$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: 2SgHS8UuFIzHwPbBMMJVs9ofskb+Jwm69xqkWtT993s= Subject key identifier: 7A:1E:2E:7A:7B:B0:88:F0:C0:55:BD:20:75:70:9D:C5:EF:62:68:79 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 0145 Signing time: Thu 03 Jul 2025 04:25:44 +0000 Manifest this update: Thu 03 Jul 2025 04:25:44 +0000 Manifest next update: Thu 10 Jul 2025 04:25:44 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: 7PvPIXgRiNLQGloEpBotPmOZRtDm/eOVAstYUV16ZnQ=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: tBK54wCyQ2wcX6ZNsRYGZb85q/LNuJrcbm5n2EF4GsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Jul 3 04:25:44 2025 GMT Not After : Jul 10 04:25:44 2025 GMT Subject: CN=68660648-fa8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fe:ab:30:f8:c5:8e:8f:11:2b:79:de:9b:8b: ed:1a:14:1d:bb:a6:2f:85:67:e2:c9:ad:16:85:46: f5:78:43:ef:84:5a:8d:f4:e0:0c:3f:41:c5:ff:9c: c3:7b:08:8b:07:53:64:d2:46:80:56:a4:f8:01:ec: 9c:7e:bd:4c:f4:34:94:aa:95:d7:0f:02:92:90:f1: f5:ec:ad:b0:3b:4b:a7:0d:22:d6:be:83:5a:32:90: 0a:60:c3:70:a7:80:f6:20:e9:21:23:cb:da:52:8b: 95:b7:44:19:12:a8:5a:55:51:c5:23:46:cc:3f:7f: 8c:9d:b2:0b:eb:a3:93:52:57:99:b4:8f:c8:b4:fd: 83:19:ae:c4:df:eb:69:2e:28:f6:b1:02:52:b9:93: 6a:0e:1d:15:26:58:1c:55:a2:ed:67:52:97:6c:92: 9a:42:e3:a3:18:64:b3:65:c5:71:50:41:dc:01:f2: 94:af:02:2c:87:ce:d1:5b:2a:5e:3e:4e:70:4c:ed: be:55:44:5d:27:1d:3e:9a:1b:e0:62:f6:57:20:23: 81:5e:9c:79:44:05:cb:91:c8:62:9d:cd:d7:62:44: e6:b2:cf:e1:4e:8b:1e:b3:b5:ee:3c:ac:ed:5c:3d: 5a:50:99:51:cc:75:47:9e:c6:71:c3:0f:60:94:28: f5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1E:2E:7A:7B:B0:88:F0:C0:55:BD:20:75:70:9D:C5:EF:62:68:79 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:08:96:db:5e:c8:b8:25:52:28:7e:05:01:2c:4b:9b:09:e5: d3:50:97:f8:24:91:58:b7:a4:85:99:10:e0:95:5d:7e:61:f1: 1e:39:7c:ba:c5:1f:11:48:fd:75:b1:42:e0:8d:0b:5c:8c:a8: 3c:99:ac:0b:da:17:7c:17:43:98:d5:a4:bb:a3:3e:94:52:53: 7a:59:38:0f:0c:a3:10:6d:65:db:98:21:b3:2e:ec:6f:5a:8a: 39:01:cf:25:a6:12:24:03:0c:48:c7:27:ac:0d:8b:6c:84:49: 9d:31:a5:a3:7a:b0:62:e1:6e:ae:64:a7:25:36:bb:83:a9:4f: 36:57:6b:08:78:53:2c:d5:17:ce:f3:e8:2e:b3:3d:ee:0b:c4: 68:15:e6:e0:48:01:f2:ab:12:05:d5:97:57:75:25:37:b5:f6: 39:dd:49:20:a8:e2:54:12:26:b6:00:7e:e6:59:09:6a:56:0b: 68:61:dd:bb:57:60:95:0d:99:22:f9:ef:e0:2e:5c:bd:ae:52: 06:26:b2:79:6c:69:e3:5e:6e:ba:3e:fd:12:2b:03:52:b4:a7: ae:06:91:39:a3:35:bd:c0:1e:77:1e:a0:fd:47:82:25:f5:fa: 8a:d4:ea:b6:57:69:4f:2f:b3:a6:c5:c6:a4:cb:d4:d0:ff:72: a9:ba:09:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwNzAzMDQyNTQ0WhcNMjUwNzEwMDQyNTQ0WjAYMRYwFAYD VQQDEw02ODY2MDY0OC1mYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyv6rMPjFjo8RK3nem4vtGhQdu6YvhWfiya0WhUb1eEPvhFqN9OAMP0HF/5zD ewiLB1Nk0kaAVqT4Aeycfr1M9DSUqpXXDwKSkPH17K2wO0unDSLWvoNaMpAKYMNw p4D2IOkhI8vaUouVt0QZEqhaVVHFI0bMP3+MnbIL66OTUleZtI/ItP2DGa7E3+tp Lij2sQJSuZNqDh0VJlgcVaLtZ1KXbJKaQuOjGGSzZcVxUEHcAfKUrwIsh87RWype Pk5wTO2+VURdJx0+mhvgYvZXICOBXpx5RAXLkchinc3XYkTmss/hToses7XuPKzt XD1aUJlRzHVHnsZxww9glCj11wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoeLnp7 sIjwwFW9IHVwncXvYmh5MB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCCJbbXsi4JVIofgUBLEubCeXTUJf4JJFYt6SFmRDglV1+YfEeOXy6 xR8RSP11sULgjQtcjKg8mawL2hd8F0OY1aS7oz6UUlN6WTgPDKMQbWXbmCGzLuxv Woo5Ac8lphIkAwxIxyesDYtshEmdMaWjerBi4W6uZKclNruDqU82V2sIeFMs1RfO 8+gusz3uC8RoFebgSAHyqxIF1ZdXdSU3tfY53UkgqOJUEia2AH7mWQlqVgtoYd27 V2CVDZki+e/gLly9rlIGJrJ5bGnjXm66Pv0SKwNStKeuBpE5ozW9wB53HqD9R4Il 9fqK1Oq2V2lPL7Omxcaky9TQ/3Kpugn/ -----END CERTIFICATE-----Generated at Fri Jul 4 08:02:06 2025 by rpki-client