$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: q6LjUeuhhQWcLlXdsn819kJuV+fVCMlfXAFhovcQtA0= Subject key identifier: 4B:62:A3:46:3D:9B:8A:9D:49:4B:38:E8:AD:80:EE:78:C5:44:33:80 Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 15 Signing time: Thu 03 Jul 2025 08:16:05 +0000 Manifest this update: Thu 03 Jul 2025 08:16:04 +0000 Manifest next update: Thu 10 Jul 2025 08:16:04 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: /baF8CblMCTRwNyulVCUI+YW5Vo2hDvzd6TFM+Gq9SM=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: uKfaLXcOCNJdE2XGkLLuO2/nisMUjVXsuFOacDhWkTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Jul 3 08:16:04 2025 GMT Not After : Jul 10 08:16:04 2025 GMT Subject: CN=68663c45-e823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7f:e3:2e:21:14:8b:73:5e:a8:86:e1:94:20: 07:3a:9e:c5:85:12:71:95:41:b3:de:b2:b4:51:f8: f5:7d:36:c6:3f:46:81:87:3d:d3:11:50:b9:14:a7: 4a:14:02:26:11:2e:91:45:b7:a6:11:90:a2:09:6d: b0:62:cb:5c:2d:f0:9f:6e:e4:91:5a:73:3b:6f:06: 4e:6f:c1:53:af:9e:f1:f8:00:c2:a7:e8:e7:17:78: dc:c9:d5:55:c9:97:db:bd:07:70:73:ed:ce:36:a0: 77:75:4a:43:af:01:17:cd:21:0c:37:ce:41:e3:c6: 4e:d1:aa:ad:f7:66:5b:23:86:29:f1:a3:a4:b4:8b: c7:6f:a1:a9:b5:67:7d:2f:47:2b:6e:79:96:8e:9a: 57:28:82:de:04:76:e2:5e:21:e6:f2:6e:27:a4:19: b9:17:64:52:2f:83:f9:1e:a3:ca:19:dc:7e:2d:a6: fd:c8:ef:58:62:13:6c:77:75:a3:9c:73:e8:dd:fa: 81:ff:9a:f6:96:d1:ce:65:65:4e:5d:5c:cd:ec:bb: 15:fa:07:63:11:52:28:d7:d7:43:37:6c:29:d7:68: 68:e8:51:48:c7:b9:03:fa:54:2d:f5:55:3c:aa:f9: a6:64:65:1c:00:55:62:1b:56:56:e7:5d:07:18:6d: 75:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:62:A3:46:3D:9B:8A:9D:49:4B:38:E8:AD:80:EE:78:C5:44:33:80 X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:4e:4d:85:03:c6:53:15:2c:ae:bf:51:a1:8c:31:8c:78:05: 0b:ec:21:90:0a:6c:67:eb:0c:b8:20:21:d4:4c:14:c3:a3:44: 3b:6a:65:bd:0a:f0:da:88:1f:01:60:5c:ef:0a:94:81:6e:00: 7b:7e:01:6e:10:e8:34:05:ef:51:11:76:c2:44:28:de:66:db: 30:e9:78:fe:15:47:61:0e:8b:cd:6a:cd:76:09:d2:b1:e1:81: aa:94:66:85:f1:94:10:a1:2b:42:c0:ef:08:33:7e:be:ab:d0: 25:2d:bf:4f:e4:86:db:a4:2c:47:04:31:ba:4f:97:6a:30:33: 26:fc:d0:b2:b5:47:98:05:11:3f:4f:9f:c1:66:e7:9f:fe:e6: 34:6e:e7:00:63:a5:54:bb:8c:d5:de:59:bf:67:bb:a0:27:0e: 68:a4:27:92:43:21:e3:a4:80:a3:88:a5:f4:9a:16:d8:ac:86: b7:7d:19:60:8b:d9:8c:a1:b3:88:fe:8a:15:eb:d0:fa:bd:48: 93:d9:00:16:7d:57:1f:60:b5:7d:a1:e1:4b:73:1c:41:01:6c: 07:36:77:92:33:94:48:fb:77:a9:56:e7:cb:33:03:ba:b2:57: d7:b1:fb:f4:89:b7:da:de:9f:d5:03:d2:bb:af:4c:04:d4:45: 6c:7d:d6:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoNUVDNUZCMzM0RUU1MkI5MDA5Q0I5MjNDNjkzQkQyMEYw NDc4QTE0NDAeFw0yNTA3MDMwODE2MDRaFw0yNTA3MTAwODE2MDRaMBgxFjAUBgNV BAMTDTY4NjYzYzQ1LWU4MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0f+MuIRSLc16ohuGUIAc6nsWFEnGVQbPesrRR+PV9NsY/RoGHPdMRULkUp0oU AiYRLpFFt6YRkKIJbbBiy1wt8J9u5JFacztvBk5vwVOvnvH4AMKn6OcXeNzJ1VXJ l9u9B3Bz7c42oHd1SkOvARfNIQw3zkHjxk7Rqq33Zlsjhinxo6S0i8dvoam1Z30v RytueZaOmlcogt4EduJeIebybiekGbkXZFIvg/keo8oZ3H4tpv3I71hiE2x3daOc c+jd+oH/mvaW0c5lZU5dXM3suxX6B2MRUijX10M3bCnXaGjoUUjHuQP6VC31VTyq +aZkZRwAVWIbVlbnXQcYbXWFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS2KjRj2b ip1JSzjorYDueMVEM4AwHwYDVR0jBBgwFoAUXsX7M07lK5AJy5I8aTvSDwR4oUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzM0MDA4MDIyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9V US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHNYN00wN2xLNUFKeTVJOGFUdlNEd1I0b1VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF Rjg3LzM0MDA4MDIyMzhCMzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVB Snk1SThhVHZTRHdSNG9VUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGFOTYUDxlMVLK6/UaGMMYx4BQvsIZAKbGfrDLggIdRMFMOjRDtqZb0K 8NqIHwFgXO8KlIFuAHt+AW4Q6DQF71ERdsJEKN5m2zDpeP4VR2EOi81qzXYJ0rHh gaqUZoXxlBChK0LA7wgzfr6r0CUtv0/khtukLEcEMbpPl2owMyb80LK1R5gFET9P n8Fm55/+5jRu5wBjpVS7jNXeWb9nu6AnDmikJ5JDIeOkgKOIpfSaFtishrd9GWCL 2Yyhs4j+ihXr0Pq9SJPZABZ9Vx9gtX2h4UtzHEEBbAc2d5IzlEj7d6lW58szA7qy V9ex+/SJt9ren9UD0ruvTATURWx91hk= -----END CERTIFICATE-----Generated at Thu Jul 3 23:42:24 2025 by rpki-client