKZzBVxXl4ri1gJHajpflCSUDqoWtF+1Hf1IXQ8wmtuQBsb3z7x niPhPe5NpZb32D7XZfMdBpdo+iTan8Mub701yXnayuwJ0T7Cb6ldkJ1+jjbO8ITb FHNrCiOMK7skPLkDC6vzeeDahLlXgdTBDv8bA+ubr0gLaPIT8Z0XzXCl3uLAJut7 wuQwNQvD/RzJEpOUPns3AWc57BiOKnqR -----END CERTIFICATE-----Generated at Sun Jun 29 14:07:54 2025 by rpki-client