$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft File: xpA79e8aQHD8mDw02cUDz0MT_Is.mft (raw, json) Hash identifier: QgqbHllijbhhTjZkFRrA0I5lbljexN8PWJB2syV9WGE= Subject key identifier: D7:BA:48:1B:46:62:91:22:61:C2:46:20:FC:10:42:FA:8F:DF:41:8D Authority key identifier: C6:90:3B:F5:EF:1A:40:70:FC:98:3C:34:D9:C5:03:CF:43:13:FC:8B Certificate issuer: /CN=A9111A96/serialNumber=C6903BF5EF1A4070FC983C34D9C503CF4313FC8B Certificate serial: 051B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft Manifest number: 0517 Signing time: Fri 18 Jul 2025 23:57:40 +0000 Manifest this update: Fri 18 Jul 2025 23:57:39 +0000 Manifest next update: Fri 25 Jul 2025 23:57:39 +0000 Files and hashes: 1: xpA79e8aQHD8mDw02cUDz0MT_Is.crl (hash: 7xeyh0sifSSxLumwXctvdWFjC8QY7B35PxRLfCDsAdU=) 2: ABB5B52C0EF211ECBE14BD4FC4F9AE02.roa (hash: n4qbIc5i3kLkXS9yMK9sKanURu/yHl+PFiYDGaralVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.crl rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A96, serialNumber=C6903BF5EF1A4070FC983C34D9C503CF4313FC8B Validity Not Before: Jul 18 23:57:39 2025 GMT Not After : Jul 25 23:57:39 2025 GMT Subject: CN=687adf73-a778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4f:76:29:0e:2a:fc:fc:33:7e:e2:f8:69:c0: b5:42:e0:85:bc:b6:a8:84:9d:aa:48:68:ad:9f:e8: a2:d6:d4:ab:0a:23:e3:c9:16:36:45:24:bf:4f:d6: 6b:8b:ee:0c:f6:7f:36:5f:a5:69:86:72:6b:fb:8a: f9:22:a0:f9:2b:28:8d:9f:87:ad:0b:05:03:2f:7e: 45:8f:34:f4:92:ff:a2:68:82:6f:0b:3b:be:3a:5a: a4:d2:08:75:2c:11:fb:45:fe:de:d0:a9:4b:f3:0c: 43:bf:76:60:3f:2a:28:72:36:46:4c:05:86:50:99: d7:e6:50:c9:cf:e1:9e:e8:62:25:b1:61:0a:ad:0f: 3b:b1:10:1b:fd:fd:0e:93:a8:38:60:b9:2d:47:df: 38:61:2f:69:0f:44:71:dc:c9:51:5d:74:54:53:a7: 6b:12:50:b4:a9:6e:6c:21:15:ee:57:29:ad:6c:b5: 62:30:cf:52:21:1b:66:7b:2f:2f:5d:d0:1b:b3:13: 98:d5:85:17:f8:50:d0:78:39:aa:d2:42:3a:07:8d: 34:de:24:62:25:8a:0d:c9:cf:09:9a:bb:f9:aa:80: 49:b2:3f:1f:a7:85:4d:6c:3f:c2:1d:40:a9:41:53: 70:f5:e8:f2:1b:87:39:4c:66:ea:56:6b:46:14:ce: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:BA:48:1B:46:62:91:22:61:C2:46:20:FC:10:42:FA:8F:DF:41:8D X509v3 Authority Key Identifier: keyid:C6:90:3B:F5:EF:1A:40:70:FC:98:3C:34:D9:C5:03:CF:43:13:FC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b4:7c:8e:c4:42:0f:b7:1f:19:52:29:06:0e:37:1e:73:51: 9b:99:22:c5:8d:12:23:b7:fa:90:17:8f:b1:e2:b1:41:a7:c6: f2:0f:21:b9:38:c6:71:68:5c:38:be:a8:e2:fc:91:c1:e2:bf: 5a:37:b0:65:e0:a1:c2:6d:39:88:8f:cf:0a:5b:9f:15:f7:b9: 04:fb:3f:f1:8b:55:dd:3c:3a:60:67:18:50:20:a1:5a:5a:12: fb:57:39:0f:8d:be:55:94:f0:82:5b:7b:67:56:da:02:90:a5: 29:ec:f8:90:5a:63:12:51:4f:8a:09:eb:29:05:b2:5d:d7:51: a6:b1:ec:fb:3b:7c:dc:d5:92:78:70:28:bf:35:62:76:c2:4c: 2b:48:83:3d:a7:86:90:19:a3:c3:24:87:71:07:4a:5a:ad:7e: b6:2b:ae:c4:5f:b3:0a:81:aa:65:41:1f:e8:8a:cd:74:1b:fd: 51:2b:42:53:1f:52:67:b2:b2:82:b6:68:59:ec:68:0d:39:67: a3:3f:e4:33:d7:b7:cf:2c:5b:36:8d:e5:cf:b6:f6:7d:55:b1: 6d:a8:66:3d:9c:2c:d4:da:d8:99:ab:5c:9a:d8:e6:29:30:fc: b5:47:93:95:90:31:b5:77:98:48:63:19:4d:ad:5c:f2:6f:22: e4:0d:1d:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBOTYxMTAvBgNVBAUTKEM2OTAzQkY1RUYxQTQwNzBGQzk4M0MzNEQ5QzUwM0NG NDMxM0ZDOEIwHhcNMjUwNzE4MjM1NzM5WhcNMjUwNzI1MjM1NzM5WjAYMRYwFAYD VQQDEw02ODdhZGY3My1hNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5E92KQ4q/PwzfuL4acC1QuCFvLaohJ2qSGitn+ii1tSrCiPjyRY2RSS/T9Zr i+4M9n82X6VphnJr+4r5IqD5KyiNn4etCwUDL35FjzT0kv+iaIJvCzu+Olqk0gh1 LBH7Rf7e0KlL8wxDv3ZgPyoocjZGTAWGUJnX5lDJz+Ge6GIlsWEKrQ87sRAb/f0O k6g4YLktR984YS9pD0Rx3MlRXXRUU6drElC0qW5sIRXuVymtbLViMM9SIRtmey8v XdAbsxOY1YUX+FDQeDmq0kI6B4003iRiJYoNyc8Jmrv5qoBJsj8fp4VNbD/CHUCp QVNw9ejyG4c5TGbqVmtGFM5lZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNe6SBtG YpEiYcJGIPwQQvqP30GNMB8GA1UdIwQYMBaAFMaQO/XvGkBw/Jg8NNnFA89DE/yL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUE5Ni80NTg5QzYzODBF RUYxMUVDODZBREUwNEJDNEY5QUUwMi94cEE3OWU4YVFIRDhtRHcwMmNVRHowTVRf SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwQTc5ZThhUUhEOG1EdzAyY1VEejBNVF9Jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUE5Ni80NTg5QzYzODBFRUYxMUVDODZBREUwNEJDNEY5QUUwMi94cEE3OWU4YVFI RDhtRHcwMmNVRHowTVRfSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVtHyOxEIPtx8ZUikGDjcec1GbmSLFjRIjt/qQF4+x4rFBp8byDyG5 OMZxaFw4vqji/JHB4r9aN7Bl4KHCbTmIj88KW58V97kE+z/xi1XdPDpgZxhQIKFa WhL7VzkPjb5VlPCCW3tnVtoCkKUp7PiQWmMSUU+KCespBbJd11Gmsez7O3zc1ZJ4 cCi/NWJ2wkwrSIM9p4aQGaPDJIdxB0parX62K67EX7MKgaplQR/ois10G/1RK0JT H1JnsrKCtmhZ7GgNOWejP+Qz17fPLFs2jeXPtvZ9VbFtqGY9nCzU2tiZq1ya2OYp MPy1R5OVkDG1d5hIYxlNrVzybyLkDR28 -----END CERTIFICATE-----Generated at Sun Jul 20 06:14:57 2025 by rpki-client