$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft File: sXBCw3IXHA9BRv78RNHbqlIjhxs.mft (raw, json) Hash identifier: FqEjX5N8jKlXbQywyDgNlahPhoXXBLXen1NXIgVhc9M= Subject key identifier: 50:80:C7:38:D0:02:8C:11:1F:3A:48:70:D4:9A:37:C9:B3:44:38:C1 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 0740 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft Manifest number: 073B Signing time: Wed 02 Jul 2025 22:01:09 +0000 Manifest this update: Wed 02 Jul 2025 22:01:09 +0000 Manifest next update: Wed 09 Jul 2025 22:01:09 +0000 Files and hashes: 1: sXBCw3IXHA9BRv78RNHbqlIjhxs.crl (hash: gAPmBtQsDABrgJZnUgOLpAdLY+swa3JW+Zy4SnM04uQ=) 2: 3A9A3904330011EBA08B865DC4F9AE02.roa (hash: 3vNGkA3tCUjQbATswchBY3GI0Vd54z+gZRifmc/PxUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1856 (0x740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6, serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: Jul 2 22:01:09 2025 GMT Not After : Jul 9 22:01:09 2025 GMT Subject: CN=6865ac25-32cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:97:cb:bc:f4:6a:89:ab:2a:09:23:54:c4:c7: 47:53:c3:5c:36:5f:59:7f:d3:18:e9:fa:de:1e:61: 5f:a1:b3:a4:5f:58:d2:e9:ff:f7:6a:49:0c:ff:56: f7:3c:13:e4:c7:43:52:d9:cf:a3:73:7c:88:4b:70: 8c:d6:73:0d:73:22:a2:54:cf:2d:e7:8f:92:97:e7: c4:15:fb:ab:b9:a1:da:fb:97:55:32:e9:93:3b:28: 2c:ec:1a:ab:83:68:8e:89:ed:c0:c9:57:2b:e9:f8: fc:cf:17:34:6b:c0:e2:a7:b7:b1:88:84:eb:85:70: 97:e4:60:5a:52:aa:2b:83:c2:1c:b8:0b:ad:0d:a1: 25:11:e5:60:5f:41:7c:3c:1f:af:69:b7:64:9b:8f: 3d:aa:c4:a6:69:58:25:3a:db:62:48:50:c9:8a:c2: 31:8b:cd:2a:22:24:80:35:d4:28:2b:db:af:b2:65: 87:5b:11:d6:af:de:1a:8c:ba:e0:e5:e9:19:95:84: 8d:5a:64:77:32:3c:7b:c4:50:aa:46:fc:4a:2a:05: 23:04:65:01:c3:ee:2c:bc:4f:39:95:1a:11:10:c3: dc:61:3b:97:99:e9:64:17:e9:90:db:d2:a2:a2:c3: 20:4b:ff:8d:23:cd:20:80:d6:a7:43:bb:68:d5:a7: c4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:80:C7:38:D0:02:8C:11:1F:3A:48:70:D4:9A:37:C9:B3:44:38:C1 X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:35:5e:b9:64:05:96:57:b7:d9:3f:96:9e:15:f3:48:b4:49: 26:fd:b6:1f:cb:e6:cd:c0:5f:df:eb:eb:b6:f5:ae:d7:60:b5: d1:8d:53:e0:93:b8:13:87:84:0c:27:fb:85:fd:06:80:03:19: a2:66:93:63:02:21:28:57:be:0d:5f:74:ac:74:bc:47:25:4e: 8c:ee:4c:67:b8:c5:d2:82:c2:16:60:e1:86:83:14:33:dc:0d: 3d:a5:9b:07:a9:cb:75:80:af:35:c8:45:8b:e2:c6:7b:b7:44: 57:6f:8c:4a:65:a5:3a:fa:87:09:1e:1c:92:3b:e9:66:9f:25: cd:fe:43:9f:60:3b:e9:be:af:bf:87:af:4b:9c:74:6d:e8:50: 3e:e1:91:7f:d3:83:e6:c2:b4:3c:eb:ec:aa:4b:b3:ca:8a:fd: 1b:6c:3b:e0:ef:b4:e4:29:43:43:6e:f2:53:f2:7b:1e:02:74: ac:ef:db:6c:50:d3:98:17:7f:60:ef:15:76:ad:57:08:1c:92: c8:b4:8a:e4:c4:81:2e:f3:77:72:71:c5:87:44:f7:bb:53:e4: 3f:f5:54:b5:be:94:f9:b2:90:d5:c0:6b:9d:ac:02:78:17:42: 20:b2:80:44:3f:03:d1:45:79:59:76:02:5d:e4:53:e3:dc:36: 9e:7c:5e:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjUwNzAyMjIwMTA5WhcNMjUwNzA5MjIwMTA5WjAYMRYwFAYD VQQDEw02ODY1YWMyNS0zMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZfLvPRqiasqCSNUxMdHU8NcNl9Zf9MY6freHmFfobOkX1jS6f/3akkM/1b3 PBPkx0NS2c+jc3yIS3CM1nMNcyKiVM8t54+Sl+fEFfuruaHa+5dVMumTOygs7Bqr g2iOie3AyVcr6fj8zxc0a8Dip7exiITrhXCX5GBaUqorg8IcuAutDaElEeVgX0F8 PB+vabdkm489qsSmaVglOttiSFDJisIxi80qIiSANdQoK9uvsmWHWxHWr94ajLrg 5ekZlYSNWmR3Mjx7xFCqRvxKKgUjBGUBw+4svE85lRoREMPcYTuXmelkF+mQ29Ki osMgS/+NI80ggNanQ7to1afEiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCAxzjQ AowRHzpIcNSaN8mzRDjBMB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGNi8xOTg2QjlEODMyRkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhB OUJSdjc4Uk5IYnFsSWpoeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjNV65ZAWWV7fZP5aeFfNItEkm/bYfy+bNwF/f6+u29a7XYLXRjVPg k7gTh4QMJ/uF/QaAAxmiZpNjAiEoV74NX3SsdLxHJU6M7kxnuMXSgsIWYOGGgxQz 3A09pZsHqct1gK81yEWL4sZ7t0RXb4xKZaU6+ocJHhySO+lmnyXN/kOfYDvpvq+/ h69LnHRt6FA+4ZF/04PmwrQ86+yqS7PKiv0bbDvg77TkKUNDbvJT8nseAnSs79ts UNOYF39g7xV2rVcIHJLItIrkxIEu83dyccWHRPe7U+Q/9VS1vpT5spDVwGudrAJ4 F0IgsoBEPwPRRXlZdgJd5FPj3DaefF57 -----END CERTIFICATE-----Generated at Thu Jul 3 17:30:06 2025 by rpki-client