$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft File: xgN4bVWpBBJOdZLu0ome9XiSEQA.mft (raw, json) Hash identifier: U1pu8rg7bW/R/UBiga2uvKj9eiTTqEBJk9akC8ByyTg= Subject key identifier: 63:A0:EA:51:72:55:37:FA:AC:22:2E:51:61:66:AB:A6:44:BB:C7:E0 Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100 Certificate serial: 7D8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft Manifest number: 4848 Signing time: Sun 20 Jul 2025 17:02:37 +0000 Manifest this update: Sun 20 Jul 2025 17:02:36 +0000 Manifest next update: Sun 27 Jul 2025 17:02:36 +0000 Files and hashes: 1: xgN4bVWpBBJOdZLu0ome9XiSEQA.crl (hash: /vhk3gQmXeVkTNuEb6g6A+aAhFNxqoxkxTtparg64lM=) 2: 93933F8EB8E311EF94962C19C4F9AE02.roa (hash: oYu2WZprVxTGWmaXSTiX/1vi0KQUS49PpwwkujTaQnM=) 3: C6EB4BB695C411EFB4437E46C4F9AE02.roa (hash: DKjdHPHX9uK/7sXdnl0CnoAUxvUfxg2iDv7piZLbE+g=) 4: 51DB195AACA011E8BA30FF16C4F9AE02.roa (hash: bo2MU7FnWVB61bLgSeX3nMyKR524oPoEbjubyqJ1GeY=) 5: 596D48ACC17311EAB16B1912C4F9AE02.roa (hash: vN9wyIhoEAvL0Ppx9rHt6RaOh++3jtvNmxs0UWEaa1k=) 6: A160BBAEC17711EABFFC9E1FC4F9AE02.roa (hash: CbTGgfEWFtslvO2wALZJ+DSTt60SxWMiq0xTARE85r4=) 7: 0F7F7F6A072311ED8067812FC4F9AE02.roa (hash: IaM5JoKkMFAzjZpn+sEYIwIyVW6+qhIz6t87EVXHjEI=) 8: 5079D4A2ACA011E8BA30FF16C4F9AE02.roa (hash: aTECUl8KOBHDuvj6RQo/fOOhivuGrPAhZR0mAtm2uuY=) 9: A2696B18D16C11EA8886BE5DC4F9AE02.roa (hash: fq/qWIdl/zMbQPXZZ52zcLgyQibFEjxrMjtOCJGOy18=) 10: 1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa (hash: zvj9UK8T+8CC31S1QfeLyCh52ggJamqXxF9Th/UxIhc=) 11: 0526730C2C4811EEAC2E4D46C4F9AE02.roa (hash: colPM8HZ1vvIi6XidfSQJiOmkoAqKV69tfTn2aphAGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32140 (0x7d8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913900D, serialNumber=C603786D55A904124E7592EED2899EF578921100 Validity Not Before: Jul 20 17:02:36 2025 GMT Not After : Jul 27 17:02:36 2025 GMT Subject: CN=687d212c-edfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:65:cf:c7:84:82:5f:1c:30:5f:10:50:97:7f: a0:a4:b4:d5:c4:6b:54:f3:0d:2a:43:e9:ac:d8:65: 2f:a2:c4:80:b6:e0:5b:d4:c6:5d:17:d0:b3:c1:4c: 3d:f9:0d:b5:01:2b:84:33:02:ea:9a:37:12:d9:5c: 94:35:c1:6d:6b:6e:4f:5a:50:81:20:63:61:c5:ca: 8d:a7:b9:65:b8:d5:48:4d:cf:fe:4b:fe:a0:0d:66: 90:f9:35:ae:d6:f3:ee:40:19:75:df:35:d3:08:38: d8:dc:ed:f9:35:72:bd:f7:bd:5f:c2:e9:e3:cd:00: 5e:85:6e:b8:68:6c:aa:4f:1d:9c:57:30:4d:80:5e: a3:da:df:38:49:19:09:7c:a2:fd:69:13:7d:03:23: df:b6:dc:6f:7c:72:70:02:4b:a9:54:f2:af:42:1c: 90:e9:78:70:50:24:a2:3b:ac:df:84:bb:94:72:e6: 4c:ae:8f:0d:a5:d4:ba:6b:5b:65:53:78:10:31:9f: 8a:2f:38:43:6b:b0:68:f3:c2:e4:65:5d:b3:e8:7c: 07:f1:5b:58:d8:95:f8:d5:8f:e0:7f:ab:1b:f8:57: 51:7c:16:d9:e8:75:b6:b2:ed:7b:dc:3b:a9:6e:b4: 0c:f4:f0:28:cf:50:e8:c0:68:78:20:fe:45:13:db: d2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A0:EA:51:72:55:37:FA:AC:22:2E:51:61:66:AB:A6:44:BB:C7:E0 X509v3 Authority Key Identifier: keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2a:35:2f:1c:61:cc:e9:c6:c9:e9:24:9f:a4:67:84:ca:dd: db:46:72:17:1c:f7:a5:ab:e3:c6:58:58:5c:f0:40:20:a0:fc: 75:cb:c8:b6:6d:d5:ed:02:46:32:49:61:21:1c:53:62:4c:53: 2e:13:37:ac:f1:8e:28:73:eb:9d:0e:02:11:b1:f5:80:cc:ba: c8:3d:66:83:f5:56:28:20:e1:3d:b5:19:ad:3f:6a:89:41:54: 3f:70:77:b3:58:52:b2:a6:7a:8c:47:89:23:23:06:60:8d:a1: e1:3e:a2:b5:ea:c5:37:fa:69:d6:eb:f7:6b:b1:5f:5b:81:4e: f5:90:be:4f:eb:2f:01:11:4e:7a:c0:d3:55:73:53:90:b8:d5: 10:e7:ee:45:6c:d5:77:33:f9:71:13:46:8c:c2:be:cf:f5:c6: 1e:8c:3b:d1:a8:14:7d:40:fb:04:41:72:4c:f9:54:12:c9:64: c3:bb:3d:47:45:bf:83:a6:88:2f:e1:b8:18:72:24:8a:f2:36: c3:47:b7:0f:f8:65:c6:1d:0b:8f:ad:02:5f:1e:79:ef:bc:55: e1:13:9b:de:cd:8c:6b:7c:37:78:c4:14:f7:c8:ac:be:23:f1: 7f:73:ab:29:60:a4:cc:36:d1:f3:22:0f:65:08:0e:b0:a7:fb: 83:ac:5c:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICfYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkwMEQxMTAvBgNVBAUTKEM2MDM3ODZENTVBOTA0MTI0RTc1OTJFRUQyODk5RUY1 Nzg5MjExMDAwHhcNMjUwNzIwMTcwMjM2WhcNMjUwNzI3MTcwMjM2WjAYMRYwFAYD VQQDEw02ODdkMjEyYy1lZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGXPx4SCXxwwXxBQl3+gpLTVxGtU8w0qQ+ms2GUvosSAtuBb1MZdF9CzwUw9 +Q21ASuEMwLqmjcS2VyUNcFta25PWlCBIGNhxcqNp7lluNVITc/+S/6gDWaQ+TWu 1vPuQBl13zXTCDjY3O35NXK9971fwunjzQBehW64aGyqTx2cVzBNgF6j2t84SRkJ fKL9aRN9AyPfttxvfHJwAkupVPKvQhyQ6XhwUCSiO6zfhLuUcuZMro8NpdS6a1tl U3gQMZ+KLzhDa7Bo88LkZV2z6HwH8VtY2JX41Y/gf6sb+FdRfBbZ6HW2su173Dup brQM9PAoz1DowGh4IP5FE9vS6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOg6lFy VTf6rCIuUWFmq6ZEu8fgMB8GA1UdIwQYMBaAFMYDeG1VqQQSTnWS7tKJnvV4khEA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTAwRC9GQ0RDRDNBMEFD OUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJCSk9kWkx1MG9tZTlYaVNF UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnTjRiVldwQkJKT2RaTHUwb21lOVhpU0VRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTAwRC9GQ0RDRDNBMEFDOUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJC Sk9kWkx1MG9tZTlYaVNFUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0KjUvHGHM6cbJ6SSfpGeEyt3bRnIXHPelq+PGWFhc8EAgoPx1y8i2 bdXtAkYySWEhHFNiTFMuEzes8Y4oc+udDgIRsfWAzLrIPWaD9VYoIOE9tRmtP2qJ QVQ/cHezWFKypnqMR4kjIwZgjaHhPqK16sU3+mnW6/drsV9bgU71kL5P6y8BEU56 wNNVc1OQuNUQ5+5FbNV3M/lxE0aMwr7P9cYejDvRqBR9QPsEQXJM+VQSyWTDuz1H Rb+Dpogv4bgYciSK8jbDR7cP+GXGHQuPrQJfHnnvvFXhE5vezYxrfDd4xBT3yKy+ I/F/c6spYKTMNtHzIg9lCA6wp/uDrFzn -----END CERTIFICATE-----Generated at Mon Jul 21 08:41:07 2025 by rpki-client