$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: Ql7mF1/Nu0Q/Xw5cBSDwv7nhjShOawz+Wn6N6FVqW+E= Subject key identifier: ED:A2:84:E5:58:38:05:B5:B5:3D:66:F8:7E:B8:EC:FD:0D:84:99:CB Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 85 Signing time: Thu 03 Jul 2025 06:49:16 +0000 Manifest this update: Thu 03 Jul 2025 06:49:16 +0000 Manifest next update: Thu 10 Jul 2025 06:49:16 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: 7+E4G9zcpOWWik/5IwjiKW/TBGDb+Tl9d96tqeCIQGA=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Jul 3 06:49:16 2025 GMT Not After : Jul 10 06:49:16 2025 GMT Subject: CN=686627ec-e964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2a:f8:67:75:37:b3:25:03:64:cc:5b:67:04: 55:28:95:e4:a2:2c:c0:92:e9:c0:73:7f:62:44:71: 24:56:2e:87:7e:b8:43:ca:a1:33:b4:d5:cb:69:cb: a8:f7:b1:fd:02:82:84:17:5e:94:12:0b:29:f2:70: 46:a9:f4:bf:07:a8:15:57:f4:81:05:90:85:95:b2: 0f:d7:d4:2c:44:c4:bc:30:9e:18:81:ef:0d:90:4c: 42:09:1d:fa:2b:61:5f:6e:cb:86:c2:3d:4c:0e:1e: e7:6b:d3:dd:5d:73:f3:fc:30:58:52:cc:5d:9b:a2: 4c:de:53:35:b6:15:18:44:f9:07:c2:ef:6b:9d:b5: be:9f:4f:a8:0c:60:f3:d9:c9:b8:ea:03:38:98:8b: 7e:66:58:74:ae:cb:74:7b:08:8d:76:7a:54:f0:79: bf:57:f4:85:56:d8:85:3f:94:96:78:a6:1c:da:5a: 93:b0:e3:c3:1f:74:a1:f3:4e:45:03:d2:50:94:03: 9b:5e:64:9f:38:57:1c:f5:ed:af:99:31:75:d1:92: fa:80:9f:3e:8f:ac:cd:64:94:b4:30:c8:e2:f8:4f: 8c:ae:59:af:0d:53:52:8a:03:65:45:64:b0:d4:36: ec:66:d7:fc:6e:88:02:97:13:f6:58:a3:66:7c:66: 21:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A2:84:E5:58:38:05:B5:B5:3D:66:F8:7E:B8:EC:FD:0D:84:99:CB X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c9:e9:e8:6f:8c:70:fc:08:9f:6e:4c:50:31:d7:14:d8:ee: 00:d3:8f:0f:cf:63:79:c5:45:3e:fe:a5:b9:78:02:38:14:ab: 4f:c8:05:13:96:b8:79:74:21:15:86:ed:9c:e0:22:0b:c1:91: 6c:4a:34:cd:3c:a9:e5:45:4f:82:a6:c1:d1:5d:ee:5e:20:ee: cf:d5:38:01:ac:68:d8:30:02:bd:5d:fd:64:65:b2:66:0a:70: 82:7a:28:06:99:7d:e1:be:5e:de:f5:a4:16:c9:80:30:15:fa: c2:87:bf:f3:1b:f7:3f:7e:19:cc:cc:36:52:b4:2c:ed:63:44: 66:16:38:ca:00:ef:a8:6d:dc:17:69:f1:f9:e9:7b:77:1f:c5: 29:6d:48:bf:f7:05:33:c9:76:36:f7:f5:c7:ec:c2:f9:17:e1: 86:13:74:57:35:15:a6:cf:20:44:21:ce:27:5b:4c:ec:8a:07: fa:e2:13:a7:ae:73:eb:aa:40:1c:53:43:05:5b:0f:b1:a7:6a: 73:15:d9:b9:48:63:1c:f6:42:3a:2d:df:4b:36:02:d9:5a:c1: 92:f0:dc:92:74:a2:2a:ba:95:0a:0e:c6:d6:50:ac:20:e1:25: 28:2e:8e:76:92:8b:09:c2:91:21:4f:fc:0b:3d:5d:92:19:e0: 21:37:c7:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUwNzAzMDY0OTE2WhcNMjUwNzEwMDY0OTE2WjAYMRYwFAYD VQQDEw02ODY2MjdlYy1lOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSr4Z3U3syUDZMxbZwRVKJXkoizAkunAc39iRHEkVi6HfrhDyqEztNXLacuo 97H9AoKEF16UEgsp8nBGqfS/B6gVV/SBBZCFlbIP19QsRMS8MJ4Yge8NkExCCR36 K2FfbsuGwj1MDh7na9PdXXPz/DBYUsxdm6JM3lM1thUYRPkHwu9rnbW+n0+oDGDz 2cm46gM4mIt+Zlh0rst0ewiNdnpU8Hm/V/SFVtiFP5SWeKYc2lqTsOPDH3Sh805F A9JQlAObXmSfOFcc9e2vmTF10ZL6gJ8+j6zNZJS0MMji+E+MrlmvDVNSigNlRWSw 1DbsZtf8bogClxP2WKNmfGYhwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2ihOVY OAW1tT1m+H647P0NhJnLMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9yenob4xw/AifbkxQMdcU2O4A048Pz2N5xUU+/qW5eAI4FKtPyAUT lrh5dCEVhu2c4CILwZFsSjTNPKnlRU+CpsHRXe5eIO7P1TgBrGjYMAK9Xf1kZbJm CnCCeigGmX3hvl7e9aQWyYAwFfrCh7/zG/c/fhnMzDZStCztY0RmFjjKAO+obdwX afH56Xt3H8UpbUi/9wUzyXY29/XH7ML5F+GGE3RXNRWmzyBEIc4nW0zsigf64hOn rnPrqkAcU0MFWw+xp2pzFdm5SGMc9kI6Ld9LNgLZWsGS8NySdKIqupUKDsbWUKwg 4SUoLo52kosJwpEhT/wLPV2SGeAhN8cV -----END CERTIFICATE-----Generated at Thu Jul 3 23:54:42 2025 by rpki-client