$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: i41S5Z4UmM5xs3VO8EfqR6k4Ak51OcyEpfRsDGXXq+M= Subject key identifier: 3A:7A:18:E2:9B:10:36:5F:0B:81:CA:92:92:7B:D5:E8:5D:34:51:35 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 09B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 099C Signing time: Fri 04 Jul 2025 20:28:26 +0000 Manifest this update: Fri 04 Jul 2025 20:28:25 +0000 Manifest next update: Fri 11 Jul 2025 20:28:25 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: XC0+OQ64iDaunyc+l5Cu8J+8cW5+4QtBISn5A8vssTQ=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: 5fp5xPdrf28AzhElrO+JWN/gejEYqnFXoStD/HGk1zI=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: sHHQTYQ4Ee+qL1FSRc7R4PCypgoLoQnfR9k5950BZKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2482 (0x9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Jul 4 20:28:25 2025 GMT Not After : Jul 11 20:28:25 2025 GMT Subject: CN=68683969-cedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:6d:20:12:1a:36:0f:35:a0:a8:0d:50:d7: e0:9e:ef:65:40:2c:66:30:37:2c:9d:8c:39:7e:6a: 74:e7:df:05:ee:a9:5f:75:a1:2d:04:f5:23:36:9b: 8e:ce:ef:44:9f:54:0a:23:b4:0d:57:17:b1:58:f4: d3:83:78:6b:0a:88:38:cb:52:8b:6f:7f:f0:f9:d2: 52:06:b9:23:8e:58:b4:51:15:b5:cc:4f:9d:a5:cb: 63:14:62:27:63:72:6c:44:db:52:54:e3:7d:fb:bd: e5:db:4e:26:05:d6:a5:26:36:fa:d7:89:a8:7b:60: 27:95:df:62:1f:07:f7:aa:0e:31:01:42:ef:b5:c3: d5:2a:3c:0d:00:d4:8c:2a:5b:13:d2:91:62:bd:db: 6b:63:bf:2b:86:6a:84:d0:f0:e7:10:3d:90:65:9c: a7:03:e0:db:85:ea:28:0b:90:d4:58:35:1e:94:01: 04:f1:11:f0:32:73:b2:a4:54:d9:20:13:dd:65:35: fe:93:0b:df:50:a3:a4:e3:82:bd:b1:b8:48:8d:2f: 75:18:b8:e2:1a:dd:90:51:b5:77:db:db:b7:f4:a0: b8:7a:47:18:c6:49:2c:ba:a5:7c:bf:8c:70:56:ae: 93:a0:b7:9f:4a:b9:dd:d3:2f:38:48:fc:0e:68:9c: 1a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7A:18:E2:9B:10:36:5F:0B:81:CA:92:92:7B:D5:E8:5D:34:51:35 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:09:4b:b5:67:1c:9e:0f:1a:67:2d:a0:e0:78:75:6b:80:95: bb:5d:79:df:f8:f8:49:ef:6f:83:bb:47:0f:a2:00:b7:22:c3: 67:98:4a:a0:c0:12:7b:67:9a:2d:ac:de:4c:d0:6f:b3:13:0c: 32:24:b2:07:ee:e6:e2:87:1a:40:d8:f6:a6:ba:71:b5:7a:82: 2e:27:96:53:e2:6f:c2:e1:a2:06:70:43:a2:2a:11:d1:36:85: 63:b3:a0:85:63:78:5e:28:59:84:c9:b9:96:b6:9b:8d:ae:cb: d2:5b:38:69:4d:09:5c:3d:d0:50:38:e6:43:c6:f0:ee:4e:72: ad:44:c5:8e:b0:46:16:27:96:54:af:64:00:90:09:3b:00:a2: 62:e4:23:c7:21:aa:df:73:ed:0e:84:a7:6b:8f:ba:78:29:21: 7f:1c:aa:be:de:8d:fd:9f:df:b7:00:d8:4f:b4:df:60:e5:fb: be:2b:0d:cf:9d:64:79:7e:9f:5d:32:2d:39:3a:1f:aa:24:6e: c7:41:ba:0b:46:8d:2f:55:70:10:0a:77:ca:a4:dc:99:a4:4c: 8e:7a:34:2e:8a:5a:d4:52:f4:41:6d:63:77:98:90:63:f9:9c: dc:1e:d7:20:55:e9:ac:91:a1:cb:3f:da:6d:bc:7c:96:a8:9a: d4:8e:f9:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUwNzA0MjAyODI1WhcNMjUwNzExMjAyODI1WjAYMRYwFAYD VQQDEw02ODY4Mzk2OS1jZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCBtIBIaNg81oKgNUNfgnu9lQCxmMDcsnYw5fmp0598F7qlfdaEtBPUjNpuO zu9En1QKI7QNVxexWPTTg3hrCog4y1KLb3/w+dJSBrkjjli0URW1zE+dpctjFGIn Y3JsRNtSVON9+73l204mBdalJjb614moe2Anld9iHwf3qg4xAULvtcPVKjwNANSM KlsT0pFivdtrY78rhmqE0PDnED2QZZynA+DbheooC5DUWDUelAEE8RHwMnOypFTZ IBPdZTX+kwvfUKOk44K9sbhIjS91GLjiGt2QUbV329u39KC4ekcYxkksuqV8v4xw Vq6ToLefSrnd0y84SPwOaJwa6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDp6GOKb EDZfC4HKkpJ71ehdNFE1MB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHCUu1ZxyeDxpnLaDgeHVrgJW7XXnf+PhJ72+Du0cPogC3IsNnmEqg wBJ7Z5otrN5M0G+zEwwyJLIH7ubihxpA2PamunG1eoIuJ5ZT4m/C4aIGcEOiKhHR NoVjs6CFY3heKFmEybmWtpuNrsvSWzhpTQlcPdBQOOZDxvDuTnKtRMWOsEYWJ5ZU r2QAkAk7AKJi5CPHIarfc+0OhKdrj7p4KSF/HKq+3o39n9+3ANhPtN9g5fu+Kw3P nWR5fp9dMi05Oh+qJG7HQboLRo0vVXAQCnfKpNyZpEyOejQuilrUUvRBbWN3mJBj +ZzcHtcgVemskaHLP9ptvHyWqJrUjvmW -----END CERTIFICATE-----Generated at Sat Jul 5 11:40:19 2025 by rpki-client