$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: Yohfnxev/8KsLyHkpyyeMtRHZVhKR1Y0HmGtnifq0yQ= Subject key identifier: CE:9D:E2:07:50:BD:64:BD:BD:BC:17:9D:6A:2F:2A:96:0C:A8:01:3D Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0BF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0BEE Signing time: Wed 02 Jul 2025 18:59:24 +0000 Manifest this update: Wed 02 Jul 2025 18:59:24 +0000 Manifest next update: Wed 09 Jul 2025 18:59:24 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: VZSnEY2GyEmZ8DlonyZyeVuGnaAJH2apJdAANwXw5xo=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3065 (0xbf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Jul 2 18:59:24 2025 GMT Not After : Jul 9 18:59:24 2025 GMT Subject: CN=6865818c-6955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:71:00:35:b5:e8:e3:42:fd:88:1f:5f:cb:e9: 47:42:cc:c8:65:25:ce:5c:59:09:18:f0:fd:6f:68: 11:a2:58:35:1b:2e:88:d0:2b:de:9a:8c:d2:61:dd: 5e:43:6a:2c:01:8b:2f:16:f2:3e:4c:70:aa:37:1f: 3c:90:80:30:00:20:df:0c:48:0a:da:15:63:81:75: 3d:91:c7:0d:d2:77:97:21:b4:ba:07:4e:6c:a7:c1: d6:09:fd:2b:f7:a6:1b:16:bf:e7:fe:45:48:93:88: 3c:c7:88:0e:b1:18:d8:81:b6:b0:46:6b:60:81:34: ae:a4:97:be:c4:42:04:61:50:c7:59:d1:c0:78:71: af:b3:8b:26:b0:99:18:32:30:54:72:ab:ed:45:fa: a3:ee:44:fe:47:71:92:14:09:27:9d:cd:4e:79:2f: 75:51:d4:4a:ba:64:d6:26:7e:56:7f:41:ea:10:56: 77:73:32:ba:32:08:b9:3c:3a:ac:de:6f:c0:16:34: e8:03:ff:74:7c:04:c9:49:11:85:97:52:a8:32:8a: 8b:14:8c:43:33:56:b5:ab:a2:de:9a:31:d5:f7:ac: 1d:6b:cc:e1:4f:f9:0d:c0:9a:0e:f4:fe:2d:58:34: 75:5d:8f:21:ec:af:1f:8e:30:6f:4e:74:fe:2a:41: 3f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9D:E2:07:50:BD:64:BD:BD:BC:17:9D:6A:2F:2A:96:0C:A8:01:3D X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:e7:72:af:0a:b5:a2:5a:d4:b8:9a:94:5f:67:c4:57:80:97: 8c:26:bb:8a:2b:f5:97:1a:66:a0:61:4d:23:54:3e:b7:93:52: 07:ed:e1:69:cf:d4:13:e9:d1:dc:ea:4e:5c:7b:4d:80:b0:c6: 17:1a:38:1d:70:7f:c3:63:b1:0d:76:33:a1:90:85:d7:7c:78: 33:d3:d9:60:2b:d8:00:7e:e7:11:b4:6c:d5:f0:7e:32:57:54: a0:c1:71:2d:a5:68:2f:00:57:92:50:8a:ea:79:58:fd:a6:1d: 15:15:7a:56:77:0c:cd:70:f7:01:98:0a:7d:e6:87:d5:13:70: ef:93:2f:eb:24:e9:b5:25:d1:a1:49:4b:6d:22:7c:3d:93:f0: 23:f8:0e:91:ad:98:2c:65:35:04:7d:17:71:3d:4b:4f:21:1d: a5:86:95:5b:0b:1b:b3:1b:e5:81:1b:2a:0d:50:58:25:b5:af: 6b:dd:52:f7:6e:bf:1b:d6:8e:a2:b8:d2:3c:4c:68:c0:be:ea: 96:00:67:3b:e0:2c:f6:78:80:0d:48:28:99:dd:e2:47:cf:ea: 63:3f:2a:72:2a:99:fb:9c:fc:c9:f8:8f:c0:d3:f7:59:80:e7: 92:52:47:22:4d:21:3f:4c:72:c4:0d:64:3a:06:a5:96:9c:57: 8f:f3:13:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUwNzAyMTg1OTI0WhcNMjUwNzA5MTg1OTI0WjAYMRYwFAYD VQQDEw02ODY1ODE4Yy02OTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnEANbXo40L9iB9fy+lHQszIZSXOXFkJGPD9b2gRolg1Gy6I0CvemozSYd1e Q2osAYsvFvI+THCqNx88kIAwACDfDEgK2hVjgXU9kccN0neXIbS6B05sp8HWCf0r 96YbFr/n/kVIk4g8x4gOsRjYgbawRmtggTSupJe+xEIEYVDHWdHAeHGvs4smsJkY MjBUcqvtRfqj7kT+R3GSFAknnc1OeS91UdRKumTWJn5Wf0HqEFZ3czK6Mgi5PDqs 3m/AFjToA/90fATJSRGFl1KoMoqLFIxDM1a1q6LemjHV96wda8zhT/kNwJoO9P4t WDR1XY8h7K8fjjBvTnT+KkE/8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6d4gdQ vWS9vbwXnWovKpYMqAE9MB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB553KvCrWiWtS4mpRfZ8RXgJeMJruKK/WXGmagYU0jVD63k1IH7eFp z9QT6dHc6k5ce02AsMYXGjgdcH/DY7ENdjOhkIXXfHgz09lgK9gAfucRtGzV8H4y V1SgwXEtpWgvAFeSUIrqeVj9ph0VFXpWdwzNcPcBmAp95ofVE3Dvky/rJOm1JdGh SUttInw9k/Aj+A6RrZgsZTUEfRdxPUtPIR2lhpVbCxuzG+WBGyoNUFglta9r3VL3 br8b1o6iuNI8TGjAvuqWAGc74Cz2eIANSCiZ3eJHz+pjPypyKpn7nPzJ+I/A0/dZ gOeSUkciTSE/THLEDWQ6BqWWnFeP8xNK -----END CERTIFICATE-----Generated at Thu Jul 3 00:22:39 2025 by rpki-client