$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft File: 4XcstdOWUnbPTpjTdmtjDX4_gXg.mft (raw, json) Hash identifier: ZkO7q9Las3xMEXeAtmny3pHHrniUnLFU9rugi3I0KnQ= Subject key identifier: EE:38:1C:34:4C:6F:52:F9:1E:02:D3:B0:AD:83:C0:86:84:0A:36:FD Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Certificate serial: 079D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft Manifest number: 077C Signing time: Sat 28 Jun 2025 21:14:51 +0000 Manifest this update: Sat 28 Jun 2025 21:14:50 +0000 Manifest next update: Sat 05 Jul 2025 21:14:50 +0000 Files and hashes: 1: 4XcstdOWUnbPTpjTdmtjDX4_gXg.crl (hash: w+LXwb51rWyKenO1HfgsNC2BueiyNcZ6sFZG8Fx4IQ4=) 2: 12DBAD3CDAFF11ECA67DA10BC4F9AE02.roa (hash: 3/Y1r0LMBII6zW5USQairn62r7Znj5u8VXmSgbR98nY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 21:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175027, serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Validity Not Before: Jun 28 21:14:50 2025 GMT Not After : Jul 5 21:14:50 2025 GMT Subject: CN=68605b4a-bcbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:98:0a:e3:e9:d5:d2:a6:61:64:96:6d:91:f6: 1d:e0:8b:98:af:e4:bb:b5:1c:7a:38:a3:ed:22:e4: 17:00:9a:36:26:bb:24:9b:c4:1a:bf:4a:4e:7e:57: e4:1c:55:10:82:70:07:e0:26:11:27:3b:5d:90:08: 95:68:f9:91:5f:29:84:fb:d4:35:87:93:27:27:76: 17:01:5c:0e:a9:fb:0a:64:bf:1f:d6:b1:f9:26:5f: d8:ea:ae:cf:e1:47:bd:0d:b1:3d:80:ab:bf:40:5b: 87:b6:fb:26:81:4a:65:45:15:62:79:d5:94:5e:38: b0:a6:13:c0:f5:32:c1:74:e1:58:2f:e1:c0:df:a3: c9:01:69:8b:1e:0a:a6:e1:15:22:88:29:9d:22:1a: 67:02:85:2e:f1:e6:57:44:00:10:75:28:b6:58:92: 7b:e0:a4:2e:0f:ee:f8:65:43:35:d8:ec:07:45:4c: 71:3d:b3:ee:c1:02:5c:ac:35:10:74:84:4a:98:bf: 08:d2:90:ce:1d:13:29:78:5c:fa:e6:9d:f5:f4:83: 6b:c5:e0:e9:dc:5a:47:31:08:81:ae:93:ad:91:3b: 41:98:fa:fe:60:27:ea:84:a9:79:a3:9b:70:bf:41: b5:30:1e:de:0c:3c:6a:29:25:47:c9:cb:40:c0:51: 9c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:38:1C:34:4C:6F:52:F9:1E:02:D3:B0:AD:83:C0:86:84:0A:36:FD X509v3 Authority Key Identifier: keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ca:11:78:e9:40:43:2b:d3:9c:74:ce:72:0f:2b:4e:d4:c6: f0:1e:30:3c:b5:37:11:c4:5b:b9:4f:ea:14:a8:51:08:73:e9: ec:01:8d:35:a6:df:38:79:f5:7d:5a:b1:c1:8b:fa:bd:02:6f: b1:89:81:3f:2e:f9:f3:10:c4:c1:22:cb:82:ae:ed:34:d1:de: 8b:91:59:1e:9a:3b:9a:b0:28:26:c7:01:b9:bb:ec:20:0c:56: 98:40:e9:56:52:84:0d:47:3a:71:9a:e9:fe:54:f8:06:a5:b5: be:c4:bc:87:22:54:d3:9c:11:27:0f:18:5f:7c:1c:ef:48:22: 35:ff:e2:b7:54:e5:ca:28:bc:73:2c:50:e9:9d:27:26:c3:fd: 82:ab:11:a1:18:f1:87:7b:b8:2a:ac:3a:33:ca:61:0c:a0:ea: ef:46:8e:63:63:96:f5:71:7a:41:1d:9e:42:6f:91:bb:6f:98: 73:de:69:8c:67:17:83:05:83:10:73:fc:d3:60:5b:7f:0c:b7: 38:91:bb:d5:d3:56:6f:39:e1:6e:37:6b:9c:c0:9e:a0:39:03: e8:c9:b7:8a:bc:64:e1:33:66:fe:8c:31:05:ec:0c:c8:60:cd: 8c:4a:ab:db:2a:21:4f:b1:3c:de:d2:d1:53:b0:dd:41:26:f4: d3:31:4a:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUwMjcxMTAvBgNVBAUTKEUxNzcyQ0I1RDM5NjUyNzZDRjRFOThEMzc2NkI2MzBE N0UzRjgxNzgwHhcNMjUwNjI4MjExNDUwWhcNMjUwNzA1MjExNDUwWjAYMRYwFAYD VQQDEw02ODYwNWI0YS1iY2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5gK4+nV0qZhZJZtkfYd4IuYr+S7tRx6OKPtIuQXAJo2Jrskm8Qav0pOflfk HFUQgnAH4CYRJztdkAiVaPmRXymE+9Q1h5MnJ3YXAVwOqfsKZL8f1rH5Jl/Y6q7P 4Ue9DbE9gKu/QFuHtvsmgUplRRViedWUXjiwphPA9TLBdOFYL+HA36PJAWmLHgqm 4RUiiCmdIhpnAoUu8eZXRAAQdSi2WJJ74KQuD+74ZUM12OwHRUxxPbPuwQJcrDUQ dIRKmL8I0pDOHRMpeFz65p319INrxeDp3FpHMQiBrpOtkTtBmPr+YCfqhKl5o5tw v0G1MB7eDDxqKSVHyctAwFGcgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO44HDRM b1L5HgLTsK2DwIaECjb9MB8GA1UdIwQYMBaAFOF3LLXTllJ2z06Y03ZrYw1+P4F4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTAyNy8yNTA1Q0VEQzI1 NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1VuYlBUcGpUZG10akRYNF9n WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYY3N0ZE9XVW5iUFRwalRkbXRqRFg0X2dYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTAyNy8yNTA1Q0VEQzI1NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1Vu YlBUcGpUZG10akRYNF9nWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfyhF46UBDK9OcdM5yDytO1MbwHjA8tTcRxFu5T+oUqFEIc+nsAY01 pt84efV9WrHBi/q9Am+xiYE/LvnzEMTBIsuCru000d6LkVkemjuasCgmxwG5u+wg DFaYQOlWUoQNRzpxmun+VPgGpbW+xLyHIlTTnBEnDxhffBzvSCI1/+K3VOXKKLxz LFDpnScmw/2CqxGhGPGHe7gqrDozymEMoOrvRo5jY5b1cXpBHZ5Cb5G7b5hz3mmM ZxeDBYMQc/zTYFt/DLc4kbvV01ZvOeFuN2ucwJ6gOQPoybeKvGThM2b+jDEF7AzI YM2MSqvbKiFPsTze0tFTsN1BJvTTMUo5 -----END CERTIFICATE-----Generated at Sun Jun 29 13:46:11 2025 by rpki-client