$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft File: XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft (raw, json) Hash identifier: K6Vvb1XYZIQv9tUm70bFN5s9gTFJWGFdXuGeHTyctfQ= Subject key identifier: 27:58:9E:1B:D3:BC:8F:1B:0A:E2:B6:C1:3E:1E:BB:80:3C:B1:86:F6 Authority key identifier: 5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC Certificate issuer: /CN=A914F870/serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft Manifest number: 54 Signing time: Thu 03 Jul 2025 07:28:09 +0000 Manifest this update: Thu 03 Jul 2025 07:28:09 +0000 Manifest next update: Thu 10 Jul 2025 07:28:09 +0000 Files and hashes: 1: XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl (hash: D9kSVsaNzwR5oewjuiYOgDtnHQbdP6pODmf4S3Iykd4=) 2: 212A832AD7E311EF86266212C4F9AE02.roa (hash: OADH0Zf3ANJ0fVSGo4++5SGmG3UFA33H5Jy/cHOt0/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Validity Not Before: Jul 3 07:28:09 2025 GMT Not After : Jul 10 07:28:09 2025 GMT Subject: CN=68663109-ca11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:01:05:8d:e5:c1:34:8b:a1:c3:6e:28:26: 96:4a:27:e0:ef:8a:c0:62:d4:65:09:37:37:47:36: 02:47:1b:87:ce:64:fc:31:ed:a0:44:10:61:6f:97: a6:f2:b3:40:ef:89:39:d6:f9:93:fe:83:94:3b:9f: 82:22:2f:b3:f4:9f:41:91:e1:87:ff:7a:2f:41:a2: b7:ce:74:e0:eb:6f:b0:89:fe:fe:50:1b:7c:85:43: f9:b2:95:d9:a8:4f:c4:2a:ca:10:8c:d7:5d:c3:f8: d0:6e:22:38:09:1f:0f:30:f5:36:47:e1:46:d4:bd: 46:bb:4b:39:56:55:6f:a8:af:3d:95:be:6f:3b:5d: d6:8a:79:18:f5:e2:08:50:14:96:aa:e9:ef:15:08: e1:7f:59:d2:4d:d6:8e:e8:3c:41:89:d5:c7:e1:46: 79:7e:10:85:dc:87:7f:73:1d:23:9c:cc:e9:b0:44: 34:e3:82:5b:c5:1c:70:fa:4d:cf:60:ff:db:f0:f1: bd:99:b8:54:1d:1a:c2:88:e3:f7:d5:74:91:66:9a: d5:93:bd:55:d4:00:1b:d8:c2:e2:75:60:1e:89:d6: cc:2f:10:1f:d0:4a:ee:07:a1:dc:3b:9b:07:b8:f4: a4:d5:60:b4:0f:b3:70:63:39:29:e5:b5:df:b7:ee: 19:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:58:9E:1B:D3:BC:8F:1B:0A:E2:B6:C1:3E:1E:BB:80:3C:B1:86:F6 X509v3 Authority Key Identifier: keyid:5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:65:5a:75:93:ef:2d:34:0b:55:33:f8:7d:a6:6b:49:da:2f: a6:7a:bc:2c:df:16:c6:eb:7a:01:97:78:b2:6a:d9:81:26:d6: d6:b1:3c:82:79:94:48:ed:8a:31:c3:c2:ef:42:64:8b:d4:20: 7b:be:82:e7:49:5a:c4:28:ee:d4:48:11:fa:15:29:d3:38:09: 44:d8:a3:d7:ab:48:84:a0:3a:de:69:de:35:b3:65:df:8a:8f: 6f:1f:29:aa:f7:97:cd:61:57:92:5a:5c:c1:7d:23:ea:f4:36: 8c:a9:dd:04:d0:53:cf:1e:ba:c4:ff:72:33:d0:9e:42:35:51: fd:09:d5:72:18:a0:30:5d:98:c5:aa:42:9d:15:ff:f8:23:ae: 81:1c:f1:13:be:93:e9:f0:a1:8e:03:1a:8a:d0:e4:2d:68:c5: b8:01:ce:b0:62:cc:33:5c:3a:46:d3:4e:2f:59:1b:f7:de:ff: 0b:38:5a:22:72:03:df:32:aa:11:20:f5:5a:bc:2b:7b:f7:89: e0:2e:57:54:35:ec:28:b8:b5:ae:72:0b:3b:34:58:ff:50:54: d7:ae:02:c0:db:c2:a2:37:e0:b9:16:ec:b5:33:d0:fc:b5:ee: c0:26:7c:e6:29:cf:34:bc:be:02:f0:2c:db:cd:c5:ff:dd:a1: 59:c8:e8:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoNUQ1NUYxNTA5QjZGMDM0MjREMjk0NEY4MTFGODY5OTM4 MDk5QkJCQzAeFw0yNTA3MDMwNzI4MDlaFw0yNTA3MTAwNzI4MDlaMBgxFjAUBgNV BAMTDTY4NjYzMTA5LWNhMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNkAEFjeXBNIuhw24oJpZKJ+DvisBi1GUJNzdHNgJHG4fOZPwx7aBEEGFvl6by s0DviTnW+ZP+g5Q7n4IiL7P0n0GR4Yf/ei9BorfOdODrb7CJ/v5QG3yFQ/myldmo T8QqyhCM113D+NBuIjgJHw8w9TZH4UbUvUa7SzlWVW+orz2Vvm87XdaKeRj14ghQ FJaq6e8VCOF/WdJN1o7oPEGJ1cfhRnl+EIXch39zHSOczOmwRDTjglvFHHD6Tc9g /9vw8b2ZuFQdGsKI4/fVdJFmmtWTvVXUABvYwuJ1YB6J1swvEB/QSu4Hodw7mwe4 9KTVYLQPs3BjOSnltd+37hm3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ1ieG9O8 jxsK4rbBPh67gDyxhvYwHwYDVR0jBBgwFoAUXVXxUJtvA0JNKUT4Efhpk4CZu7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0M5MjQyNDZBRDdF MjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBKTktVVDRFZmhwazRDWnU3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFZYeFVKdHZBMEpOS1VUNEVmaHBrNENadTd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0M5MjQyNDZBRDdFMjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBK TktVVDRFZmhwazRDWnU3dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJZlWnWT7y00C1Uz+H2ma0naL6Z6vCzfFsbregGXeLJq2YEm1taxPIJ5 lEjtijHDwu9CZIvUIHu+gudJWsQo7tRIEfoVKdM4CUTYo9erSISgOt5p3jWzZd+K j28fKar3l81hV5JaXMF9I+r0Noyp3QTQU88eusT/cjPQnkI1Uf0J1XIYoDBdmMWq Qp0V//gjroEc8RO+k+nwoY4DGorQ5C1oxbgBzrBizDNcOkbTTi9ZG/fe/ws4WiJy A98yqhEg9Vq8K3v3ieAuV1Q17Ci4ta5yCzs0WP9QVNeuAsDbwqI34LkW7LUz0Py1 7sAmfOYpzzS8vgLwLNvNxf/doVnI6D0= -----END CERTIFICATE-----Generated at Thu Jul 3 09:49:27 2025 by rpki-client