$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: jbEMrzrsFyvPYKkuq5Af9D4eJEEPMoWbSqeH9lvLTdU= Subject key identifier: 84:80:13:25:7F:1D:40:E0:E3:47:2E:04:66:9C:29:C4:7B:1C:8D:5E Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 01B4 Signing time: Tue 01 Jul 2025 03:50:30 +0000 Manifest this update: Tue 01 Jul 2025 03:50:29 +0000 Manifest next update: Tue 08 Jul 2025 03:50:29 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: AjzNXLFYkVmkj6CX1K8JzIfFhTZb5ZmYGq+X915dzUI=) 2: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: NHs0+oLxPl8uuJffLMiSnsDVJyHvtsfXj9mt3FT2mqU=) 3: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: TUo7uv4rXTA0iRyimVV1a57fjFNt5Gy9xOb0XovcHoI=) 4: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: AeF6+orX99LwnbHGZiB851tFWKGqrAIMqoROhOgxFpw=) 5: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: 7c9RXUhll7RjmfKdCACTxBkSEfUtF0muR2dkJbiSbMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: Jul 1 03:50:29 2025 GMT Not After : Jul 8 03:50:29 2025 GMT Subject: CN=68635b06-b93a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:53:1f:55:7e:c5:d5:7f:cb:32:d7:ad:53:ff: bd:19:c2:b0:31:c7:d1:73:ec:ae:b7:79:9c:4f:ab: 59:cf:62:fe:c1:c6:6c:b8:e6:02:c4:2d:46:86:5b: a2:07:82:9b:2e:03:30:dc:72:4e:e2:ba:e2:6e:6f: f8:01:3b:bd:ac:44:be:28:a3:d1:f5:c0:e0:98:44: e2:12:b7:68:dd:04:1d:85:01:35:a5:05:19:fb:53: 0e:59:c3:18:ab:4f:1c:98:48:f4:e2:35:39:39:b2: 2f:89:3d:4e:9a:46:c8:16:d8:06:e0:f0:6a:34:bd: bf:a7:87:5d:8e:bd:6f:69:ec:f2:43:b8:ec:fa:fb: b1:49:8a:55:1d:33:83:50:b4:88:d3:46:44:a5:5c: 35:03:dc:ae:c4:66:7b:c7:db:2f:41:33:db:46:f8: ea:9e:e6:cc:a8:e5:4b:6d:80:9d:23:69:0b:2b:7f: 9e:7d:1a:c5:46:8a:4f:5b:71:e1:69:4a:f8:29:4c: da:7d:16:a5:91:df:47:b7:7d:8d:8f:fd:75:6c:e6: f1:92:db:2d:38:1d:55:f6:e7:8c:93:73:d7:70:09: 8c:c4:c2:bd:6b:be:4e:57:0e:b0:e5:0d:89:24:e3: e2:28:eb:87:43:89:ac:e1:67:90:50:75:3f:77:20: fe:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:80:13:25:7F:1D:40:E0:E3:47:2E:04:66:9C:29:C4:7B:1C:8D:5E X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4e:05:cf:41:f1:8b:a7:6d:cb:d8:86:c1:4a:cd:e7:f1:6c: 44:08:39:26:30:44:b3:e5:51:d5:d8:03:51:ed:06:c5:e4:85: 03:88:c6:9c:02:13:ad:bd:46:f9:b6:7d:74:a7:fa:c3:8d:a5: 71:63:f5:0d:d8:17:1a:51:29:46:d7:df:cc:b0:f8:41:cd:40: 6c:61:4b:07:c2:3b:7b:8c:6e:fa:18:2d:f4:09:ad:1b:c3:3b: 5e:37:ea:e2:d6:bc:67:b4:d2:31:3a:61:a9:b8:6a:3f:ce:26: ac:2a:26:06:91:8a:17:86:4b:5b:13:c3:56:e8:1f:29:75:46: e8:2a:49:20:9f:43:0f:fc:71:06:68:13:a4:15:d0:51:a6:45: d4:e9:6b:94:8e:fd:95:ee:8f:fe:a6:68:77:58:2c:78:58:99: bf:59:14:29:1c:c4:9d:13:bb:ea:34:86:ca:2f:1a:90:51:8d: 02:45:ed:6e:a7:e6:c5:e9:85:45:71:43:72:51:54:87:84:22: 13:71:90:99:39:b5:00:77:3b:6b:22:34:80:42:d4:73:97:7c: 70:69:36:6c:ac:e6:5b:3b:88:b3:a1:18:3c:26:b0:a8:43:c9: d2:b7:5a:78:38:82:08:5e:87:13:bb:11:f4:71:00:f5:93:85: 4a:18:d0:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjUwNzAxMDM1MDI5WhcNMjUwNzA4MDM1MDI5WjAYMRYwFAYD VQQDEw02ODYzNWIwNi1iOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FMfVX7F1X/LMtetU/+9GcKwMcfRc+yut3mcT6tZz2L+wcZsuOYCxC1Ghlui B4KbLgMw3HJO4rribm/4ATu9rES+KKPR9cDgmETiErdo3QQdhQE1pQUZ+1MOWcMY q08cmEj04jU5ObIviT1OmkbIFtgG4PBqNL2/p4ddjr1vaezyQ7js+vuxSYpVHTOD ULSI00ZEpVw1A9yuxGZ7x9svQTPbRvjqnubMqOVLbYCdI2kLK3+efRrFRopPW3Hh aUr4KUzafRalkd9Ht32Nj/11bObxktstOB1V9ueMk3PXcAmMxMK9a75OVw6w5Q2J JOPiKOuHQ4ms4WeQUHU/dyD+aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISAEyV/ HUDg40cuBGacKcR7HI1eMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhTgXPQfGLp23L2IbBSs3n8WxECDkmMESz5VHV2ANR7QbF5IUDiMac AhOtvUb5tn10p/rDjaVxY/UN2BcaUSlG19/MsPhBzUBsYUsHwjt7jG76GC30Ca0b wzteN+ri1rxntNIxOmGpuGo/ziasKiYGkYoXhktbE8NW6B8pdUboKkkgn0MP/HEG aBOkFdBRpkXU6WuUjv2V7o/+pmh3WCx4WJm/WRQpHMSdE7vqNIbKLxqQUY0CRe1u p+bF6YVFcUNyUVSHhCITcZCZObUAdztrIjSAQtRzl3xwaTZsrOZbO4izoRg8JrCo Q8nSt1p4OIIIXocTuxH0cQD1k4VKGNBn -----END CERTIFICATE-----Generated at Wed Jul 2 07:06:09 2025 by rpki-client