$ rpki-client -vvf rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft File: xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft (raw, json) Hash identifier: bi5UCbsvSH4LIqTA/2jyDKYGAGWnwcPJ8JCKnZoIk5Y= Subject key identifier: B5:78:C3:2E:3C:6B:13:BE:AB:50:88:FB:49:1E:D3:77:BE:17:FC:4D Authority key identifier: C4:F9:32:2E:EE:96:70:9E:42:21:C6:DD:3C:EC:B8:40:38:4F:02:01 Certificate issuer: /CN=A918CA19/serialNumber=C4F9322EEE96709E4221C6DD3CECB840384F0201 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft Manifest number: 01D1 Signing time: Thu 03 Jul 2025 02:54:51 +0000 Manifest this update: Thu 03 Jul 2025 02:54:50 +0000 Manifest next update: Thu 10 Jul 2025 02:54:50 +0000 Files and hashes: 1: xPkyLu6WcJ5CIcbdPOy4QDhPAgE.crl (hash: EcN4eaAxKHsV43w017jTEmZd+hJU7zTcpvmnlejCUfU=) 2: AE94F8108CDD11ED8F7B6515C4F9AE02.roa (hash: RmJtDMkcxfQ3eQrKn0Yy1kaaLYDY2h9Y7DjrNYqUSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.crl rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CA19, serialNumber=C4F9322EEE96709E4221C6DD3CECB840384F0201 Validity Not Before: Jul 3 02:54:50 2025 GMT Not After : Jul 10 02:54:50 2025 GMT Subject: CN=6865f0fa-e5d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9e:d8:df:3b:db:91:aa:97:9c:b5:ba:c5:c3: 10:5e:2e:07:c4:6e:05:76:d0:f0:37:8c:55:f8:ac: 98:ee:d1:1c:27:54:45:53:85:2f:57:c2:52:a6:80: ca:98:d9:ec:7b:f5:4f:ab:a7:74:a9:67:61:4e:2f: 08:e8:e8:f1:76:25:9d:26:3e:31:92:f8:bd:85:55: f1:81:6d:9e:35:d0:9b:dd:5d:08:56:4d:e2:44:38: 03:47:90:7f:95:98:22:0c:4c:4a:5b:32:fa:39:3c: 5b:f1:12:23:3e:4c:68:cf:49:c0:55:cc:31:63:9a: fd:9f:c5:fa:f0:51:ee:b5:f6:80:b4:a1:5c:65:2c: d7:c6:cf:fb:60:06:fe:00:60:62:49:d4:a9:58:1c: d0:33:be:a5:d9:37:70:29:de:63:57:7f:f0:51:45: 11:0e:e9:f8:63:60:2e:ea:55:42:7c:73:f2:00:6e: ac:18:b9:3f:5f:62:90:07:4a:66:d2:04:02:36:9a: 3a:92:a3:f8:f2:4a:1e:02:d4:e2:0a:d0:82:f9:7c: 0e:2f:03:3e:c1:f5:b2:6a:e1:7b:e3:01:14:d9:25: ab:18:79:8b:d6:db:94:15:f6:c7:18:1c:90:e9:aa: 09:1a:dc:6c:46:8b:93:d7:78:51:ac:8b:31:3f:03: 4e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:78:C3:2E:3C:6B:13:BE:AB:50:88:FB:49:1E:D3:77:BE:17:FC:4D X509v3 Authority Key Identifier: keyid:C4:F9:32:2E:EE:96:70:9E:42:21:C6:DD:3C:EC:B8:40:38:4F:02:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CA19/F802A4248CD911ED99097D0FC4F9AE02/xPkyLu6WcJ5CIcbdPOy4QDhPAgE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:8e:f0:87:bd:7c:25:cd:7e:90:f7:95:51:a8:e2:5b:30:16: 95:8f:9d:0c:dc:e9:9e:80:c6:55:f6:2c:13:40:53:af:2f:1a: 40:f6:bf:c2:72:6d:54:2c:71:97:3b:7d:2e:11:24:d3:ae:9a: d5:e3:8e:39:85:12:cf:62:77:79:f9:07:06:83:97:29:66:48: a5:f7:b9:63:d5:ed:dd:b9:41:0c:02:c0:81:48:c8:ce:d7:f0: d4:f8:07:f2:b3:13:07:8f:e6:24:57:0c:03:23:a9:e4:77:4d: 34:61:75:04:f8:a1:3b:24:3f:bb:32:d4:b3:4a:ba:e6:57:cc: 41:7e:39:04:29:c8:19:5b:fe:09:f5:a0:d6:30:85:79:8c:27: 82:46:7e:bf:39:8b:41:d9:6d:ec:40:16:48:fc:fb:1b:f6:bb: 7f:1a:dc:ec:d2:a1:4d:3f:a6:65:38:48:d2:76:0f:de:d3:83: 37:54:25:4a:99:a5:38:56:4b:c6:0a:dc:9f:e1:fb:79:92:71: 00:29:f3:34:93:9e:e1:49:d4:90:f0:0f:19:b0:cd:d0:99:8f: 58:8d:9b:f6:3f:89:93:e8:a5:ce:0f:fd:d4:99:58:f0:33:d2: 63:b9:07:08:4a:88:21:1b:ea:2a:72:e6:82:23:59:6a:52:62: 55:6b:1c:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBMTkxMTAvBgNVBAUTKEM0RjkzMjJFRUU5NjcwOUU0MjIxQzZERDNDRUNCODQw Mzg0RjAyMDEwHhcNMjUwNzAzMDI1NDUwWhcNMjUwNzEwMDI1NDUwWjAYMRYwFAYD VQQDEw02ODY1ZjBmYS1lNWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ7Y3zvbkaqXnLW6xcMQXi4HxG4FdtDwN4xV+KyY7tEcJ1RFU4UvV8JSpoDK mNnse/VPq6d0qWdhTi8I6OjxdiWdJj4xkvi9hVXxgW2eNdCb3V0IVk3iRDgDR5B/ lZgiDExKWzL6OTxb8RIjPkxoz0nAVcwxY5r9n8X68FHutfaAtKFcZSzXxs/7YAb+ AGBiSdSpWBzQM76l2TdwKd5jV3/wUUURDun4Y2Au6lVCfHPyAG6sGLk/X2KQB0pm 0gQCNpo6kqP48koeAtTiCtCC+XwOLwM+wfWyauF74wEU2SWrGHmL1tuUFfbHGByQ 6aoJGtxsRouT13hRrIsxPwNOZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLV4wy48 axO+q1CI+0ke03e+F/xNMB8GA1UdIwQYMBaAFMT5Mi7ulnCeQiHG3TzsuEA4TwIB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ExOS9GODAyQTQyNDhD RDkxMUVEOTkwOTdEMEZDNEY5QUUwMi94UGt5THU2V2NKNUNJY2JkUE95NFFEaFBB Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQa3lMdTZXY0o1Q0ljYmRQT3k0UURoUEFnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ExOS9GODAyQTQyNDhDRDkxMUVEOTkwOTdEMEZDNEY5QUUwMi94UGt5THU2V2NK NUNJY2JkUE95NFFEaFBBZ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYjvCHvXwlzX6Q95VRqOJbMBaVj50M3OmegMZV9iwTQFOvLxpA9r/C cm1ULHGXO30uESTTrprV4445hRLPYnd5+QcGg5cpZkil97lj1e3duUEMAsCBSMjO 1/DU+AfysxMHj+YkVwwDI6nkd000YXUE+KE7JD+7MtSzSrrmV8xBfjkEKcgZW/4J 9aDWMIV5jCeCRn6/OYtB2W3sQBZI/Psb9rt/Gtzs0qFNP6ZlOEjSdg/e04M3VCVK maU4VkvGCtyf4ft5knEAKfM0k57hSdSQ8A8ZsM3QmY9YjZv2P4mT6KXOD/3UmVjw M9JjuQcISoghG+oqcuaCI1lqUmJVaxyU -----END CERTIFICATE-----Generated at Thu Jul 3 10:37:04 2025 by rpki-client