$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: XDK4jy6WHu+fbVuhFIfMJZO+8B51Gdk66KWGvTEv3+g= Subject key identifier: AF:46:E3:F5:05:58:B3:EF:90:24:DE:F4:96:2F:CD:C3:F0:48:79:61 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 048D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 0485 Signing time: Sat 19 Jul 2025 00:25:51 +0000 Manifest this update: Sat 19 Jul 2025 00:25:50 +0000 Manifest next update: Sat 26 Jul 2025 00:25:50 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: M+Xc5Re6Imd9pvMLja/Ij9q8cY0GNNmA0jtgmLMHjEc=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1165 (0x48d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Jul 19 00:25:50 2025 GMT Not After : Jul 26 00:25:50 2025 GMT Subject: CN=687ae60e-c64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:bb:1f:d1:99:6f:a7:10:a9:f6:12:1d:25: 90:a3:95:95:1c:1c:17:04:54:58:b3:c5:e4:68:0e: 9e:3c:43:70:da:29:13:3a:d1:6b:bf:08:55:97:fb: 4d:8f:1d:67:49:4e:66:09:8e:7f:3d:0b:f2:95:48: 4a:b1:5d:e5:d6:97:47:dd:f2:d8:49:0d:a4:48:4f: 00:59:d5:6d:72:28:35:88:4e:26:9e:ac:3f:7c:98: 53:22:15:4c:d3:fc:f4:48:fd:ba:6f:fc:d6:15:f2: c7:07:e4:9d:80:06:9b:49:3b:bc:da:86:9b:76:52: 8c:8d:e0:85:2e:41:32:2f:fd:b6:d6:cc:69:3d:cd: 8c:c9:5d:00:80:db:eb:80:a0:f9:23:8c:65:d6:5e: 85:03:7e:1d:c9:5c:46:58:6c:ae:10:24:a8:09:9e: 0a:48:df:c6:67:fb:35:71:d5:bd:45:99:f7:31:54: b2:df:7f:93:97:5c:af:30:4d:dc:14:31:07:35:cf: fb:da:91:73:8d:e6:d7:37:1c:17:6e:b4:38:5a:cd: 53:a6:9d:93:d1:12:11:b1:ad:8c:fa:80:5c:9f:e6: 6f:65:5b:f0:88:42:b0:de:da:3f:b3:e8:e8:52:87: d5:58:d7:b4:27:a7:09:c1:62:d9:82:54:36:79:b2: 86:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:46:E3:F5:05:58:B3:EF:90:24:DE:F4:96:2F:CD:C3:F0:48:79:61 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:e9:b3:fa:5f:e0:51:3f:53:88:1e:1e:7c:e9:bd:72:41:42: bc:db:de:c6:6c:df:eb:ed:60:33:d9:65:67:eb:a1:de:42:9f: 13:5b:b5:83:9c:4f:8d:25:58:9d:2c:06:f4:b5:88:34:95:d5: 06:06:cc:7b:cb:c5:70:ae:3f:bb:8e:54:d8:a5:e2:91:12:3e: a3:a7:32:e7:a8:a1:bd:c5:a2:97:66:20:2b:65:03:92:1a:62: 85:97:ff:6d:c2:50:b3:d4:19:a1:08:7b:7f:d7:7e:6e:2c:26: 8e:99:04:f7:1c:44:2a:21:e4:dd:8d:06:8a:cb:6c:c0:c7:8f: 89:4a:84:a1:76:df:1e:6e:04:a7:63:25:01:3b:28:75:e8:93: 70:e3:dc:09:69:1e:e9:c9:98:a1:9c:e6:cf:1c:e9:41:a4:36: 5d:18:10:f3:8a:85:f1:34:c7:b4:51:11:3b:65:a0:01:39:eb: 68:ec:2a:a3:23:58:27:08:21:0f:6f:26:c5:c2:24:e3:25:10: 79:82:21:43:06:86:ff:26:2b:be:ad:d6:5f:e8:33:cf:88:21: 79:92:93:2c:77:45:51:2b:12:5d:ed:26:29:ff:10:9f:00:12: ed:42:00:94:ed:52:7a:07:9a:44:fb:af:08:82:34:02:3d:75: 55:d4:a5:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUwNzE5MDAyNTUwWhcNMjUwNzI2MDAyNTUwWjAYMRYwFAYD VQQDEw02ODdhZTYwZS1jNjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLq7H9GZb6cQqfYSHSWQo5WVHBwXBFRYs8XkaA6ePENw2ikTOtFrvwhVl/tN jx1nSU5mCY5/PQvylUhKsV3l1pdH3fLYSQ2kSE8AWdVtcig1iE4mnqw/fJhTIhVM 0/z0SP26b/zWFfLHB+SdgAabSTu82oabdlKMjeCFLkEyL/221sxpPc2MyV0AgNvr gKD5I4xl1l6FA34dyVxGWGyuECSoCZ4KSN/GZ/s1cdW9RZn3MVSy33+Tl1yvME3c FDEHNc/72pFzjebXNxwXbrQ4Ws1Tpp2T0RIRsa2M+oBcn+ZvZVvwiEKw3to/s+jo UofVWNe0J6cJwWLZglQ2ebKG6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9G4/UF WLPvkCTe9JYvzcPwSHlhMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi6bP6X+BRP1OIHh586b1yQUK8297GbN/r7WAz2WVn66HeQp8TW7WD nE+NJVidLAb0tYg0ldUGBsx7y8Vwrj+7jlTYpeKREj6jpzLnqKG9xaKXZiArZQOS GmKFl/9twlCz1BmhCHt/135uLCaOmQT3HEQqIeTdjQaKy2zAx4+JSoShdt8ebgSn YyUBOyh16JNw49wJaR7pyZihnObPHOlBpDZdGBDzioXxNMe0URE7ZaABOeto7Cqj I1gnCCEPbybFwiTjJRB5giFDBob/Jiu+rdZf6DPPiCF5kpMsd0VRKxJd7SYp/xCf ABLtQgCU7VJ6B5pE+68IgjQCPXVV1KUz -----END CERTIFICATE-----Generated at Sun Jul 20 15:02:00 2025 by rpki-client