$ rpki-client -vvf rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft File: racwBjpGGMJtFVQ1gZU7AYX9nIU.mft (raw, json) Hash identifier: jFCmnAPwFNHkJc9haqyLXYulHn+c3X/98TJ7vYCu230= Subject key identifier: 10:85:1A:FC:BE:99:DE:DF:88:CF:B7:FF:50:F0:E4:B4:55:96:D4:31 Authority key identifier: AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 Certificate issuer: /CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft Manifest number: 1276 Signing time: Wed 02 Jul 2025 19:23:21 +0000 Manifest this update: Wed 02 Jul 2025 19:23:21 +0000 Manifest next update: Wed 09 Jul 2025 19:23:21 +0000 Files and hashes: 1: racwBjpGGMJtFVQ1gZU7AYX9nIU.crl (hash: YqebTlP509+67GVjJSHvf14YzuFea7AlXCJg3vDLxHQ=) 2: 84DF7DDE361211EBACEF8647C4F9AE02.roa (hash: 5XwqomZ9BLQ4EjKkc4C/QpwLGFRZM50AcN0fv78p3Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199231, serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Validity Not Before: Jul 2 19:23:21 2025 GMT Not After : Jul 9 19:23:21 2025 GMT Subject: CN=68658729-6682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:27:fa:74:19:a1:86:34:93:f6:51:d0:bc:54: 1a:05:0f:1d:8b:32:61:f2:56:48:60:c9:8d:34:c1: 35:0d:fc:37:23:59:69:38:ee:8b:0a:b5:a5:26:fa: a7:d6:77:7a:df:cb:a0:af:ac:4d:61:d0:21:79:4f: 22:a4:c6:33:37:33:32:7f:dd:c7:f8:0f:e3:8b:fb: da:63:9d:b6:8d:dd:22:9d:b5:19:51:38:5e:37:f5: 69:b8:bf:7e:15:91:5b:20:50:3d:24:07:fa:a9:eb: a9:cb:fb:d7:bb:d5:d3:8b:41:52:f2:23:16:c4:9b: 3b:01:9e:ed:48:b4:7c:88:b6:f0:55:b2:c6:21:3a: 38:ac:ee:da:78:ef:09:51:b9:f5:51:e0:79:75:ce: cf:0a:8a:a7:e6:a0:6d:34:f7:c3:bb:10:a2:74:20: ee:85:1d:be:d6:4d:c5:4b:86:24:f3:41:eb:26:38: 33:8d:29:d2:f9:1f:20:62:3f:6b:23:40:9d:c7:f0: c9:94:7c:69:3e:59:76:76:db:0e:cf:27:37:26:ad: eb:f7:54:10:31:b9:17:09:67:6c:c4:55:fb:d2:d0: 5f:8f:19:9d:c8:1c:0a:dc:d9:db:8c:1a:fb:d6:20: a5:a7:b6:60:6f:be:f9:3c:83:9b:7b:c5:c6:51:fe: e1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:85:1A:FC:BE:99:DE:DF:88:CF:B7:FF:50:F0:E4:B4:55:96:D4:31 X509v3 Authority Key Identifier: keyid:AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:fc:b6:91:df:ca:49:a4:a2:2a:10:a4:86:e2:37:6b:d9:03: 5e:03:27:fd:dc:83:41:80:44:ef:09:b9:25:6d:a6:63:bf:e1: 40:6d:6f:ec:b5:a1:16:37:dd:94:cb:f8:c2:86:77:62:fe:05: 89:1d:91:6d:f9:9b:78:08:dc:d5:31:65:07:18:dc:a8:c1:6b: d8:8e:27:da:ae:e6:be:2e:19:8f:dc:f6:b1:8d:5d:49:3f:4e: 8f:ad:0e:e3:73:49:34:b3:dd:7a:bf:b0:b4:31:3b:1c:0e:63: 4e:fd:c2:d8:5b:9e:22:d0:9f:8a:6d:f1:b0:a2:5e:ec:9b:75: c6:fd:e4:3f:2f:f5:ca:70:a8:01:d1:bd:79:5a:6f:3c:e9:e5: 28:f7:88:da:d6:ab:4c:0e:11:46:75:d6:ca:d1:a6:90:1f:0b: ff:d9:0f:51:30:59:59:61:50:f0:dd:b6:d6:56:a0:4c:f5:4b: 10:74:1e:30:68:ea:5b:0d:c3:6b:a8:a4:1b:6a:29:9f:9d:14: e4:ef:fc:1c:6e:12:56:c9:54:ee:f9:19:be:c4:7d:22:d4:67: 58:f1:b0:92:e5:3d:40:df:eb:e2:38:6b:0a:32:df:0e:00:28: 85:11:f5:f2:5b:5b:20:3c:b5:fd:65:4f:f0:ee:9a:0c:9c:5c: 6c:3b:cd:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyMzExMTAvBgNVBAUTKEFEQTczMDA2M0E0NjE4QzI2RDE1NTQzNTgxOTUzQjAx ODVGRDlDODUwHhcNMjUwNzAyMTkyMzIxWhcNMjUwNzA5MTkyMzIxWjAYMRYwFAYD VQQDEw02ODY1ODcyOS02NjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCf6dBmhhjST9lHQvFQaBQ8dizJh8lZIYMmNNME1Dfw3I1lpOO6LCrWlJvqn 1nd638ugr6xNYdAheU8ipMYzNzMyf93H+A/ji/vaY522jd0inbUZUTheN/VpuL9+ FZFbIFA9JAf6qeupy/vXu9XTi0FS8iMWxJs7AZ7tSLR8iLbwVbLGITo4rO7aeO8J Ubn1UeB5dc7PCoqn5qBtNPfDuxCidCDuhR2+1k3FS4Yk80HrJjgzjSnS+R8gYj9r I0Cdx/DJlHxpPll2dtsOzyc3Jq3r91QQMbkXCWdsxFX70tBfjxmdyBwK3NnbjBr7 1iClp7Zgb775PIObe8XGUf7h7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCFGvy+ md7fiM+3/1Dw5LRVltQxMB8GA1UdIwQYMBaAFK2nMAY6RhjCbRVUNYGVOwGF/ZyF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTIzMS8wOEZEQ0Q1MDND ODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dNSnRGVlExZ1pVN0FZWDlu SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhY3dCanBHR01KdEZWUTFnWlU3QVlYOW5JVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTIzMS8wOEZEQ0Q1MDNDODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dN SnRGVlExZ1pVN0FZWDluSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl/LaR38pJpKIqEKSG4jdr2QNeAyf93INBgETvCbklbaZjv+FAbW/s taEWN92Uy/jChndi/gWJHZFt+Zt4CNzVMWUHGNyowWvYjifarua+LhmP3PaxjV1J P06PrQ7jc0k0s916v7C0MTscDmNO/cLYW54i0J+KbfGwol7sm3XG/eQ/L/XKcKgB 0b15Wm886eUo94ja1qtMDhFGddbK0aaQHwv/2Q9RMFlZYVDw3bbWVqBM9UsQdB4w aOpbDcNrqKQbaimfnRTk7/wcbhJWyVTu+Rm+xH0i1GdY8bCS5T1A3+viOGsKMt8O ACiFEfXyW1sgPLX9ZU/w7poMnFxsO811 -----END CERTIFICATE-----Generated at Thu Jul 3 10:31:24 2025 by rpki-client