$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: brduI17Eek7fArLkbviEOThQIzvAzmudAJ9imziBWM0= Subject key identifier: A8:37:ED:5B:03:90:24:89:D4:AA:04:6A:A4:55:20:EE:70:80:6A:AE Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 016D Signing time: Thu 03 Jul 2025 04:06:45 +0000 Manifest this update: Thu 03 Jul 2025 04:06:44 +0000 Manifest next update: Thu 10 Jul 2025 04:06:44 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: PgfHspDSoJf1WY86u5hCKgJ0P42RevDN7rTo9xTkZLU=) 2: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: RH2tA+pDkL65URt1jd9V89/t/7TTanl0u6hNZrCKG3I=) 3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: 3zCR20o/KfK/K9C/wTlGB6P7rn/kp0/zxFVVdoqdb8g=) 4: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: mR/q70Jk2CRrQySn0SCNQ9Ok1ptByPEBAf3/SOp/6zs=) 5: A16CA728B9EA11EFACF35552C4F9AE02.roa (hash: LIplw0gjYt5TLtVYJx2JRQCdxPLCfIKOl8NOlftLuUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: Jul 3 04:06:44 2025 GMT Not After : Jul 10 04:06:44 2025 GMT Subject: CN=686601d4-edd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f4:0c:db:d6:dc:6e:60:01:16:ae:b6:6d:4f: 27:0f:26:91:2a:c6:24:6d:0b:60:ab:fe:99:ec:a4: 7c:55:f4:0f:4a:98:b4:ff:4e:ce:97:ff:60:56:58: b8:bf:61:76:15:9d:8f:c3:93:2b:e1:19:61:c9:28: 50:be:27:6c:0a:64:ce:06:1a:13:d0:34:46:ee:f6: e5:f2:03:ad:26:48:72:36:6e:ae:05:10:96:c6:a6: 7d:ee:b0:04:ee:f4:ac:59:23:de:e4:ea:e4:06:79: 1a:e5:3b:43:7d:a1:97:8c:c9:f5:0a:67:df:8a:0e: 89:b9:12:c7:f8:8b:8e:d8:1b:8b:bc:6d:d3:f3:06: 10:64:a4:f6:7e:28:1d:a3:fe:7b:4c:33:02:53:3a: 28:a7:79:97:0b:ae:36:9e:b2:9e:fa:05:ae:cb:39: f5:9f:46:47:39:9c:3a:36:d4:33:8b:2e:ed:68:52: 72:fa:d3:cc:f9:b5:fa:24:62:fb:79:3d:d9:b0:62: 23:f2:b8:04:ac:2c:09:73:4f:06:23:dc:ac:67:f9: d5:d7:7a:d4:55:33:57:f8:0b:95:ce:0a:5c:cd:a6: 83:43:71:81:cc:d2:0b:4c:4e:98:2c:92:b2:6b:b1: 02:86:a8:63:aa:2c:c3:fc:cc:40:32:f5:12:57:4f: d5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:37:ED:5B:03:90:24:89:D4:AA:04:6A:A4:55:20:EE:70:80:6A:AE X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b2:7e:b5:f7:84:d3:9f:cc:85:3a:21:27:74:4b:c3:a9:b2: 11:4b:9d:ee:0c:e2:cf:31:b8:12:52:e9:4a:49:2a:9f:c4:d8: a3:84:db:6b:a5:1f:b6:3f:05:29:2d:4a:91:be:91:ea:fc:d3: 47:95:c3:c4:95:d3:0f:7c:91:65:cb:72:77:c8:ea:31:20:63: 8d:c9:d8:a4:e0:f7:da:41:45:2d:2d:7b:70:f6:89:ff:bf:c9: 5c:08:db:fe:69:f1:7f:99:58:57:0f:0e:92:58:8a:7b:64:42: 3d:cb:c2:2c:d2:06:92:44:47:41:4d:2f:9b:84:0c:6e:a2:57: aa:b9:b5:be:df:a9:eb:3f:ea:c1:b4:2a:6b:23:71:30:ea:75: 66:2b:bc:dc:d4:79:12:3b:4f:74:8a:58:82:8f:d1:e3:18:db: 5d:89:a1:19:af:04:b7:1e:96:e6:12:d4:3b:d8:44:c2:86:40: 00:03:39:1f:85:5d:c9:07:2a:c0:74:92:d2:c4:67:35:93:b7: 52:dd:92:1c:a7:aa:85:80:8d:b0:04:03:3b:3f:99:0a:44:20: a7:b6:bc:21:4c:b9:02:52:65:0e:4e:75:8b:b5:8b:5d:f8:4f: ec:51:46:6f:e5:fd:c1:f9:eb:a8:9a:59:7f:4a:9a:ba:56:67: 65:aa:5b:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUwNzAzMDQwNjQ0WhcNMjUwNzEwMDQwNjQ0WjAYMRYwFAYD VQQDEw02ODY2MDFkNC1lZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PQM29bcbmABFq62bU8nDyaRKsYkbQtgq/6Z7KR8VfQPSpi0/07Ol/9gVli4 v2F2FZ2Pw5Mr4RlhyShQvidsCmTOBhoT0DRG7vbl8gOtJkhyNm6uBRCWxqZ97rAE 7vSsWSPe5OrkBnka5TtDfaGXjMn1Cmffig6JuRLH+IuO2BuLvG3T8wYQZKT2figd o/57TDMCUzoop3mXC642nrKe+gWuyzn1n0ZHOZw6NtQziy7taFJy+tPM+bX6JGL7 eT3ZsGIj8rgErCwJc08GI9ysZ/nV13rUVTNX+AuVzgpczaaDQ3GBzNILTE6YLJKy a7EChqhjqizD/MxAMvUSV0/VEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKg37VsD kCSJ1KoEaqRVIO5wgGquMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgsn6194TTn8yFOiEndEvDqbIRS53uDOLPMbgSUulKSSqfxNijhNtr pR+2PwUpLUqRvpHq/NNHlcPEldMPfJFly3J3yOoxIGONydik4PfaQUUtLXtw9on/ v8lcCNv+afF/mVhXDw6SWIp7ZEI9y8Is0gaSREdBTS+bhAxuolequbW+36nrP+rB tCprI3Ew6nVmK7zc1HkSO090iliCj9HjGNtdiaEZrwS3HpbmEtQ72ETChkAAAzkf hV3JByrAdJLSxGc1k7dS3ZIcp6qFgI2wBAM7P5kKRCCntrwhTLkCUmUOTnWLtYtd +E/sUUZv5f3B+euomll/Spq6Vmdlqlvb -----END CERTIFICATE-----Generated at Thu Jul 3 10:11:58 2025 by rpki-client