$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: LKUK1QbcsO0OsLZTuC9W8GHYCpUhgoLME/XeO35VA8o= Subject key identifier: E1:62:01:F3:54:8E:49:7D:4D:01:D5:36:05:73:6A:15:04:E5:11:C8 Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 027D Signing time: Sat 19 Jul 2025 02:07:15 +0000 Manifest this update: Sat 19 Jul 2025 02:07:14 +0000 Manifest next update: Sat 26 Jul 2025 02:07:14 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: whUw8suRHjXNz3beFJWgrOSeDsBndPy6OWeHuN6Z7XY=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: rj0KTjzf+DtNN3R81snVNcDYp+a1rWXY0u8rHIUHCk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Jul 19 02:07:14 2025 GMT Not After : Jul 26 02:07:14 2025 GMT Subject: CN=687afdd3-298f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dc:cf:32:f4:3b:33:52:2f:58:83:ba:28:eb: 73:4c:de:07:23:13:a1:4b:d2:8b:f7:70:06:6a:a3: 3e:7e:13:f0:c2:a7:8f:ba:0e:12:4b:94:5d:fe:fe: 78:65:1b:26:d8:c8:73:81:ec:c2:6d:8c:b2:bb:7c: ec:87:39:6d:72:41:e6:84:a8:2d:7c:f7:92:02:bb: 94:3a:ba:29:30:62:3b:96:64:d0:19:14:cd:44:88: bd:a8:53:21:57:eb:ad:69:d3:4c:93:0d:f6:1e:61: d7:fc:39:54:68:28:c7:58:10:9e:25:f5:8b:27:fa: f4:13:67:aa:6e:a2:d1:7c:43:d4:8f:ac:e7:58:9f: fc:0c:38:db:b6:91:d8:c1:4b:ab:cd:0e:0c:c6:f4: b8:c4:14:8d:7c:48:2a:11:15:77:2b:5f:eb:10:bc: fe:f3:e1:cb:fb:c1:d9:b2:46:d1:37:18:71:21:6a: bb:f1:3c:0d:50:81:01:7f:0f:b5:a4:da:71:6c:ec: a2:aa:b7:de:39:00:e2:d6:d6:2b:87:f5:49:66:9c: 33:0a:95:3f:91:ae:99:3b:d2:9d:c9:31:a2:b1:9c: 97:e9:0a:53:09:92:ee:4e:d2:8c:11:d1:5d:6a:02: 17:45:bc:ee:0a:ad:83:0c:45:d1:c5:f7:df:a9:8f: b6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:62:01:F3:54:8E:49:7D:4D:01:D5:36:05:73:6A:15:04:E5:11:C8 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:37:29:f0:8d:45:cf:9f:98:3a:22:2b:37:1c:f2:1f:49:ef: f3:9e:0b:35:b9:a8:cc:87:58:9e:eb:26:53:cc:12:a7:ed:4d: ff:3b:d0:fc:29:47:52:39:ff:93:b7:8d:e8:3b:51:0d:59:69: 9f:b5:cc:b5:24:2d:79:23:5b:99:af:bc:08:f7:75:ec:aa:7d: e0:3d:7b:ef:2f:17:48:a7:9b:85:c6:ab:e1:45:7b:89:f7:49: 50:fb:7b:b4:fd:ea:17:ef:2c:5a:43:33:23:7e:5a:ce:bb:bb: cf:a9:b4:23:f2:c5:f3:0b:16:44:95:87:35:4b:e7:7d:78:db: 64:ba:6b:bc:72:c1:0c:eb:d0:43:4c:97:85:53:e9:21:8a:33: db:b2:2c:32:cb:e0:c7:13:07:19:f1:2e:e8:bd:6e:a7:0b:5e: 9a:e0:48:66:3e:84:91:0e:82:2b:22:79:ec:91:04:fb:be:03: f3:25:9d:5c:5f:d0:17:ca:77:12:06:09:2f:7b:1d:3a:a6:ea: c3:28:9b:72:fb:07:2d:fb:56:33:13:fc:5a:aa:4e:b3:26:50: 69:b3:c2:3b:cd:18:a1:c9:e6:55:e7:87:28:0a:ae:10:e8:5a: 67:d7:5a:42:2b:36:de:df:34:77:a1:1d:ef:11:c1:57:a4:c0: 1e:c4:c7:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUwNzE5MDIwNzE0WhcNMjUwNzI2MDIwNzE0WjAYMRYwFAYD VQQDEw02ODdhZmRkMy0yOThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29zPMvQ7M1IvWIO6KOtzTN4HIxOhS9KL93AGaqM+fhPwwqePug4SS5Rd/v54 ZRsm2MhzgezCbYyyu3zshzltckHmhKgtfPeSAruUOropMGI7lmTQGRTNRIi9qFMh V+utadNMkw32HmHX/DlUaCjHWBCeJfWLJ/r0E2eqbqLRfEPUj6znWJ/8DDjbtpHY wUurzQ4MxvS4xBSNfEgqERV3K1/rELz+8+HL+8HZskbRNxhxIWq78TwNUIEBfw+1 pNpxbOyiqrfeOQDi1tYrh/VJZpwzCpU/ka6ZO9KdyTGisZyX6QpTCZLuTtKMEdFd agIXRbzuCq2DDEXRxfffqY+2bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFiAfNU jkl9TQHVNgVzahUE5RHIMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUNynwjUXPn5g6Iis3HPIfSe/zngs1uajMh1ie6yZTzBKn7U3/O9D8 KUdSOf+Tt43oO1ENWWmftcy1JC15I1uZr7wI93Xsqn3gPXvvLxdIp5uFxqvhRXuJ 90lQ+3u0/eoX7yxaQzMjflrOu7vPqbQj8sXzCxZElYc1S+d9eNtkumu8csEM69BD TJeFU+khijPbsiwyy+DHEwcZ8S7ovW6nC16a4EhmPoSRDoIrInnskQT7vgPzJZ1c X9AXyncSBgkvex06purDKJty+wct+1YzE/xaqk6zJlBps8I7zRihyeZV54coCq4Q 6Fpn11pCKzbe3zR3oR3vEcFXpMAexMc7 -----END CERTIFICATE-----Generated at Sun Jul 20 15:05:26 2025 by rpki-client