$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: 4qucdMn8ASJEmeta99D+4qBgetSpSFcsW/lG4huRong= Subject key identifier: 43:CB:99:8F:AA:69:98:38:4E:94:30:A1:FE:3E:0F:97:15:2D:C7:90 Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0645 Signing time: Mon 30 Jun 2025 22:59:26 +0000 Manifest this update: Mon 30 Jun 2025 22:59:26 +0000 Manifest next update: Mon 07 Jul 2025 22:59:26 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: N3WckoPhQQNfGuA1gdlcIt6VajN2oOLIla3xIEFWCP8=) 2: 6E1BCBC495BD11EB89199F37C4F9AE02.roa (hash: 6VtKNEIG9FeALH3s40nNCwARNeebdE67fF6D4UlnLsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Jun 30 22:59:26 2025 GMT Not After : Jul 7 22:59:26 2025 GMT Subject: CN=686316ce-deea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:03:15:07:ff:be:7b:20:30:c9:c0:92:38:39: 0f:d6:67:30:9b:4b:00:f4:b8:67:96:ff:47:ba:99: 42:4a:f7:7f:b7:19:cb:6b:00:89:a9:34:82:38:61: e7:fa:c5:51:67:19:90:65:89:ae:40:50:0d:64:e2: f4:2a:85:62:5a:66:df:fa:e3:58:6f:08:fd:8a:11: fb:04:0f:c7:6b:71:1e:10:3b:fc:65:76:8e:4b:61: 0f:90:02:50:a5:53:36:5a:e5:69:bd:13:af:17:4e: 7c:0e:3e:82:42:bd:39:3c:89:8c:86:14:69:7e:2a: a7:f0:a7:fc:3a:53:5f:fa:b5:68:41:81:74:f9:b7: 0c:56:6a:b3:f6:91:b8:1e:3e:fc:2f:3c:2a:de:56: c2:53:d3:74:3f:83:70:78:8a:1f:7e:5a:f5:21:2e: b6:c4:e9:c5:bd:40:a5:22:b2:0e:fd:ba:4d:e0:0a: 76:42:e8:e8:44:bd:30:42:ca:f8:05:38:f4:a0:fc: b3:91:3d:21:ad:62:53:fd:5a:fa:df:11:e1:17:99: 24:4f:b0:b6:21:b3:e0:1f:82:97:bb:a9:2f:a7:64: 90:a4:9e:d1:03:f1:88:a9:48:03:4d:fd:c1:39:8a: 70:b7:9d:80:7a:f2:f0:7c:da:c7:81:69:d6:ed:0b: a8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:CB:99:8F:AA:69:98:38:4E:94:30:A1:FE:3E:0F:97:15:2D:C7:90 X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:a9:4c:ad:c3:70:29:e1:e3:e3:05:97:18:2c:22:16:70:a5: 66:4b:15:d3:72:46:81:ce:dc:d2:d4:d1:9e:8f:9c:91:c3:e0: 0f:0b:3f:bb:b8:08:93:18:d3:1c:02:91:11:38:ed:f9:28:ab: 6b:c5:36:b1:43:96:1c:58:ff:3f:46:72:3d:b2:71:55:ef:fd: 0c:ec:1f:19:bb:f1:e3:e7:1a:b9:aa:77:97:92:27:30:57:ab: 76:9d:44:3f:79:88:3f:0a:ee:84:fa:78:09:3b:43:53:55:3c: 5a:1b:b8:3c:2e:ad:54:07:44:14:09:71:0b:41:b1:68:2d:ea: d8:00:f9:f5:e7:b7:ca:d3:13:2b:e6:e8:aa:d1:b2:fb:55:2e: 04:1a:1d:83:4e:fe:25:2a:43:98:c7:5e:d2:6a:cc:9b:3c:65: 7e:70:a6:3f:96:fa:cb:eb:7d:4a:fc:3d:6f:d2:db:bc:bc:db: c5:2d:4f:49:38:d0:85:b4:74:7d:e7:26:5e:73:9d:83:5a:d3: 16:aa:78:60:55:ca:7b:f4:de:d1:f5:27:01:6d:ab:b1:1e:e1: db:ac:85:7a:ed:f5:13:95:27:56:69:bf:52:69:b1:95:ac:8d: f3:04:fb:e6:03:25:1c:22:d5:cb:e7:6f:66:23:f7:1d:90:9a: a9:90:0b:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUwNjMwMjI1OTI2WhcNMjUwNzA3MjI1OTI2WjAYMRYwFAYD VQQDEw02ODYzMTZjZS1kZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAMVB/++eyAwycCSODkP1mcwm0sA9Lhnlv9HuplCSvd/txnLawCJqTSCOGHn +sVRZxmQZYmuQFANZOL0KoViWmbf+uNYbwj9ihH7BA/Ha3EeEDv8ZXaOS2EPkAJQ pVM2WuVpvROvF058Dj6CQr05PImMhhRpfiqn8Kf8OlNf+rVoQYF0+bcMVmqz9pG4 Hj78Lzwq3lbCU9N0P4NweIofflr1IS62xOnFvUClIrIO/bpN4Ap2QujoRL0wQsr4 BTj0oPyzkT0hrWJT/Vr63xHhF5kkT7C2IbPgH4KXu6kvp2SQpJ7RA/GIqUgDTf3B OYpwt52AevLwfNrHgWnW7QuobQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPLmY+q aZg4TpQwof4+D5cVLceQMB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDqUytw3Ap4ePjBZcYLCIWcKVmSxXTckaBztzS1NGej5yRw+APCz+7 uAiTGNMcApEROO35KKtrxTaxQ5YcWP8/RnI9snFV7/0M7B8Zu/Hj5xq5qneXkicw V6t2nUQ/eYg/Cu6E+ngJO0NTVTxaG7g8Lq1UB0QUCXELQbFoLerYAPn157fK0xMr 5uiq0bL7VS4EGh2DTv4lKkOYx17SasybPGV+cKY/lvrL631K/D1v0tu8vNvFLU9J ONCFtHR95yZec52DWtMWqnhgVcp79N7R9ScBbauxHuHbrIV67fUTlSdWab9SabGV rI3zBPvmAyUcItXL529mI/cdkJqpkAvR -----END CERTIFICATE-----Generated at Wed Jul 2 01:25:27 2025 by rpki-client