$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: dj8usyoKdU+j2li+Ex3X3TTsFkBozEDIOk69fAjYIY8= Subject key identifier: 72:9C:82:6C:29:9A:B0:9C:6A:AC:FC:FE:D0:22:01:12:A8:8E:09:6A Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: BC Signing time: Thu 03 Jul 2025 05:39:18 +0000 Manifest this update: Thu 03 Jul 2025 05:39:18 +0000 Manifest next update: Thu 10 Jul 2025 05:39:18 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: gaiW0boz6klaQy+r6pcpMj/YMRESHq/uFKvwujOXwfQ=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Jul 3 05:39:18 2025 GMT Not After : Jul 10 05:39:18 2025 GMT Subject: CN=68661786-fc48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:10:08:51:0b:73:60:c8:33:b5:b3:23:fc: 72:db:bd:a8:75:7e:bd:5d:63:f5:ae:6a:20:eb:f9: 99:7d:46:60:c2:e5:9a:a1:42:d7:2e:eb:3d:3d:06: 85:a6:ad:95:7f:a1:86:bf:17:d7:de:44:d7:9e:61: 3b:4e:3b:eb:26:66:52:4f:a0:4c:09:72:7a:ee:e1: 29:60:fc:ff:5d:5b:cb:05:4e:5f:67:ee:48:2d:fd: 88:e1:78:2b:e6:54:95:3f:5d:7d:65:14:84:5b:b9: 7e:95:13:28:fd:d7:9b:86:33:09:c3:94:93:77:46: 44:f8:7e:87:34:e2:d5:5c:c4:62:7b:c0:27:7e:5e: cc:d3:9c:46:be:44:07:34:e8:7e:22:e7:8a:5f:fc: 23:ec:4c:42:41:0f:d9:81:28:30:a2:94:47:d7:96: a4:26:7e:48:29:8b:01:c0:14:e6:74:d6:09:37:11: 05:8e:5c:19:35:ae:34:fb:55:f5:39:b5:c1:9a:67: 9a:3c:9b:14:dd:68:ed:73:35:dc:f6:f4:52:09:7c: 4b:06:95:d0:0e:d3:e9:08:d7:2b:6e:74:c0:b7:24: 65:dd:41:d5:a3:88:e0:ae:31:ef:29:ac:2b:28:2d: 78:71:50:4c:d3:76:20:65:4e:ca:1d:d8:69:8a:d7: 5c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9C:82:6C:29:9A:B0:9C:6A:AC:FC:FE:D0:22:01:12:A8:8E:09:6A X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:0a:14:8e:2a:15:b5:de:11:fe:81:be:50:c4:10:94:a9:76: c6:8d:cf:d5:36:a5:85:6b:c4:65:64:78:0c:60:bd:f8:95:a5: b0:58:90:a3:d9:0a:b4:9e:c3:fe:98:54:ed:8e:b3:5e:d1:1c: 45:d2:f1:4f:bd:d3:43:32:3d:00:62:d9:80:9a:85:68:ec:74: 70:30:fc:d4:52:48:72:9f:2a:36:d8:b6:52:9a:11:de:99:79: 88:fd:4a:00:9d:b0:c5:b3:e5:e3:1b:46:8a:65:ae:e8:02:30: 65:e6:5c:f2:31:83:0e:6f:27:8d:f9:db:7c:92:29:81:e0:d5: 3a:82:7c:1c:59:f0:bb:40:ab:10:ae:42:b7:55:56:55:cd:45: b7:df:6a:0e:b4:b2:76:57:b2:8e:3d:9c:84:f9:e9:d6:bc:78: a3:6b:a7:f6:cb:ab:75:cf:47:d1:d2:34:37:70:b8:2e:6e:80: 46:bb:04:02:91:1c:47:bf:b6:1e:b5:f7:5c:cd:94:5c:04:c4: 12:0b:18:9b:b7:67:f2:96:75:d1:d6:95:8e:e0:a7:66:73:0c: 85:a6:e0:20:ea:7c:ed:32:fb:24:fd:60:8d:3d:e0:de:1e:d1: 9b:04:84:f6:5f:b3:38:96:40:dc:fe:da:3e:91:40:98:d1:d1: 79:da:70:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwNzAzMDUzOTE4WhcNMjUwNzEwMDUzOTE4WjAYMRYwFAYD VQQDEw02ODY2MTc4Ni1mYzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIsQCFELc2DIM7WzI/xy272odX69XWP1rmog6/mZfUZgwuWaoULXLus9PQaF pq2Vf6GGvxfX3kTXnmE7TjvrJmZST6BMCXJ67uEpYPz/XVvLBU5fZ+5ILf2I4Xgr 5lSVP119ZRSEW7l+lRMo/debhjMJw5STd0ZE+H6HNOLVXMRie8Anfl7M05xGvkQH NOh+IueKX/wj7ExCQQ/ZgSgwopRH15akJn5IKYsBwBTmdNYJNxEFjlwZNa40+1X1 ObXBmmeaPJsU3WjtczXc9vRSCXxLBpXQDtPpCNcrbnTAtyRl3UHVo4jgrjHvKawr KC14cVBM03YgZU7KHdhpitdcSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKcgmwp mrCcaqz8/tAiARKojglqMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFChSOKhW13hH+gb5QxBCUqXbGjc/VNqWFa8RlZHgMYL34laWwWJCj 2Qq0nsP+mFTtjrNe0RxF0vFPvdNDMj0AYtmAmoVo7HRwMPzUUkhynyo22LZSmhHe mXmI/UoAnbDFs+XjG0aKZa7oAjBl5lzyMYMObyeN+dt8kimB4NU6gnwcWfC7QKsQ rkK3VVZVzUW332oOtLJ2V7KOPZyE+enWvHija6f2y6t1z0fR0jQ3cLguboBGuwQC kRxHv7YetfdczZRcBMQSCxibt2fylnXR1pWO4KdmcwyFpuAg6nztMvsk/WCNPeDe HtGbBIT2X7M4lkDc/to+kUCY0dF52nDT -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:14 2025 by rpki-client