$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: aAqZOSyUm5ETI3KUVkqIG5RSiy5Ry0wJ07ftBZ70QGw= Subject key identifier: 81:FC:B0:3D:FD:F6:E8:91:D0:86:43:CD:35:D7:6C:E0:07:DC:93:BA Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: DE Signing time: Sun 29 Jun 2025 04:37:09 +0000 Manifest this update: Sun 29 Jun 2025 04:37:08 +0000 Manifest next update: Sun 06 Jul 2025 04:37:08 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: 99lE4Ps701c2GjDDDfm9HH/UvpQ2aB51Ji2NugzIpuA=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 04:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Jun 29 04:37:08 2025 GMT Not After : Jul 6 04:37:08 2025 GMT Subject: CN=6860c2f5-4903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8d:27:3b:21:40:ef:ad:09:f8:15:4a:12:a0: 36:3a:20:f3:6f:9d:fa:a6:03:de:be:da:db:7b:e9: 7c:eb:5d:a6:78:c6:3e:81:b6:89:ef:b5:99:c6:00: 5b:31:1e:8f:6b:a0:29:69:c3:b4:74:c1:f2:2b:ed: 4c:7a:92:11:66:48:a0:f3:fe:cf:04:76:c1:39:25: a1:8f:07:5b:ce:ee:fd:88:71:21:9c:6b:4c:62:01: 61:b3:61:f1:c3:d4:21:be:f9:ed:bf:b3:6a:12:ee: 41:ef:d9:25:1b:91:6c:0f:ad:67:6a:cc:8e:24:8a: 9a:a0:a9:cf:6e:94:1d:4b:7e:b7:44:1f:ab:28:df: 79:29:5d:38:c6:7b:c1:e1:98:57:5c:b5:12:1f:77: c3:18:3d:5b:a6:f0:b0:54:a1:f5:61:53:f4:4c:ec: 7b:a8:da:f0:82:8b:cc:3f:35:99:26:48:8d:18:f2: 2a:41:7e:d5:d4:03:f7:fc:0a:dd:7e:68:ba:f3:f2: d1:5d:a5:45:3f:c0:16:72:15:0d:f5:e6:9b:9e:e6: 82:7c:f6:d0:ff:b6:4e:b7:3a:43:60:c4:f6:b5:c3: b9:d1:e0:4f:75:ea:ce:a5:1e:98:97:88:b6:c8:2a: c9:4e:51:cf:d0:14:0f:d0:8e:91:be:9c:31:62:94: ed:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FC:B0:3D:FD:F6:E8:91:D0:86:43:CD:35:D7:6C:E0:07:DC:93:BA X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b3:c3:8c:8c:52:28:7f:bd:c6:33:86:86:42:3c:33:9e:60: 04:31:75:5e:ad:aa:47:78:b5:77:3a:4b:cc:42:4f:39:e9:bc: 46:32:b9:5c:13:c5:9b:c0:82:a7:43:5d:20:07:88:87:fc:07: de:b9:4b:ec:0f:ba:e5:6b:f8:05:6c:59:5e:ab:69:ad:2f:17: f9:c9:40:bf:a4:eb:c0:fc:ba:c1:4b:5d:7f:6f:20:9f:c6:99: 34:4d:5c:4f:cc:6a:0a:b9:95:9e:3e:69:d1:d2:44:1b:95:c6: cf:4a:67:0c:2a:70:9c:fb:7e:e1:9c:2f:bc:73:f5:92:57:bd: 09:ee:81:20:32:74:c2:17:4c:2d:58:d5:8b:05:0d:82:8e:de: 6d:37:19:93:70:3d:21:fc:b4:e2:6c:21:92:78:26:84:8a:7c: d7:1b:eb:b4:d8:95:fc:ca:e3:10:b1:b7:9e:ec:11:74:99:0f: 44:ac:19:c1:c2:db:0e:d3:a8:04:9b:fd:94:d4:31:1b:73:31: 31:49:d9:76:b8:8b:19:07:af:dc:6f:5c:ba:be:cc:15:3b:55: 0e:c5:e1:5e:01:c9:b1:ce:ef:fa:99:d5:39:6e:e2:93:0a:4c: 53:17:c0:9c:aa:90:11:ff:14:c5:d1:9d:1f:e1:0d:7a:b8:b0: 51:c3:73:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwNjI5MDQzNzA4WhcNMjUwNzA2MDQzNzA4WjAYMRYwFAYD VQQDEw02ODYwYzJmNS00OTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv40nOyFA760J+BVKEqA2OiDzb536pgPevtrbe+l8612meMY+gbaJ77WZxgBb MR6Pa6ApacO0dMHyK+1MepIRZkig8/7PBHbBOSWhjwdbzu79iHEhnGtMYgFhs2Hx w9Qhvvntv7NqEu5B79klG5FsD61nasyOJIqaoKnPbpQdS363RB+rKN95KV04xnvB 4ZhXXLUSH3fDGD1bpvCwVKH1YVP0TOx7qNrwgovMPzWZJkiNGPIqQX7V1AP3/Ard fmi68/LRXaVFP8AWchUN9eabnuaCfPbQ/7ZOtzpDYMT2tcO50eBPderOpR6Yl4i2 yCrJTlHP0BQP0I6RvpwxYpTtcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIH8sD39 9uiR0IZDzTXXbOAH3JO6MB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAms8OMjFIof73GM4aGQjwznmAEMXVerapHeLV3OkvMQk856bxGMrlc E8WbwIKnQ10gB4iH/AfeuUvsD7rla/gFbFleq2mtLxf5yUC/pOvA/LrBS11/byCf xpk0TVxPzGoKuZWePmnR0kQblcbPSmcMKnCc+37hnC+8c/WSV70J7oEgMnTCF0wt WNWLBQ2Cjt5tNxmTcD0h/LTibCGSeCaEinzXG+u02JX8yuMQsbee7BF0mQ9ErBnB wtsO06gEm/2U1DEbczExSdl2uIsZB6/cb1y6vswVO1UOxeFeAcmxzu/6mdU5buKT CkxTF8CcqpAR/xTF0Z0f4Q16uLBRw3NX -----END CERTIFICATE-----Generated at Mon Jun 30 18:14:09 2025 by rpki-client