$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: h2PPCvH/oLVU9UpffI8uqLWt32jIp/rmsDu4nt7m6RI= Subject key identifier: 54:72:6D:8C:20:50:B8:B4:C8:7F:5B:CA:8D:2D:3A:B3:44:16:67:26 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 01FA Signing time: Thu 03 Jul 2025 02:30:14 +0000 Manifest this update: Thu 03 Jul 2025 02:30:14 +0000 Manifest next update: Thu 10 Jul 2025 02:30:14 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: FbXJ4eeNozYn0CPbz7WwqfkOwf/aYJ5yMq8e5/qLGdg=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Jul 3 02:30:14 2025 GMT Not After : Jul 10 02:30:14 2025 GMT Subject: CN=6865eb36-d1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:27:47:18:91:78:19:52:8c:ef:d2:a1:ce:de: 70:ed:b0:aa:4b:48:52:71:a4:30:1c:95:7c:49:dd: 6c:72:5f:13:6a:5d:42:cf:5a:80:e1:63:bb:7b:75: e8:95:83:5f:35:aa:aa:42:2d:aa:de:81:64:22:0e: 9e:df:c8:d0:aa:4a:40:22:ce:04:38:95:7f:ef:20: 10:8a:9d:60:23:ee:99:fd:cf:47:fb:e5:77:9c:c4: f3:74:d3:0a:bf:a6:3f:38:cd:34:f2:db:49:53:22: 7a:ad:cb:68:b4:7f:69:b5:d4:ea:d2:1c:40:93:77: 73:26:62:ae:08:68:64:c2:e0:25:e9:08:26:65:22: be:f3:87:8d:1b:83:dc:70:bd:0f:03:8a:8b:c9:5e: 52:56:4c:71:c4:f6:1f:8c:e0:8e:11:14:cb:07:eb: 1b:78:c9:47:78:3c:3e:c5:11:5b:0a:55:be:7b:6f: 5e:f3:58:f0:ab:97:60:45:5a:a8:ec:4b:a4:1f:1e: 75:b1:32:ef:56:bb:63:21:e4:9d:56:65:c4:4e:05: aa:2e:ed:62:bd:3c:14:62:72:0a:76:cf:f2:a6:df: 67:cf:ee:b3:84:17:f5:00:c9:3a:55:70:c2:d3:a4: d1:4f:e8:b2:d9:d6:44:c7:a5:91:53:4f:84:e2:5e: cf:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:72:6D:8C:20:50:B8:B4:C8:7F:5B:CA:8D:2D:3A:B3:44:16:67:26 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:f7:2f:37:4e:9c:04:b4:e1:a5:01:3d:98:4e:8e:0f:2b:4a: 5a:1a:5f:1a:f4:da:4c:bb:70:e3:00:a9:bf:16:b9:1c:b5:cd: 8a:e4:14:6d:ef:76:ec:10:8c:fb:50:c5:72:3a:df:f4:a1:72: ad:c1:88:f0:24:d2:7e:56:ef:db:72:17:bc:5e:77:a6:5a:b6: fd:9f:7d:06:f4:f4:c2:cc:62:95:d2:de:88:de:42:3d:ae:b7: a1:77:5f:07:db:5e:35:c7:57:a7:12:1c:bd:e9:42:e7:dd:64: b5:f8:c7:e9:a7:f0:51:8a:66:d4:9c:af:a2:d7:53:67:5b:14: 05:67:ad:fe:b1:24:a9:21:fc:80:03:15:aa:10:f6:2b:4b:74: a6:f6:20:6a:6a:ba:02:be:26:3d:18:d5:ad:8d:27:b6:f9:18: 3a:7b:01:0a:f0:8e:81:70:bc:0b:60:63:48:41:5d:af:eb:27: a2:38:7e:e6:54:0b:2a:4d:cd:3a:33:1a:d3:84:c5:06:4d:9a: af:4d:7b:03:ee:7f:df:48:70:88:93:24:12:bd:47:81:6c:3d: 11:03:76:62:5d:d4:e0:41:ee:38:45:be:df:46:ed:5d:c0:32: ee:90:10:4d:da:d3:b3:50:77:c9:e6:7d:37:b4:b8:94:57:7a: de:ae:a3:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwNzAzMDIzMDE0WhcNMjUwNzEwMDIzMDE0WjAYMRYwFAYD VQQDEw02ODY1ZWIzNi1kMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CdHGJF4GVKM79Khzt5w7bCqS0hScaQwHJV8Sd1scl8Tal1Cz1qA4WO7e3Xo lYNfNaqqQi2q3oFkIg6e38jQqkpAIs4EOJV/7yAQip1gI+6Z/c9H++V3nMTzdNMK v6Y/OM008ttJUyJ6rctotH9ptdTq0hxAk3dzJmKuCGhkwuAl6QgmZSK+84eNG4Pc cL0PA4qLyV5SVkxxxPYfjOCOERTLB+sbeMlHeDw+xRFbClW+e29e81jwq5dgRVqo 7EukHx51sTLvVrtjIeSdVmXETgWqLu1ivTwUYnIKds/ypt9nz+6zhBf1AMk6VXDC 06TRT+iy2dZEx6WRU0+E4l7PqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRybYwg ULi0yH9byo0tOrNEFmcmMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh9y83TpwEtOGlAT2YTo4PK0paGl8a9NpMu3DjAKm/Frkctc2K5BRt 73bsEIz7UMVyOt/0oXKtwYjwJNJ+Vu/bche8XnemWrb9n30G9PTCzGKV0t6I3kI9 rrehd18H2141x1enEhy96ULn3WS1+Mfpp/BRimbUnK+i11NnWxQFZ63+sSSpIfyA AxWqEPYrS3Sm9iBqaroCviY9GNWtjSe2+Rg6ewEK8I6BcLwLYGNIQV2v6yeiOH7m VAsqTc06MxrThMUGTZqvTXsD7n/fSHCIkyQSvUeBbD0RA3ZiXdTgQe44Rb7fRu1d wDLukBBN2tOzUHfJ5n03tLiUV3rerqNW -----END CERTIFICATE-----Generated at Thu Jul 3 09:39:01 2025 by rpki-client