$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: /6a7RepcJXySUbwEe9asebC7j/hKm+3o8MZZHHaRGU0= Subject key identifier: 60:C4:2A:6C:0C:DB:D0:BB:FE:B9:74:36:61:D2:6A:C8:DA:C1:E0:E7 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0995 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 097E Signing time: Wed 02 Jul 2025 20:23:45 +0000 Manifest this update: Wed 02 Jul 2025 20:23:45 +0000 Manifest next update: Wed 09 Jul 2025 20:23:45 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: tftyoN1GBOi8DbhFKGmF93XZNmfzLUq1ix6CN+a7RHk=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2453 (0x995) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Jul 2 20:23:45 2025 GMT Not After : Jul 9 20:23:45 2025 GMT Subject: CN=68659551-e4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:31:a5:ab:af:af:e2:4b:55:49:4c:ca:1c: f9:73:4b:df:92:3f:71:1b:f0:92:01:44:2e:d9:4e: 7b:ce:f6:fb:e8:05:62:50:a6:13:e2:c7:cb:da:df: f9:6f:9d:b1:a7:ae:11:2c:0d:18:ab:10:52:c4:3f: 31:07:44:83:a6:2d:96:db:11:ac:9e:1d:fc:23:42: 99:44:1d:5d:37:b8:2d:f8:19:75:df:b0:16:15:7a: 00:c9:79:da:2c:0e:97:95:33:74:cb:39:7c:01:8c: 22:3b:a0:13:c9:5d:c2:84:d6:e7:df:bd:61:5c:4b: 02:42:73:7c:1d:08:86:ff:af:65:66:1d:1f:13:49: 42:14:ef:a4:b0:5e:db:83:dd:83:f2:62:78:05:86: 3f:91:fa:df:63:0d:f6:07:cb:79:4f:5f:c9:51:5d: a7:99:10:b4:38:04:73:af:61:e1:66:ee:3b:56:5b: b3:8c:a9:20:1b:0c:98:65:a5:49:20:ad:04:7a:4c: e8:04:bb:b2:33:d6:d3:81:cd:be:e6:d9:c0:96:7f: a3:f6:0b:3b:ac:e2:07:4c:e4:8c:7f:45:e1:05:45: 7b:41:39:75:66:5d:81:51:44:ac:0c:56:df:b0:9d: 8c:08:f3:f4:fe:36:35:46:e1:ec:75:24:5b:9c:5e: 8c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C4:2A:6C:0C:DB:D0:BB:FE:B9:74:36:61:D2:6A:C8:DA:C1:E0:E7 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:93:85:43:4e:f0:0a:3c:f2:99:d8:00:9b:8b:91:1d:e9:ff: 86:41:4b:f3:c4:4d:5a:0b:5d:40:ee:b3:69:0a:4a:41:8c:ac: 56:c1:d1:5c:7b:1f:0e:37:ce:83:54:60:b1:c0:2a:7d:cd:70: 75:62:e4:65:69:34:6c:7f:b3:95:17:d4:61:88:96:18:8e:8b: d4:8a:24:f5:2f:2f:a3:9d:75:4c:42:0c:2f:49:5f:2c:1a:17: 91:0e:c2:14:c9:7a:8f:6c:18:dd:cf:30:09:51:c9:01:90:df: 51:da:e8:8f:da:1e:71:e2:17:7f:a0:83:fc:82:05:bf:f5:0b: 78:79:fb:7a:6d:b2:ff:46:7e:c5:ac:bf:70:a4:24:67:e2:c7: 39:15:ca:8c:a8:54:8a:cb:65:8c:2a:11:75:ae:9a:74:2c:22: 07:e0:ec:b3:c7:be:80:9d:e2:02:bb:07:a6:1b:2b:01:35:86: 37:cd:f1:a0:2a:1d:c8:c9:32:98:fd:58:fd:76:1f:ed:72:a1: 4d:55:a2:e0:64:41:4e:c3:2c:ec:92:9b:e5:87:80:b3:0b:76: d5:b0:97:8f:12:66:98:33:21:83:8c:5c:b0:63:a7:8c:d7:5e: f8:45:4f:d2:d3:27:f7:69:1d:e9:ef:a1:54:06:b5:5f:ee:47: a6:d4:65:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUwNzAyMjAyMzQ1WhcNMjUwNzA5MjAyMzQ1WjAYMRYwFAYD VQQDEw02ODY1OTU1MS1lNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl8xpauvr+JLVUlMyhz5c0vfkj9xG/CSAUQu2U57zvb76AViUKYT4sfL2t/5 b52xp64RLA0YqxBSxD8xB0SDpi2W2xGsnh38I0KZRB1dN7gt+Bl137AWFXoAyXna LA6XlTN0yzl8AYwiO6ATyV3ChNbn371hXEsCQnN8HQiG/69lZh0fE0lCFO+ksF7b g92D8mJ4BYY/kfrfYw32B8t5T1/JUV2nmRC0OARzr2HhZu47VluzjKkgGwyYZaVJ IK0EekzoBLuyM9bTgc2+5tnAln+j9gs7rOIHTOSMf0XhBUV7QTl1Zl2BUUSsDFbf sJ2MCPP0/jY1RuHsdSRbnF6MIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDEKmwM 29C7/rl0NmHSasjaweDnMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABk4VDTvAKPPKZ2ACbi5Ed6f+GQUvzxE1aC11A7rNpCkpBjKxWwdFc ex8ON86DVGCxwCp9zXB1YuRlaTRsf7OVF9RhiJYYjovUiiT1Ly+jnXVMQgwvSV8s GheRDsIUyXqPbBjdzzAJUckBkN9R2uiP2h5x4hd/oIP8ggW/9Qt4eft6bbL/Rn7F rL9wpCRn4sc5FcqMqFSKy2WMKhF1rpp0LCIH4Oyzx76AneICuwemGysBNYY3zfGg Kh3IyTKY/Vj9dh/tcqFNVaLgZEFOwyzskpvlh4CzC3bVsJePEmaYMyGDjFywY6eM 1174RU/S0yf3aR3p76FUBrVf7kem1GX4 -----END CERTIFICATE-----Generated at Fri Jul 4 00:20:19 2025 by rpki-client