$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: FN8mA1PHbVuxTYtvyvEKEPWXnfxY4kNHH4v/e2KCLk8= Subject key identifier: B0:77:94:87:D9:19:97:B5:46:9A:58:4A:A1:E4:1E:82:59:55:2F:DD Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 05CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 05C5 Signing time: Wed 02 Jul 2025 23:23:22 +0000 Manifest this update: Wed 02 Jul 2025 23:23:22 +0000 Manifest next update: Wed 09 Jul 2025 23:23:22 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: WQstwwYJDfQyQC90PkzAtgDI9VTnWBAzx1g0R5ma7yQ=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1483 (0x5cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Jul 2 23:23:22 2025 GMT Not After : Jul 9 23:23:22 2025 GMT Subject: CN=6865bf6a-a4b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:9f:e5:82:e0:b5:76:91:28:e7:1e:c2:24: 77:81:76:8c:cb:71:a3:38:9d:86:36:1d:f0:ac:95: 1f:86:2a:ec:59:bf:ea:9e:1f:7a:13:04:9b:73:d5: d1:12:1c:57:21:16:59:68:d5:b6:0d:7d:66:5a:13: e8:5f:2b:e1:d5:f9:c3:68:49:1b:c0:75:5d:a5:c7: 99:e2:12:7a:64:65:f3:c7:de:e8:07:5f:71:64:00: f9:f4:c4:e6:5c:bb:b2:fb:e8:2c:73:24:00:b1:37: 5e:66:40:b6:b4:03:1f:e2:46:34:8d:5c:6f:d9:05: 9a:42:e8:35:d0:3d:1b:54:07:68:11:01:c7:56:4d: 54:e7:bc:86:30:5f:2e:5e:33:c4:b6:99:d9:7c:a8: 4f:48:fd:02:71:70:fb:b4:af:34:a0:33:92:91:ea: 43:aa:41:bc:02:75:d9:c3:a5:2a:8d:4e:3b:de:54: d3:a4:a9:53:5b:36:46:cc:fb:20:32:30:3e:97:de: 64:0d:82:75:72:7c:48:98:1a:eb:74:65:f5:5f:04: 30:77:23:ee:cf:47:5d:41:83:ac:db:b8:e1:1c:7d: d8:18:01:35:06:a5:f1:37:05:77:38:de:bd:29:38: fa:8f:bb:d6:7f:3a:79:fc:ac:ee:a1:c7:6f:96:03: 35:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:77:94:87:D9:19:97:B5:46:9A:58:4A:A1:E4:1E:82:59:55:2F:DD X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ed:ca:14:df:b5:6c:cf:8b:ad:83:bf:e4:68:09:b7:d1:b2: 7a:b3:bd:c9:78:fd:f7:44:e1:60:aa:04:66:1c:a8:8d:82:c5: 06:1f:70:54:51:5b:18:ae:dd:a6:a3:b2:0b:95:dc:f2:c7:16: 77:19:20:cd:c8:7f:a3:49:2c:c7:9b:aa:5b:73:18:53:63:eb: 63:3a:f0:9a:3e:1b:97:92:e6:d4:3c:f9:67:e5:38:de:5f:6a: 19:e2:0f:d8:55:b4:10:9d:0a:4b:65:3e:db:98:45:1d:0d:fb: e6:50:c7:a8:9d:fe:53:29:ae:7e:38:f1:b8:18:a8:11:d5:c2: a9:f3:57:a5:f5:92:1f:89:73:2a:70:f6:e5:8e:14:9d:0c:ff: 53:7e:a0:1f:d9:47:14:2b:1f:96:27:d3:a9:21:5a:44:be:fa: 58:a0:de:06:e6:cd:55:1d:1d:75:a0:f3:12:a2:a9:8b:3d:a6: f0:78:07:21:6f:9d:78:6c:8d:d0:3d:55:fe:4f:d9:53:39:28: 7f:0c:f6:25:dc:6b:db:58:7c:a9:57:bf:73:4b:f1:64:1c:5d: df:e8:18:b0:00:b6:a6:f2:c3:3e:d0:1d:99:59:7a:66:14:50: 49:e8:dd:00:f4:d1:7c:11:64:67:f1:eb:8a:bd:32:23:45:cf: c6:92:05:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUwNzAyMjMyMzIyWhcNMjUwNzA5MjMyMzIyWjAYMRYwFAYD VQQDEw02ODY1YmY2YS1hNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZif5YLgtXaRKOcewiR3gXaMy3GjOJ2GNh3wrJUfhirsWb/qnh96EwSbc9XR EhxXIRZZaNW2DX1mWhPoXyvh1fnDaEkbwHVdpceZ4hJ6ZGXzx97oB19xZAD59MTm XLuy++gscyQAsTdeZkC2tAMf4kY0jVxv2QWaQug10D0bVAdoEQHHVk1U57yGMF8u XjPEtpnZfKhPSP0CcXD7tK80oDOSkepDqkG8AnXZw6UqjU473lTTpKlTWzZGzPsg MjA+l95kDYJ1cnxImBrrdGX1XwQwdyPuz0ddQYOs27jhHH3YGAE1BqXxNwV3ON69 KTj6j7vWfzp5/KzuocdvlgM1iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLB3lIfZ GZe1RppYSqHkHoJZVS/dMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr7coU37Vsz4utg7/kaAm30bJ6s73JeP33ROFgqgRmHKiNgsUGH3BU UVsYrt2mo7ILldzyxxZ3GSDNyH+jSSzHm6pbcxhTY+tjOvCaPhuXkubUPPln5Tje X2oZ4g/YVbQQnQpLZT7bmEUdDfvmUMeonf5TKa5+OPG4GKgR1cKp81el9ZIfiXMq cPbljhSdDP9TfqAf2UcUKx+WJ9OpIVpEvvpYoN4G5s1VHR11oPMSoqmLPabweAch b514bI3QPVX+T9lTOSh/DPYl3GvbWHypV79zS/FkHF3f6BiwALam8sM+0B2ZWXpm FFBJ6N0A9NF8EWRn8euKvTIjRc/GkgWe -----END CERTIFICATE-----Generated at Thu Jul 3 23:48:16 2025 by rpki-client