$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: jBjloMWDcZADO3sLkbFnOLENjqNQpShGcHZmHwCpLMY= Subject key identifier: D3:95:D3:3C:41:DF:41:85:D5:3D:CE:F7:78:CB:3A:53:71:02:E7:AD Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E20 Signing time: Wed 02 Jul 2025 16:13:25 +0000 Manifest this update: Wed 02 Jul 2025 16:13:25 +0000 Manifest next update: Wed 09 Jul 2025 16:13:25 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: uelLLncwaPx3ev0VvdAgQ+kJf8tRwkEXdSl4R1cvQBQ=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7742 (0x1e3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Jul 2 16:13:25 2025 GMT Not After : Jul 9 16:13:25 2025 GMT Subject: CN=68655aa5-ab1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:27:85:8a:fc:d3:44:ee:29:61:2c:27:4b:9d: a9:c0:17:82:55:9e:8e:6c:4a:ad:00:06:c5:a7:90: 45:b3:80:c9:ff:9e:5b:55:87:ae:e7:f1:4a:73:1b: c4:df:0e:5a:9e:58:ea:1b:25:05:05:cf:cb:e4:e9: b2:79:22:cb:30:41:56:0b:c7:a9:24:55:b1:6f:31: 31:11:46:3b:31:62:3f:54:4b:21:82:e3:66:fb:32: f1:aa:f4:29:10:95:fa:0b:40:c5:fc:78:29:6d:a4: 51:a0:9b:e3:78:06:24:20:f4:d2:7c:d2:d5:91:62: b1:0c:ca:aa:a2:fd:e6:e3:2c:fd:3b:32:a8:e6:8f: 91:1e:db:7c:19:ba:8f:d5:94:a3:ed:05:71:1c:57: 48:86:3d:92:d4:35:90:c3:62:6e:26:5b:fb:11:0a: 50:aa:11:1c:f4:36:88:f8:22:ab:3e:59:ff:ab:b6: 48:c7:d9:93:a5:3d:3d:00:a8:35:cb:d8:e0:9e:f6: 55:65:1b:a2:73:73:7f:e8:c0:1b:e1:4b:bc:b2:a7: ae:01:d7:9d:1a:cc:10:09:63:24:7f:7c:64:29:04: 87:81:4d:ca:2f:d6:74:6e:62:bf:c6:db:50:ed:b4: 00:e6:61:00:9b:85:75:74:75:18:bb:ec:d1:c2:d3: 5a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:95:D3:3C:41:DF:41:85:D5:3D:CE:F7:78:CB:3A:53:71:02:E7:AD X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5e:d7:8a:5d:41:7e:09:dc:63:b4:bd:aa:6a:6e:5c:0c:e0: b4:7e:a8:dc:ec:7d:1f:4f:d8:d9:a9:c3:1d:48:3b:83:e8:69: bd:93:5d:12:97:e6:cb:89:0f:3a:e1:b3:9a:ca:e7:44:c4:41: dd:8f:58:62:a2:c2:ee:f0:df:20:99:59:2c:42:6d:a7:2f:5d: 7d:62:f4:0b:18:4a:53:91:02:ce:2b:fe:b3:b2:80:db:73:6a: 5e:a6:19:e4:23:b8:62:76:96:8e:7b:60:b2:36:06:bb:bf:44: 5c:62:9c:c2:03:ad:1a:92:fb:4a:3d:85:26:84:8f:77:9a:0e: 4d:9c:89:1a:59:67:6a:03:16:40:2f:2d:35:6d:db:09:cc:b9: aa:33:c3:58:86:71:c7:8f:23:59:ab:f8:32:4c:34:61:de:fb: dd:5c:ec:4d:79:ae:12:a5:3b:f9:48:1f:d4:fe:8a:8d:79:c4: 3a:06:32:ef:67:94:45:c5:6a:eb:f5:75:a0:fc:41:df:35:d3: b0:b4:59:1f:ec:02:9a:8e:0d:49:70:d0:98:86:68:6f:47:6f: bc:74:9b:ad:26:6f:cd:16:73:32:73:f5:ee:4b:08:39:b9:24: 96:66:4a:a2:3f:1e:61:77:41:c8:9e:ae:f0:92:62:1b:a0:09: 9c:d7:f9:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwNzAyMTYxMzI1WhcNMjUwNzA5MTYxMzI1WjAYMRYwFAYD VQQDEw02ODY1NWFhNS1hYjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CeFivzTRO4pYSwnS52pwBeCVZ6ObEqtAAbFp5BFs4DJ/55bVYeu5/FKcxvE 3w5anljqGyUFBc/L5OmyeSLLMEFWC8epJFWxbzExEUY7MWI/VEshguNm+zLxqvQp EJX6C0DF/HgpbaRRoJvjeAYkIPTSfNLVkWKxDMqqov3m4yz9OzKo5o+RHtt8GbqP 1ZSj7QVxHFdIhj2S1DWQw2JuJlv7EQpQqhEc9DaI+CKrPln/q7ZIx9mTpT09AKg1 y9jgnvZVZRuic3N/6MAb4Uu8sqeuAdedGswQCWMkf3xkKQSHgU3KL9Z0bmK/xttQ 7bQA5mEAm4V1dHUYu+zRwtNaUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOV0zxB 30GF1T3O93jLOlNxAuetMB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcXteKXUF+CdxjtL2qam5cDOC0fqjc7H0fT9jZqcMdSDuD6Gm9k10S l+bLiQ864bOayudExEHdj1hiosLu8N8gmVksQm2nL119YvQLGEpTkQLOK/6zsoDb c2pephnkI7hidpaOe2CyNga7v0RcYpzCA60akvtKPYUmhI93mg5NnIkaWWdqAxZA Ly01bdsJzLmqM8NYhnHHjyNZq/gyTDRh3vvdXOxNea4SpTv5SB/U/oqNecQ6BjLv Z5RFxWrr9XWg/EHfNdOwtFkf7AKajg1JcNCYhmhvR2+8dJutJm/NFnMyc/XuSwg5 uSSWZkqiPx5hd0HInq7wkmIboAmc1/mm -----END CERTIFICATE-----Generated at Thu Jul 3 02:00:40 2025 by rpki-client