$ rpki-client -vvf rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft File: xkM8SeY82SA1swfo95Y3YI_q2_U.mft (raw, json) Hash identifier: 7vGSpAt72Y19L3Ir6DlUZTuLPaDevwSF4pfzQ6su4E0= Subject key identifier: 61:71:08:43:01:2A:6A:47:B8:CA:93:C1:59:A6:0A:CB:A4:D6:22:71 Authority key identifier: C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 Certificate issuer: /CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Certificate serial: 1CD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft Manifest number: 1C99 Signing time: Wed 02 Jul 2025 16:17:58 +0000 Manifest this update: Wed 02 Jul 2025 16:17:58 +0000 Manifest next update: Wed 09 Jul 2025 16:17:58 +0000 Files and hashes: 1: xkM8SeY82SA1swfo95Y3YI_q2_U.crl (hash: HAOb4GmWG49hFKXqozHCwGD62TzJG6Oz//YcAEN0U/I=) 2: 35D40EDE9F8511ECBE806D30C4F9AE02.roa (hash: 6/nHCLLC7n4HaWWUGKVmTxdYoQkDB8jaG5K5D54SivA=) 3: A149F286EFD311EFB37AB53EC4F9AE02.roa (hash: vy9kn/CQhwnh1wHa9U7nugbVkMKjYeyVr6QFutwruhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7383 (0x1cd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164390, serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Validity Not Before: Jul 2 16:17:58 2025 GMT Not After : Jul 9 16:17:58 2025 GMT Subject: CN=68655bb6-00e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fb:50:60:a1:01:8e:06:36:0c:3c:b8:73:cb: 6f:2b:9d:bb:8c:32:fb:bf:6a:1a:20:61:04:da:e7: 7c:51:d4:fd:bc:95:e1:15:e0:9d:06:19:1c:4c:22: 3c:97:4d:3b:77:fd:e4:77:33:0f:8e:19:33:9c:2b: 41:b6:78:3c:08:9a:fd:f8:b3:00:58:0a:ca:e9:50: 64:fe:cb:84:f0:a1:0f:44:87:bf:05:0e:7f:b2:36: bd:7e:96:cc:09:02:c5:fd:b7:11:84:b4:7b:6f:2e: 8b:5f:47:58:f4:20:3a:d4:1e:fe:95:41:ce:2d:be: de:c5:11:0a:bd:03:26:d3:00:09:0e:56:11:79:d6: 67:09:92:18:42:c3:04:ab:9f:0e:37:6f:4a:21:81: d0:04:f0:37:f3:87:1e:e7:a4:72:f8:1d:ef:0f:1d: 1f:79:a5:d0:95:00:1f:2a:c6:a3:e3:34:46:7e:13: 9b:47:5f:a3:fc:14:4e:f3:87:3b:ba:08:a9:dd:c5: 7e:9e:cf:7c:b6:9a:d3:ca:86:03:1e:8b:49:73:66: 83:e4:f0:97:be:52:f8:a2:51:8c:16:a6:60:e4:d8: e7:cd:01:75:8d:79:ef:6b:d7:cc:41:68:59:df:36: 25:d0:8b:88:4c:3a:f0:01:b5:81:ae:e3:35:b8:7a: 83:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:71:08:43:01:2A:6A:47:B8:CA:93:C1:59:A6:0A:CB:A4:D6:22:71 X509v3 Authority Key Identifier: keyid:C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:96:f0:b0:89:44:c9:45:45:1b:4f:d6:eb:b6:50:4d:b6:a6: fc:3e:18:ea:1d:ac:63:22:92:82:75:b9:78:5d:9c:a9:b7:5e: 41:12:28:ee:2f:e6:4a:02:5c:07:63:f8:69:7b:5b:26:9f:cf: b2:7a:02:2b:95:e5:3d:ca:d3:42:7c:a4:f1:dd:16:d6:40:b4: 6b:6c:3f:ce:a8:82:49:25:fd:1d:f8:b7:81:a4:cd:59:ab:32: 77:fe:d1:05:de:d5:7a:bd:ef:5f:6d:76:83:23:c7:a8:34:9e: 8d:a6:a6:88:9e:1c:35:28:5e:fb:97:80:49:e2:95:0c:5e:a0: c8:53:d9:ac:c3:1b:e8:9b:29:08:38:d9:f1:51:e0:b6:70:34: 21:6d:07:f5:28:91:30:59:8c:2c:54:0b:80:cf:f1:ec:35:a2: db:f7:c6:d6:75:6d:b5:2a:f0:d7:07:6a:5b:06:58:65:b4:44: 30:e4:2e:7c:af:1c:3f:eb:0e:7a:b6:92:41:0d:1d:22:6b:b5: fd:95:0f:26:6b:2b:72:23:ea:ee:fd:d1:e1:14:84:17:93:40: aa:63:f7:a8:c8:48:01:8a:cb:7e:65:ac:b8:04:b0:59:5a:64: 28:dc:e2:5b:b2:13:c9:67:57:5d:3a:10:8b:f0:ca:8d:72:cf: 75:ab:4b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzOTAxMTAvBgNVBAUTKEM2NDMzQzQ5RTYzQ0Q5MjAzNUIzMDdFOEY3OTYzNzYw OEZFQURCRjUwHhcNMjUwNzAyMTYxNzU4WhcNMjUwNzA5MTYxNzU4WjAYMRYwFAYD VQQDEw02ODY1NWJiNi0wMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwftQYKEBjgY2DDy4c8tvK527jDL7v2oaIGEE2ud8UdT9vJXhFeCdBhkcTCI8 l007d/3kdzMPjhkznCtBtng8CJr9+LMAWArK6VBk/suE8KEPRIe/BQ5/sja9fpbM CQLF/bcRhLR7by6LX0dY9CA61B7+lUHOLb7exREKvQMm0wAJDlYRedZnCZIYQsME q58ON29KIYHQBPA384ce56Ry+B3vDx0feaXQlQAfKsaj4zRGfhObR1+j/BRO84c7 ugip3cV+ns98tprTyoYDHotJc2aD5PCXvlL4olGMFqZg5NjnzQF1jXnva9fMQWhZ 3zYl0IuITDrwAbWBruM1uHqDCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFxCEMB KmpHuMqTwVmmCsuk1iJxMB8GA1UdIwQYMBaAFMZDPEnmPNkgNbMH6PeWN2CP6tv1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDM5MC8wRTkzNTRGQ0RD NUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJTQTFzd2ZvOTVZM1lJX3Ey X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrTThTZVk4MlNBMXN3Zm85NVkzWUlfcTJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDM5MC8wRTkzNTRGQ0RDNUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJT QTFzd2ZvOTVZM1lJX3EyX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQlvCwiUTJRUUbT9brtlBNtqb8PhjqHaxjIpKCdbl4XZypt15BEiju L+ZKAlwHY/hpe1smn8+yegIrleU9ytNCfKTx3RbWQLRrbD/OqIJJJf0d+LeBpM1Z qzJ3/tEF3tV6ve9fbXaDI8eoNJ6NpqaInhw1KF77l4BJ4pUMXqDIU9mswxvomykI ONnxUeC2cDQhbQf1KJEwWYwsVAuAz/HsNaLb98bWdW21KvDXB2pbBlhltEQw5C58 rxw/6w56tpJBDR0ia7X9lQ8maytyI+ru/dHhFIQXk0CqY/eoyEgBist+Zay4BLBZ WmQo3OJbshPJZ1ddOhCL8MqNcs91q0tq -----END CERTIFICATE-----Generated at Thu Jul 3 10:47:29 2025 by rpki-client