$ rpki-client -vvf rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft File: XnPt2W_yeohfYTVup3sfVDXIT8w.mft (raw, json) Hash identifier: AqhmP3pNgvxxy9qPCHQKDNvzYbyv3jXir0QfvmsTJvI= Subject key identifier: 3F:2B:D5:56:E8:13:3E:52:97:2F:B9:1C:47:7F:13:2A:A5:B9:90:C1 Authority key identifier: 5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC Certificate issuer: /CN=A912759E/serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Certificate serial: 0298 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft Manifest number: 0294 Signing time: Mon 21 Jul 2025 01:54:19 +0000 Manifest this update: Mon 21 Jul 2025 01:54:18 +0000 Manifest next update: Mon 28 Jul 2025 01:54:18 +0000 Files and hashes: 1: XnPt2W_yeohfYTVup3sfVDXIT8w.crl (hash: aKR0F6gNtKlbT2Kat4D0TexNDXZGWVIF+bWdwr3qcrk=) 2: 7F0509300CCE11ED97C94316C4F9AE02.roa (hash: 7VxNMjQG1zgfT4tsEQfcFuOpbFyf2w1++cKzRTPQB1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912759E, serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Validity Not Before: Jul 21 01:54:18 2025 GMT Not After : Jul 28 01:54:18 2025 GMT Subject: CN=687d9dcb-d284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:63:22:c2:ce:18:5a:f4:9d:0e:8c:cb:ea:93: ba:1c:6d:1a:1d:26:8c:82:02:fc:38:cc:31:bb:97: ab:9e:27:94:08:5f:be:dc:f8:78:ed:ea:e2:77:5f: 02:cf:5b:ef:ad:a4:67:4d:e5:d2:d2:64:25:2c:fa: 23:fa:0e:31:fb:f4:7b:87:87:13:ae:ec:06:fb:16: 6c:29:66:30:96:f2:60:f0:86:f6:ae:f4:19:67:25: 1f:db:10:04:e4:06:ff:5e:4b:ee:79:62:c5:0d:4b: af:4c:33:e6:eb:45:80:07:1d:34:94:61:84:f5:bd: 5c:1e:e0:d2:9a:1f:cb:1c:ad:8e:3f:e5:a9:d1:7f: c0:d1:32:fb:9c:90:94:e1:0e:4d:d7:30:88:5a:68: a9:03:0e:b7:9c:cb:fc:88:8e:b3:da:6c:16:f3:eb: bb:16:92:61:d0:8c:55:a1:b5:eb:e8:77:fc:85:44: 09:f8:59:e2:43:24:36:60:4a:0e:f7:6f:96:a7:16: 0b:ba:89:37:1e:14:26:f1:2c:38:91:d8:87:0e:53: fe:a6:90:fb:6a:d7:fc:2a:29:81:96:46:ad:88:51: d4:b8:20:46:7f:28:7d:4a:20:56:40:7c:25:1e:56: 19:56:22:ec:6a:5b:75:5c:8d:28:04:89:29:9b:42: 1f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2B:D5:56:E8:13:3E:52:97:2F:B9:1C:47:7F:13:2A:A5:B9:90:C1 X509v3 Authority Key Identifier: keyid:5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:17:4b:68:95:7c:1a:fe:0c:64:43:e7:32:02:8b:69:e2:c8: f2:9c:bc:2b:0f:5a:04:3f:ae:b8:17:c6:26:5e:9a:93:5a:e0: d4:bd:fe:c3:b6:eb:07:f4:70:48:ba:7a:9c:05:25:a4:8b:9c: 52:bf:c6:2f:af:9b:6a:6e:f1:3c:47:97:f3:4c:82:a6:e1:3c: b7:3b:cc:26:49:d7:18:fc:5a:17:25:d2:1d:a8:44:3c:24:db: 1a:10:ce:26:8f:64:72:43:67:34:1b:48:3c:38:60:f5:35:6f: 74:92:9f:64:54:4e:87:1d:f8:88:53:7d:0c:15:ad:3b:55:b5: 7c:e5:a7:90:1e:47:ec:e7:dd:63:b9:c3:04:98:79:e2:d2:52: d1:69:a9:c7:4d:3f:9a:05:38:61:d9:2d:8a:63:01:b8:7f:13: 85:42:2c:97:28:27:43:51:1d:5f:79:f5:ce:e9:bc:5d:f1:b3: c6:c8:02:0c:c5:17:2d:9d:a6:31:08:e3:0b:58:78:33:28:dc: 3e:b3:be:87:6e:b8:23:79:a5:4b:ca:aa:bc:36:f8:10:f0:56: 6d:06:e1:e5:79:18:a9:5b:63:f0:8f:2b:e5:56:b7:01:cc:7a: b0:82:b9:e9:38:db:c1:17:d2:ef:4a:da:b6:7a:e6:52:83:28: 0c:07:39:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1OUUxMTAvBgNVBAUTKDVFNzNFREQ5NkZGMjdBODg1RjYxMzU2RUE3N0IxRjU0 MzVDODRGQ0MwHhcNMjUwNzIxMDE1NDE4WhcNMjUwNzI4MDE1NDE4WjAYMRYwFAYD VQQDEw02ODdkOWRjYi1kMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWMiws4YWvSdDozL6pO6HG0aHSaMggL8OMwxu5ernieUCF++3Ph47erid18C z1vvraRnTeXS0mQlLPoj+g4x+/R7h4cTruwG+xZsKWYwlvJg8Ib2rvQZZyUf2xAE 5Ab/XkvueWLFDUuvTDPm60WABx00lGGE9b1cHuDSmh/LHK2OP+Wp0X/A0TL7nJCU 4Q5N1zCIWmipAw63nMv8iI6z2mwW8+u7FpJh0IxVobXr6Hf8hUQJ+FniQyQ2YEoO 92+WpxYLuok3HhQm8Sw4kdiHDlP+ppD7atf8KimBlkatiFHUuCBGfyh9SiBWQHwl HlYZViLsalt1XI0oBIkpm0If6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8r1Vbo Ez5Sly+5HEd/EyqluZDBMB8GA1UdIwQYMBaAFF5z7dlv8nqIX2E1bqd7H1Q1yE/M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzU5RS9DQjBFQTc3NjBD Q0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVvaGZZVFZ1cDNzZlZEWElU OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huUHQyV195ZW9oZllUVnVwM3NmVkRYSVQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzU5RS9DQjBFQTc3NjBDQ0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVv aGZZVFZ1cDNzZlZEWElUOHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4F0tolXwa/gxkQ+cyAotp4sjynLwrD1oEP664F8YmXpqTWuDUvf7D tusH9HBIunqcBSWki5xSv8Yvr5tqbvE8R5fzTIKm4Ty3O8wmSdcY/FoXJdIdqEQ8 JNsaEM4mj2RyQ2c0G0g8OGD1NW90kp9kVE6HHfiIU30MFa07VbV85aeQHkfs591j ucMEmHni0lLRaanHTT+aBThh2S2KYwG4fxOFQiyXKCdDUR1fefXO6bxd8bPGyAIM xRctnaYxCOMLWHgzKNw+s76HbrgjeaVLyqq8NvgQ8FZtBuHleRipW2PwjyvlVrcB zHqwgrnpONvBF9LvStq2euZSgygMBzmr -----END CERTIFICATE-----Generated at Mon Jul 21 13:41:06 2025 by rpki-client