$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft File: xMZ-u2st3Gkku7llXn4PghhTDGU.mft (raw, json) Hash identifier: ZtRvV7MwN9jhljyNzQ4rxUWvH+3mbG6VKV4HjBro/Fw= Subject key identifier: F8:F2:D6:27:C6:00:0A:71:72:F8:1C:24:77:D1:53:5A:3C:60:09:F8 Authority key identifier: C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 Certificate issuer: /CN=A9122D51/serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft Manifest number: F4 Signing time: Wed 23 Jul 2025 05:31:49 +0000 Manifest this update: Wed 23 Jul 2025 05:31:48 +0000 Manifest next update: Wed 30 Jul 2025 05:31:48 +0000 Files and hashes: 1: xMZ-u2st3Gkku7llXn4PghhTDGU.crl (hash: LlBEM689kSY1ncyYDUeg9o+FmPicMQ4LkVL/EEqPNF8=) 2: 6D610A58F23711EEA11AA759C4F9AE02.roa (hash: 7SbZ0PPfP01/krVCYjuDJBwjpFWYv8lnua4LUAxlPx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 05:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D51, serialNumber=C4C67EBB6B2DDC6924BBB9655E7E0F8218530C65 Validity Not Before: Jul 23 05:31:48 2025 GMT Not After : Jul 30 05:31:48 2025 GMT Subject: CN=688073c4-8201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ce:8d:b2:fd:66:be:07:20:57:8b:87:56:96: 1f:1d:cd:fd:26:77:11:79:e3:43:03:51:06:7d:af: c7:e2:49:c0:ec:ce:46:24:91:be:93:73:e4:3d:16: 0f:28:af:bc:8c:7b:3b:e0:ed:cc:71:60:71:f5:84: d1:c2:79:0a:20:dc:25:f5:73:32:6b:85:4f:50:6a: 15:5b:28:aa:1f:b8:ff:e6:28:70:32:79:63:e0:2a: a0:65:73:17:79:e8:4b:de:ca:b0:42:e0:72:2d:6a: ae:36:a6:7e:43:ae:2b:60:35:1e:a3:80:c5:bb:8d: f5:ab:30:30:72:5c:23:75:30:09:2e:ae:8e:86:79: c6:80:a8:9c:e3:9b:f7:e7:be:8c:52:60:7e:d5:c5: 95:58:29:41:4f:7d:09:a8:9a:3b:6a:6b:ba:35:17: 2b:7b:13:77:da:09:7d:71:8d:a9:09:c7:6b:66:b6: 8f:7c:df:7e:f2:d4:f3:54:c0:8a:bf:17:52:06:f1: 91:21:14:12:df:5d:11:50:7b:37:5f:46:9a:47:b6: 26:03:7b:15:19:12:f1:71:e3:f0:92:03:72:48:33: b7:93:99:60:29:7f:ee:6a:2f:6e:a0:53:f3:63:e0: 09:21:0c:46:90:fb:44:22:49:a4:fd:f2:20:14:52: 39:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F2:D6:27:C6:00:0A:71:72:F8:1C:24:77:D1:53:5A:3C:60:09:F8 X509v3 Authority Key Identifier: keyid:C4:C6:7E:BB:6B:2D:DC:69:24:BB:B9:65:5E:7E:0F:82:18:53:0C:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xMZ-u2st3Gkku7llXn4PghhTDGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D51/EAE5FCAAF23611EE8C8B9758C4F9AE02/xMZ-u2st3Gkku7llXn4PghhTDGU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:02:b3:62:3c:ef:1e:cf:27:10:28:45:5e:5f:ac:bb:cb:c8: 04:90:13:da:13:4c:81:6b:42:33:f5:88:dc:fc:5d:d6:dc:85: 4f:0d:b5:5f:aa:67:a8:56:c1:02:c6:06:92:7c:23:b6:be:15: 1f:53:64:c7:b1:e9:2a:c4:e1:60:2e:55:6f:3d:ba:de:27:25: ea:e7:ce:c2:fa:18:cd:f5:10:8e:c0:4b:1f:11:83:c6:00:c9: e7:98:1f:bf:cd:af:f0:70:b9:88:38:b3:07:b5:cb:12:0b:7d: e8:ab:59:78:43:5e:ee:31:7a:22:bb:97:bd:3a:75:ef:23:54: 46:e6:89:d9:75:ec:be:c8:6c:8a:0a:e9:7f:ac:40:c7:3d:e1: ca:83:ce:c3:f6:9e:25:da:0d:b3:3f:d3:c7:00:3d:49:74:24: 07:66:65:bf:cd:61:05:b9:59:14:00:0b:65:67:01:fd:2a:fe: ca:76:91:17:3a:12:fc:6c:43:cd:cd:b8:e9:14:e2:9b:33:dc: c6:e6:98:d2:b4:55:6c:b1:78:44:a5:b6:78:f8:e4:c5:fa:81: 1a:dc:bf:ad:17:bd:76:77:8c:1e:26:7b:de:14:dd:b9:bf:81: 3c:5e:98:28:09:e1:eb:d9:00:a8:c6:cb:66:d6:ad:11:cb:23: 26:e0:26:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJENTExMTAvBgNVBAUTKEM0QzY3RUJCNkIyRERDNjkyNEJCQjk2NTVFN0UwRjgy MTg1MzBDNjUwHhcNMjUwNzIzMDUzMTQ4WhcNMjUwNzMwMDUzMTQ4WjAYMRYwFAYD VQQDEw02ODgwNzNjNC04MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM6Nsv1mvgcgV4uHVpYfHc39JncReeNDA1EGfa/H4knA7M5GJJG+k3PkPRYP KK+8jHs74O3McWBx9YTRwnkKINwl9XMya4VPUGoVWyiqH7j/5ihwMnlj4CqgZXMX eehL3sqwQuByLWquNqZ+Q64rYDUeo4DFu431qzAwclwjdTAJLq6OhnnGgKic45v3 576MUmB+1cWVWClBT30JqJo7amu6NRcrexN32gl9cY2pCcdrZraPfN9+8tTzVMCK vxdSBvGRIRQS310RUHs3X0aaR7YmA3sVGRLxcePwkgNySDO3k5lgKX/uai9uoFPz Y+AJIQxGkPtEIkmk/fIgFFI5uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjy1ifG AApxcvgcJHfRU1o8YAn4MB8GA1UdIwQYMBaAFMTGfrtrLdxpJLu5ZV5+D4IYUwxl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ1MS9FQUU1RkNBQUYy MzYxMUVFOEM4Qjk3NThDNEY5QUUwMi94TVotdTJzdDNHa2t1N2xsWG40UGdoaFRE R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hNWi11MnN0M0dra3U3bGxYbjRQZ2hoVERHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ1MS9FQUU1RkNBQUYyMzYxMUVFOEM4Qjk3NThDNEY5QUUwMi94TVotdTJzdDNH a2t1N2xsWG40UGdoaFRER1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrArNiPO8ezycQKEVeX6y7y8gEkBPaE0yBa0Iz9Yjc/F3W3IVPDbVf qmeoVsECxgaSfCO2vhUfU2THsekqxOFgLlVvPbreJyXq587C+hjN9RCOwEsfEYPG AMnnmB+/za/wcLmIOLMHtcsSC33oq1l4Q17uMXoiu5e9OnXvI1RG5onZdey+yGyK Cul/rEDHPeHKg87D9p4l2g2zP9PHAD1JdCQHZmW/zWEFuVkUAAtlZwH9Kv7KdpEX OhL8bEPNzbjpFOKbM9zG5pjStFVssXhEpbZ4+OTF+oEa3L+tF712d4weJnveFN25 v4E8XpgoCeHr2QCoxstm1q0RyyMm4Ca6 -----END CERTIFICATE-----Generated at Wed Jul 23 12:45:24 2025 by rpki-client