$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft File: XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft (raw, json) Hash identifier: FgGv5HC45HklUpaMXVRZLGX+0WnkxHNjdzRm/r5pB3I= Subject key identifier: E9:6D:04:32:5B:13:6E:E7:87:84:7C:40:80:DF:F7:00:BA:A7:18:17 Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0D0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft Manifest number: 0CE6 Signing time: Wed 02 Jul 2025 18:21:24 +0000 Manifest this update: Wed 02 Jul 2025 18:21:24 +0000 Manifest next update: Wed 09 Jul 2025 18:21:24 +0000 Files and hashes: 1: XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl (hash: 5TDzoCqvehshlFnO9/bvu93nZeS3uvaXKbHVkoFmDbc=) 2: 6EA46446646511EFA9435879C4F9AE02.roa (hash: wKDEdStmrZZfi1N+sozcMYpUpj9M6UZTKjL7qa1uJ/0=) 3: 65DCB430F25A11E9937D9D73C4F9AE02.roa (hash: gaKPScXkAxsuY8VAZ/bdwS1+gAnXATdqGjlvtSNl84I=) 4: 3BC4C576426D11EFAD9E7D10C4F9AE02.roa (hash: 9VMgA4YRxMIjWK/lK97cgRReFAG7X/1dXoRMnmEvJtU=) 5: 49ADA7183C6111F0BB3B1A85C4F9AE02.roa (hash: Xs7PI8yOiwfltHePVx4QJDu9U0Lph/VszEHjm+alpiE=) 6: 653CF2F6F25A11E9937D9D73C4F9AE02.roa (hash: OIcrwBZfO0r9AZzqec0EZieuFLydO0IeQ37B1ozdZjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3342 (0xd0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998, serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: Jul 2 18:21:24 2025 GMT Not After : Jul 9 18:21:24 2025 GMT Subject: CN=686578a4-37e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1b:c1:83:79:29:b2:70:83:fc:74:4a:b5:af: 05:04:10:ba:f2:93:c2:ae:ac:b2:a9:53:37:3e:1c: 23:f7:6f:d8:bb:1b:f9:97:11:89:da:48:b8:99:00: 6e:19:9a:9b:1c:cb:5a:81:d4:bc:a6:09:2f:66:18: 92:48:ce:7e:23:24:0f:3c:89:e0:fb:2a:bc:e3:07: 79:b6:4c:88:45:79:1e:52:52:ea:a9:a7:60:61:0e: 9c:42:df:93:ab:1d:9e:31:85:97:1c:e3:91:32:2f: e3:d8:da:77:81:b5:a9:07:df:b1:4b:3e:f2:a4:d5: 71:c0:a3:fc:31:1a:c4:c5:59:05:7c:c6:1f:80:f3: 7d:ff:91:28:9a:cf:cd:b3:0b:05:ae:ac:e3:cc:71: 9a:e0:8a:ea:e0:a2:36:c7:86:62:73:d9:7f:08:42: 63:1e:79:88:c3:77:a0:71:47:ae:50:f5:29:c3:5d: 12:a0:4b:28:b1:ca:5f:aa:7c:5b:8c:77:4a:0d:ec: 5b:94:11:32:17:36:66:c9:42:d1:0f:c5:cc:55:e9: b7:34:45:12:ea:24:fc:c4:0f:48:f1:e4:13:e8:f8: 2b:e7:6a:89:0a:f3:cb:95:08:dd:42:fd:51:d9:e7: ec:a4:6f:ba:ce:40:9a:33:5d:de:05:76:fd:c6:90: 8f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:6D:04:32:5B:13:6E:E7:87:84:7C:40:80:DF:F7:00:BA:A7:18:17 X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ba:cb:3f:ce:3e:ab:ed:89:6b:53:e3:07:6a:e0:7c:f0:f1: 9e:07:f6:10:52:c3:ae:b5:80:0f:4a:27:4f:b8:5e:e6:bc:e6: 32:43:a0:b6:29:c7:14:72:24:81:39:f1:4f:d4:bb:d2:0f:a0: 96:b3:3a:a8:8f:23:c7:bf:66:30:88:2a:86:13:99:f1:2d:73: db:ab:ea:49:c2:b6:35:fc:85:07:b8:a6:ad:53:56:fb:f2:16: 8e:61:01:7c:ca:0d:7e:5c:c6:74:03:23:12:39:fd:df:d4:ad: 70:1d:8b:fb:e6:87:c4:90:43:99:8e:be:a4:38:6e:df:51:3b: 0a:79:97:8d:a3:2d:12:6b:01:73:25:59:48:0d:9a:2c:73:c5: db:a4:1c:84:e5:1c:94:da:3e:c0:b3:e8:ba:1b:53:4b:32:af: cd:68:8e:dc:40:a4:4c:89:c1:1a:7e:f4:ce:64:96:c3:46:72: a3:b1:99:20:f8:d0:f0:ad:0b:e1:87:db:7e:ed:df:30:54:72: 0d:7a:10:f7:c4:2a:d1:7e:d7:d8:83:05:ab:83:42:be:7b:50: 23:67:cb:b4:41:20:0a:32:55:43:0f:90:b3:a3:49:32:b7:5a: ca:df:03:55:8f:01:fb:01:22:31:2a:d7:dd:5f:61:e2:ff:f3: 22:82:a6:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjUwNzAyMTgyMTI0WhcNMjUwNzA5MTgyMTI0WjAYMRYwFAYD VQQDEw02ODY1NzhhNC0zN2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxvBg3kpsnCD/HRKta8FBBC68pPCrqyyqVM3Phwj92/Yuxv5lxGJ2ki4mQBu GZqbHMtagdS8pgkvZhiSSM5+IyQPPIng+yq84wd5tkyIRXkeUlLqqadgYQ6cQt+T qx2eMYWXHOORMi/j2Np3gbWpB9+xSz7ypNVxwKP8MRrExVkFfMYfgPN9/5Eoms/N swsFrqzjzHGa4Irq4KI2x4Zic9l/CEJjHnmIw3egcUeuUPUpw10SoEsoscpfqnxb jHdKDexblBEyFzZmyULRD8XMVem3NEUS6iT8xA9I8eQT6Pgr52qJCvPLlQjdQv1R 2efspG+6zkCaM13eBXb9xpCP/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOltBDJb E27nh4R8QIDf9wC6pxgXMB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTk5OC9BQjM0RkJENEYyNTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUt X0hmS0dqamxMM0tzMUdPVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTuss/zj6r7YlrU+MHauB88PGeB/YQUsOutYAPSidPuF7mvOYyQ6C2 KccUciSBOfFP1LvSD6CWszqojyPHv2YwiCqGE5nxLXPbq+pJwrY1/IUHuKatU1b7 8haOYQF8yg1+XMZ0AyMSOf3f1K1wHYv75ofEkEOZjr6kOG7fUTsKeZeNoy0SawFz JVlIDZosc8XbpByE5RyU2j7As+i6G1NLMq/NaI7cQKRMicEafvTOZJbDRnKjsZkg +NDwrQvhh9t+7d8wVHINehD3xCrRftfYgwWrg0K+e1AjZ8u0QSAKMlVDD5Czo0ky t1rK3wNVjwH7ASIxKtfdX2Hi//MigqZZ -----END CERTIFICATE-----Generated at Thu Jul 3 06:30:33 2025 by rpki-client