$ rpki-client -vvf rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft File: xq-SXz6kP06O56MUIYIWk7Gt9qE.mft (raw, json) Hash identifier: 2o2chaXiy9fSqp+lOeMkfWmW3o/g/JlqAY964ROcV0E= Subject key identifier: 0E:F1:98:F6:40:34:69:01:77:BF:47:7D:0E:A6:5F:7D:12:F2:64:7A Authority key identifier: C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 Certificate issuer: /CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Certificate serial: 0699 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft Manifest number: 0690 Signing time: Sun 20 Jul 2025 22:23:30 +0000 Manifest this update: Sun 20 Jul 2025 22:23:29 +0000 Manifest next update: Sun 27 Jul 2025 22:23:29 +0000 Files and hashes: 1: xq-SXz6kP06O56MUIYIWk7Gt9qE.crl (hash: UI9uDnPvMF9/4GRykEYbLciw3QpX2ATFR3Lf9NsM22Y=) 2: 1A20AAF27BD311EBA6617987C4F9AE02.roa (hash: ayNr4tR/Sfu0YrCAQZrJZu7BfQ9IzQFCs/VABD0dmLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E807, serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Validity Not Before: Jul 20 22:23:29 2025 GMT Not After : Jul 27 22:23:29 2025 GMT Subject: CN=687d6c62-14cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c1:28:05:a0:ed:01:20:22:80:6f:b9:8e:c5: 07:d1:38:74:6f:54:ae:fe:5a:d1:e9:a8:33:cc:66: fa:cb:13:0b:cd:a7:dc:a9:f1:8e:79:94:37:49:44: 20:9f:52:28:97:5f:1f:87:87:59:7c:a3:63:ec:9b: ee:82:25:5d:20:f5:cd:46:4c:f5:c7:91:85:3d:e9: 5a:0b:5c:55:99:e3:c3:dc:34:de:2c:dc:5a:b4:e8: 31:6c:b7:04:37:2e:de:36:de:50:c1:20:c2:5d:a7: 9b:f7:9a:7b:8e:5f:56:bb:24:a5:83:ae:13:c6:fc: e5:9d:c7:53:01:1c:73:cb:02:38:0e:7e:3b:c3:06: af:93:f0:04:9f:14:b8:06:15:f9:c2:d1:a1:4f:13: d7:c9:4b:19:26:e7:27:a5:5a:23:80:5a:00:38:8c: d9:57:e4:c2:53:cf:e3:55:f6:04:03:c9:90:91:b0: 84:93:8b:b4:e7:be:11:3e:51:74:db:96:56:a5:25: 42:8a:18:0b:5c:4e:35:a7:75:5e:2a:ce:bf:ec:92: 97:8e:a8:bb:80:6c:ac:53:f0:f7:49:47:f5:ab:ec: c8:ba:ae:58:e4:2a:a3:8b:0a:5d:0e:1f:3b:31:84: ce:20:01:21:22:41:ae:3f:8c:5a:99:e6:94:d5:b4: 3b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F1:98:F6:40:34:69:01:77:BF:47:7D:0E:A6:5F:7D:12:F2:64:7A X509v3 Authority Key Identifier: keyid:C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d5:b8:27:03:d4:68:ae:88:54:21:e5:e5:33:fb:3b:65:8d: af:5c:ac:82:ac:52:d5:b3:b0:78:6d:f6:92:e4:e4:3a:75:1a: 4a:1b:d5:c3:d0:90:bd:2d:af:29:c5:c7:ea:23:d8:36:f3:fa: d7:f9:05:d6:16:b0:a8:10:fe:1c:10:7b:d7:64:1a:25:7d:71: ba:43:d6:3a:8a:0a:bc:d9:58:8e:43:1b:2f:34:34:1b:7c:66: 30:b7:9e:4f:35:78:e0:82:87:5e:f2:a2:93:e0:d8:a7:da:3e: cf:ee:8a:05:c6:ae:d5:25:55:20:9c:a2:e5:d5:ce:c4:b2:4f: f4:58:db:75:48:da:32:35:c1:c1:f2:25:4c:b0:96:67:f4:8f: 3e:89:b9:6d:db:96:3b:e8:17:11:f9:8e:51:b4:19:de:77:e4: d7:b7:f3:8e:85:41:f3:15:61:1c:f9:51:3e:6b:ca:8c:8b:12: d3:1b:6d:65:29:c6:12:76:40:8a:6e:38:54:c9:0f:23:bf:24: cd:92:2f:8d:fb:82:7e:25:54:d0:c8:d0:e0:f1:5e:51:72:e6: 28:f7:12:ec:9b:72:96:ae:c6:34:da:59:1c:6e:25:12:51:53: c3:35:2d:44:b3:77:57:5f:07:74:27:ea:bf:97:6e:a3:a7:64: e2:0d:fe:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU4MDcxMTAvBgNVBAUTKEM2QUY5MjVGM0VBNDNGNEU4RUU3QTMxNDIxODIxNjkz QjFBREY2QTEwHhcNMjUwNzIwMjIyMzI5WhcNMjUwNzI3MjIyMzI5WjAYMRYwFAYD VQQDEw02ODdkNmM2Mi0xNGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78EoBaDtASAigG+5jsUH0Th0b1Su/lrR6agzzGb6yxMLzafcqfGOeZQ3SUQg n1Iol18fh4dZfKNj7JvugiVdIPXNRkz1x5GFPelaC1xVmePD3DTeLNxatOgxbLcE Ny7eNt5QwSDCXaeb95p7jl9WuySlg64TxvzlncdTARxzywI4Dn47wwavk/AEnxS4 BhX5wtGhTxPXyUsZJucnpVojgFoAOIzZV+TCU8/jVfYEA8mQkbCEk4u0574RPlF0 25ZWpSVCihgLXE41p3VeKs6/7JKXjqi7gGysU/D3SUf1q+zIuq5Y5CqjiwpdDh87 MYTOIAEhIkGuP4xameaU1bQ72wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7xmPZA NGkBd79HfQ6mX30S8mR6MB8GA1UdIwQYMBaAFMavkl8+pD9OjuejFCGCFpOxrfah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTgwNy8yNjk2RjZDNjdC MzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1AwNk81Nk1VSVlJV2s3R3Q5 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxLVNYejZrUDA2TzU2TVVJWUlXazdHdDlxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTgwNy8yNjk2RjZDNjdCMzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1Aw Nk81Nk1VSVlJV2s3R3Q5cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl1bgnA9RorohUIeXlM/s7ZY2vXKyCrFLVs7B4bfaS5OQ6dRpKG9XD 0JC9La8pxcfqI9g28/rX+QXWFrCoEP4cEHvXZBolfXG6Q9Y6igq82ViOQxsvNDQb fGYwt55PNXjggode8qKT4Nin2j7P7ooFxq7VJVUgnKLl1c7Esk/0WNt1SNoyNcHB 8iVMsJZn9I8+iblt25Y76BcR+Y5RtBned+TXt/OOhUHzFWEc+VE+a8qMixLTG21l KcYSdkCKbjhUyQ8jvyTNki+N+4J+JVTQyNDg8V5RcuYo9xLsm3KWrsY02lkcbiUS UVPDNS1Es3dXXwd0J+q/l26jp2TiDf46 -----END CERTIFICATE-----Generated at Mon Jul 21 13:42:24 2025 by rpki-client