$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: Ps1Y6vYBVp5/MN5jdHrKO9qFqjoeadlM4ggdBpDsFmc= Subject key identifier: EE:2B:EB:E6:56:F5:76:21:EE:99:6D:A8:79:A1:DB:E0:B0:C9:3C:B6 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 01C4 Signing time: Tue 01 Jul 2025 03:22:26 +0000 Manifest this update: Tue 01 Jul 2025 03:22:26 +0000 Manifest next update: Tue 08 Jul 2025 03:22:26 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: xgQ00KJ9wYYJl69O+/BD2vfCJ7G+Wz8N/8aJ/JtGaFE=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: 9FynllD8H+NI8HSEXg9Jjmq002CiTaGo7ZssucPUw/c=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: pf/aq5LQ2SyN9nQK//wVXk1HeFtnOQFOhE/br9mZqh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Jul 1 03:22:26 2025 GMT Not After : Jul 8 03:22:26 2025 GMT Subject: CN=68635472-38cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f4:a8:3e:27:c3:92:91:6e:86:b0:51:6f:17: 22:15:33:36:a5:2e:06:56:b8:83:fe:ff:8c:10:73: da:09:3b:8b:45:84:47:36:43:08:92:0f:e4:0a:02: d8:e8:70:b3:64:3a:d8:8b:39:1f:2d:47:34:cf:b3: 53:5b:6f:c8:55:c9:2c:cb:83:79:eb:75:b3:78:a7: 65:39:1f:10:99:b6:9c:b2:34:03:0d:1f:2b:91:e7: 86:ab:1f:29:82:35:77:c3:f0:23:80:b6:70:5c:b9: 71:fa:0f:a4:81:43:03:55:0b:4f:f2:b4:a7:ea:02: da:17:41:1f:18:5c:9d:41:c1:a0:ec:29:63:6c:83: 71:57:3e:1e:36:15:35:6d:7b:0c:69:88:a8:47:34: 00:25:ef:11:36:7f:1a:2e:cd:d4:c5:b6:1a:aa:38: f5:92:20:ff:ea:e1:40:0b:36:94:02:a1:27:8d:76: 3a:fe:96:ab:67:8f:64:ad:e6:95:3e:e1:53:ec:ed: b3:19:61:70:17:5d:fa:62:0c:75:9d:77:e6:11:66: 2c:7e:72:2b:cc:d5:54:a0:98:01:0f:31:ac:a6:be: ce:85:aa:36:63:d8:4c:4d:7d:f6:19:43:25:7d:a8: 00:1a:9d:70:cf:be:7b:39:ab:99:b0:4a:cf:46:e7: 67:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:2B:EB:E6:56:F5:76:21:EE:99:6D:A8:79:A1:DB:E0:B0:C9:3C:B6 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:3b:a9:e5:75:78:c5:95:da:b2:6d:53:7f:ff:1e:31:0b:d7: 65:89:dd:82:a2:9e:bb:57:9f:e9:af:88:3f:12:a7:1f:b8:4e: 74:b5:d6:31:d7:11:c1:43:9c:f9:14:43:49:52:b8:ce:93:dd: 27:06:8c:15:59:75:7b:3d:1e:1e:65:b1:ba:fe:31:fa:86:f1: 25:7f:e8:9b:5a:ac:fe:e5:ce:7a:fd:78:78:2f:13:44:48:37: be:b4:4b:bb:f4:cb:52:c0:5b:8a:fa:0e:36:69:6b:81:b0:dd: 87:7b:87:10:24:09:cd:0e:74:35:c7:c5:1f:ac:e5:34:e4:dc: a9:a5:2c:06:5f:7e:ef:bf:e1:5e:5a:2f:7e:3b:49:cc:55:89: 56:30:0d:02:2d:bb:4d:22:dc:cd:31:e9:8a:05:6c:b4:46:3f: c7:4f:b4:ee:b6:7a:92:f8:56:75:f1:05:c9:f4:83:85:8f:ef: a2:e0:c3:79:88:33:e1:0f:70:e8:4d:75:a9:86:30:8f:7a:8b: f7:bc:14:30:ed:5d:09:84:55:da:45:d2:8a:89:12:bf:45:65: 4a:e0:e6:1c:b9:2a:55:2c:05:c5:c9:af:5e:34:57:d0:e5:a6: 14:ff:83:0d:32:26:43:87:a3:b2:b8:fb:a9:7e:8f:ba:38:51: d5:6e:6f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUwNzAxMDMyMjI2WhcNMjUwNzA4MDMyMjI2WjAYMRYwFAYD VQQDEw02ODYzNTQ3Mi0zOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/SoPifDkpFuhrBRbxciFTM2pS4GVriD/v+MEHPaCTuLRYRHNkMIkg/kCgLY 6HCzZDrYizkfLUc0z7NTW2/IVcksy4N563WzeKdlOR8QmbacsjQDDR8rkeeGqx8p gjV3w/AjgLZwXLlx+g+kgUMDVQtP8rSn6gLaF0EfGFydQcGg7CljbINxVz4eNhU1 bXsMaYioRzQAJe8RNn8aLs3UxbYaqjj1kiD/6uFACzaUAqEnjXY6/parZ49kreaV PuFT7O2zGWFwF136Ygx1nXfmEWYsfnIrzNVUoJgBDzGspr7Ohao2Y9hMTX32GUMl fagAGp1wz757OauZsErPRudn5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4r6+ZW 9XYh7pltqHmh2+CwyTy2MB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3O6nldXjFldqybVN//x4xC9dlid2Cop67V5/pr4g/EqcfuE50tdYx 1xHBQ5z5FENJUrjOk90nBowVWXV7PR4eZbG6/jH6hvElf+ibWqz+5c56/Xh4LxNE SDe+tEu79MtSwFuK+g42aWuBsN2He4cQJAnNDnQ1x8UfrOU05NyppSwGX37vv+Fe Wi9+O0nMVYlWMA0CLbtNItzNMemKBWy0Rj/HT7TutnqS+FZ18QXJ9IOFj++i4MN5 iDPhD3DoTXWphjCPeov3vBQw7V0JhFXaRdKKiRK/RWVK4OYcuSpVLAXFya9eNFfQ 5aYU/4MNMiZDh6OyuPupfo+6OFHVbm89 -----END CERTIFICATE-----Generated at Wed Jul 2 19:59:51 2025 by rpki-client