$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: UL99ykp4xitkoLbA/cjHCIwzBK08oWaLoWBT7Je/9Y4= Subject key identifier: 7C:25:9E:F3:84:40:8C:6A:78:76:F8:7F:0F:DB:79:19:6E:76:0E:8D Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 04DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 04D6 Signing time: Thu 03 Jul 2025 00:06:51 +0000 Manifest this update: Thu 03 Jul 2025 00:06:50 +0000 Manifest next update: Thu 10 Jul 2025 00:06:50 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: vQWq7b9UWq6K1u86jXldqzSjwRwb71X5AjAW58YOdR0=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: APl5b4vCPo52FjFgWioqB5D0vfXVOhLUTwuTuf6xSiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Jul 3 00:06:50 2025 GMT Not After : Jul 10 00:06:50 2025 GMT Subject: CN=6865c99b-da83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e5:a1:cd:81:12:4c:db:66:c2:10:13:26:74: 0d:2b:07:4b:a8:5a:1b:c2:fe:56:2f:f4:04:84:b4: af:b5:7b:97:13:33:e4:50:25:0a:ca:9d:20:89:73: 26:82:27:c3:62:2d:fe:c4:3c:d2:36:25:fa:74:9f: 7b:4d:97:ba:12:fe:80:77:d2:b0:1e:d0:ef:01:21: c4:d8:5e:e3:d4:eb:98:aa:78:f5:0e:33:91:57:69: 16:90:49:93:5b:ec:b1:c2:21:f6:c6:b4:1e:a4:6f: b6:e5:7d:92:b7:15:5c:fc:65:e7:3b:c4:43:bf:3d: 61:78:5f:1c:c6:df:9c:c2:96:40:a4:cd:f4:79:06: f7:c3:7c:91:4d:8f:33:6b:b3:ae:91:aa:43:b2:fe: ca:f4:57:5e:d3:d4:7c:28:80:0f:3b:6a:b8:46:7d: d7:c8:69:48:82:37:53:81:89:c2:74:a5:a5:6f:8f: 13:9b:0c:fd:a5:50:c7:53:47:93:84:28:5b:ce:8c: 2b:47:5e:12:c8:56:30:c7:ea:a4:ab:0a:45:db:ad: 9a:cc:99:1d:08:9a:53:9f:eb:26:d6:ca:22:8b:b7: db:da:93:d5:b6:e9:8f:37:2d:84:2e:9e:66:a5:fe: 20:a4:e9:bf:56:91:96:dc:34:26:7d:da:57:41:1a: bb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:25:9E:F3:84:40:8C:6A:78:76:F8:7F:0F:DB:79:19:6E:76:0E:8D X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:18:f0:7b:30:a8:d1:ce:4b:cc:15:9f:4d:56:ce:0f:99:34: d5:fc:75:bb:c0:6e:91:48:5b:a9:5c:93:c9:ea:b6:08:d7:17: 4f:34:37:22:f2:c2:03:34:78:41:79:d6:16:d7:98:3c:bd:6c: ed:9c:1a:06:99:c2:53:4c:3a:b2:4f:6b:43:c5:04:93:55:11: 1f:88:07:46:42:dc:98:f1:49:f5:75:3d:22:53:ab:de:51:a4: c4:8e:22:58:c2:d5:46:ee:b4:e7:c3:0b:a6:fc:79:7d:94:95: f6:7d:53:87:34:57:0a:56:44:6b:10:69:fb:6a:46:b6:14:a6: ba:49:3f:16:0c:77:4b:eb:a5:2f:0d:ed:ab:37:1f:dc:1e:23: 4e:9c:37:c7:07:b4:cb:51:0e:83:52:e5:3a:5c:82:5a:84:19: 1a:43:cc:69:d6:3a:51:f3:09:13:e4:80:9d:2e:2b:e5:82:96: e5:0f:db:6e:b9:58:ba:65:4d:4c:b6:c6:77:73:96:22:b0:93: 1f:03:02:08:7e:65:65:6b:c3:08:84:ca:e2:67:57:2a:f4:6f: 1e:d9:ec:92:cc:43:94:aa:40:cc:8c:9f:fa:c5:46:2f:99:c3: 0b:8a:34:dc:c3:5d:6f:b1:46:6c:c9:a8:7a:a8:2f:a0:a2:3d: ed:e7:48:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUwNzAzMDAwNjUwWhcNMjUwNzEwMDAwNjUwWjAYMRYwFAYD VQQDEw02ODY1Yzk5Yi1kYTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreWhzYESTNtmwhATJnQNKwdLqFobwv5WL/QEhLSvtXuXEzPkUCUKyp0giXMm gifDYi3+xDzSNiX6dJ97TZe6Ev6Ad9KwHtDvASHE2F7j1OuYqnj1DjORV2kWkEmT W+yxwiH2xrQepG+25X2StxVc/GXnO8RDvz1heF8cxt+cwpZApM30eQb3w3yRTY8z a7OukapDsv7K9Fde09R8KIAPO2q4Rn3XyGlIgjdTgYnCdKWlb48Tmwz9pVDHU0eT hChbzowrR14SyFYwx+qkqwpF262azJkdCJpTn+sm1soii7fb2pPVtumPNy2ELp5m pf4gpOm/VpGW3DQmfdpXQRq7BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwlnvOE QIxqeHb4fw/beRludg6NMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmGPB7MKjRzkvMFZ9NVs4PmTTV/HW7wG6RSFupXJPJ6rYI1xdPNDci 8sIDNHhBedYW15g8vWztnBoGmcJTTDqyT2tDxQSTVREfiAdGQtyY8Un1dT0iU6ve UaTEjiJYwtVG7rTnwwum/Hl9lJX2fVOHNFcKVkRrEGn7aka2FKa6ST8WDHdL66Uv De2rNx/cHiNOnDfHB7TLUQ6DUuU6XIJahBkaQ8xp1jpR8wkT5ICdLivlgpblD9tu uVi6ZU1MtsZ3c5YisJMfAwIIfmVla8MIhMriZ1cq9G8e2eySzEOUqkDMjJ/6xUYv mcMLijTcw11vsUZsyah6qC+goj3t50iQ -----END CERTIFICATE-----Generated at Thu Jul 3 17:13:31 2025 by rpki-client