$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: sp5Z+P1OTNAF11guIAXyw5tPhSzmdOp/FUrFQGhn7bw= Subject key identifier: DA:19:14:A5:9D:44:23:CC:5D:00:3E:0F:5C:2C:38:7A:D1:15:6E:98 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 03CB Signing time: Tue 01 Jul 2025 01:12:29 +0000 Manifest this update: Tue 01 Jul 2025 01:12:28 +0000 Manifest next update: Tue 08 Jul 2025 01:12:28 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: SaQ1AtX1wfpCr0rIZXxTcKLm/yJtfA2v1lhjsyfDVcY=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: W7ot2zpw7zenj0ixyvV0R84xsbmbGiyY0szYoIQxijc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2, serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: Jul 1 01:12:28 2025 GMT Not After : Jul 8 01:12:28 2025 GMT Subject: CN=686335fc-28ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a4:b1:fd:62:9b:2e:cf:60:02:51:83:e6:50: b2:b2:24:dd:f1:45:c4:da:4e:0b:a0:e9:df:ee:a5: d2:99:93:94:82:81:3f:3d:2f:75:89:6c:59:d7:53: a1:db:46:d1:53:1b:20:09:78:cd:71:31:8c:29:70: 45:55:b5:18:c1:00:54:02:56:8a:f6:d9:cf:a9:b4: 8c:79:03:79:ad:fc:24:6e:9f:b0:d8:27:08:72:2b: fe:a8:33:46:0c:b1:71:92:cd:da:aa:7c:8c:35:8a: a3:2a:bf:f7:3a:e3:0e:a6:a7:73:b8:8b:68:2a:0a: 1d:e8:2b:f2:26:b6:15:5d:b5:86:92:d8:40:5a:5b: 53:81:07:75:a4:a6:67:c1:32:37:65:d8:a2:6e:15: 9b:41:18:07:35:69:8f:15:8a:76:72:50:aa:7b:f5: 21:f3:d9:16:49:07:74:a9:44:ca:20:44:fc:af:56: 9a:ad:dd:3d:cb:17:3b:46:f7:1c:ae:57:f2:ce:5d: f6:93:ae:2f:49:cb:6a:96:67:ad:e3:46:b1:27:f5: ae:39:d0:20:f6:4d:23:33:45:65:b9:6d:8a:32:bc: 39:52:77:20:0a:b1:eb:0e:53:6c:49:6d:9b:7e:7b: d8:ee:71:ac:0c:2d:cd:7d:98:71:de:46:11:b7:8e: 3f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:19:14:A5:9D:44:23:CC:5D:00:3E:0F:5C:2C:38:7A:D1:15:6E:98 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e1:82:d9:48:e6:1d:e8:f1:b4:26:30:c0:10:10:66:9f:1c: c1:a6:9f:77:9d:c2:fa:65:59:e4:10:c2:87:ad:17:46:cd:51: b2:60:e3:c7:e4:6d:bd:51:42:ca:f8:43:ea:ad:71:31:b9:13: d8:0d:42:25:4c:ea:7c:17:ed:ef:e4:aa:6c:19:48:b7:ed:b0: 0f:26:f8:e0:3d:1c:6f:28:ce:91:2a:82:9e:77:80:1b:f8:f8: fc:a8:c7:57:06:3b:5a:6d:07:48:fe:82:f9:5a:2b:63:dd:7f: 9a:9a:c0:a3:e0:cb:ab:19:ac:8a:61:52:4b:00:fc:cb:f1:c3: 77:47:ec:0d:26:fb:7a:f8:ff:02:95:0b:81:2c:3a:14:ee:7a: 88:34:cf:f7:e6:6f:40:e8:36:87:a3:5b:2e:ce:2a:08:12:9e: 05:e2:f7:fc:37:ec:47:bf:0b:1f:41:48:26:67:4e:92:b1:22: 74:2c:eb:c2:16:07:72:7c:3b:1a:56:e9:df:7f:3b:26:42:e1: 29:29:d0:20:5a:2e:d4:c9:6f:35:1b:e8:fa:81:f9:35:be:b0: 95:3e:66:92:70:10:9c:ae:d7:72:fc:3d:45:90:ce:11:a4:c8: eb:ea:32:3d:21:37:9a:8d:df:5c:e0:21:08:1e:39:7d:71:02: f2:eb:7f:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUwNzAxMDExMjI4WhcNMjUwNzA4MDExMjI4WjAYMRYwFAYD VQQDEw02ODYzMzVmYy0yOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KSx/WKbLs9gAlGD5lCysiTd8UXE2k4LoOnf7qXSmZOUgoE/PS91iWxZ11Oh 20bRUxsgCXjNcTGMKXBFVbUYwQBUAlaK9tnPqbSMeQN5rfwkbp+w2CcIciv+qDNG DLFxks3aqnyMNYqjKr/3OuMOpqdzuItoKgod6CvyJrYVXbWGkthAWltTgQd1pKZn wTI3ZdiibhWbQRgHNWmPFYp2clCqe/Uh89kWSQd0qUTKIET8r1aard09yxc7Rvcc rlfyzl32k64vSctqlmet40axJ/WuOdAg9k0jM0VluW2KMrw5UncgCrHrDlNsSW2b fnvY7nGsDC3NfZhx3kYRt44/MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoZFKWd RCPMXQA+D1wsOHrRFW6YMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu4YLZSOYd6PG0JjDAEBBmnxzBpp93ncL6ZVnkEMKHrRdGzVGyYOPH 5G29UULK+EPqrXExuRPYDUIlTOp8F+3v5KpsGUi37bAPJvjgPRxvKM6RKoKed4Ab +Pj8qMdXBjtabQdI/oL5Witj3X+amsCj4MurGayKYVJLAPzL8cN3R+wNJvt6+P8C lQuBLDoU7nqINM/35m9A6DaHo1suzioIEp4F4vf8N+xHvwsfQUgmZ06SsSJ0LOvC FgdyfDsaVunffzsmQuEpKdAgWi7UyW81G+j6gfk1vrCVPmaScBCcrtdy/D1FkM4R pMjr6jI9ITeajd9c4CEIHjl9cQLy63+n -----END CERTIFICATE-----Generated at Thu Jul 3 01:13:47 2025 by rpki-client