$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: YfiB4ZZxe1k84K9DMF/EekegXKdgQrIcptrBY3IWRYw= Subject key identifier: C2:76:A2:2D:0C:08:83:93:CB:B2:F8:E6:20:7B:45:45:EB:54:D7:72 Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 0760 Signing time: Sun 20 Jul 2025 21:43:33 +0000 Manifest this update: Sun 20 Jul 2025 21:43:32 +0000 Manifest next update: Sun 27 Jul 2025 21:43:32 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: gq7yjS8EGMZYwi8sbXzQY9plwK8AoZrlu6xAJKO7m2o=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: eaeoz8RqOSGEC4peCpxGpY2PbARdRPwT9kf9QvE/Y6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Jul 20 21:43:32 2025 GMT Not After : Jul 27 21:43:32 2025 GMT Subject: CN=687d6305-afee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:88:6e:79:97:d8:fd:df:7f:3f:0b:e1:ca:bd: 94:50:08:13:4d:e7:f0:60:87:ae:27:c5:20:d4:05: 32:b1:da:8a:b8:b3:bf:e5:fb:2d:4a:67:bf:1f:df: fe:c6:37:4d:05:af:3f:f8:ab:73:48:86:e5:85:0d: 8d:a9:95:20:ed:27:cb:d3:fa:d6:30:90:c3:8b:32: be:94:31:ee:fd:31:40:b6:67:84:01:0c:ba:f3:e0: 7a:38:7c:5b:54:f0:81:88:0f:70:47:db:b1:24:ea: 3e:6e:5f:50:bc:63:b9:2a:e4:f7:4c:12:b2:ff:02: cd:86:8a:3c:b5:67:b5:b7:60:39:0e:08:e1:69:0c: 89:aa:7f:12:fc:7e:3b:82:06:1a:aa:4a:d3:28:60: 5c:df:bf:73:7d:50:a2:61:ed:97:7a:45:b1:17:5c: 9e:d7:e5:0a:64:b7:a9:b7:73:59:90:e3:c8:c7:d7: 78:4a:30:61:f4:2b:4c:f4:e4:52:07:16:ec:56:d2: 7f:dd:0e:82:df:3e:5f:92:fd:42:be:a5:b9:cc:e2: c7:79:4b:55:19:02:d0:1c:35:8f:0e:35:2b:cf:8c: d7:b0:a6:c3:b7:f5:c9:11:56:e0:d0:98:8a:0e:39: ba:9c:8e:11:14:96:ed:d5:42:a5:73:e8:23:93:c6: 8e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:76:A2:2D:0C:08:83:93:CB:B2:F8:E6:20:7B:45:45:EB:54:D7:72 X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:ac:56:7b:20:9a:c5:36:1f:2e:14:f6:cb:4b:dc:fd:fe:3e: ae:a8:e0:e1:ba:d2:29:46:51:78:61:f8:28:9e:d8:ef:ab:5f: a6:8f:55:01:49:1a:47:d6:67:89:43:2c:e0:47:0f:f7:25:6e: 9f:1f:6f:cb:7a:ce:52:f4:f0:38:67:6a:e6:64:3a:05:e9:68: c1:76:14:83:2f:dd:ff:12:bc:5f:08:94:54:2c:7b:88:fb:ea: 48:75:3c:73:25:8d:82:74:54:e7:97:0f:fb:03:ea:af:20:5d: 46:7c:07:02:fb:33:cd:35:6e:ab:ed:e7:b6:6b:69:da:fe:a2: 98:e2:ed:58:fd:87:86:0d:2b:85:2e:da:17:b7:ec:55:8d:28: a1:f6:d8:d0:a7:8b:b7:80:16:f8:2c:4d:5f:e4:e3:a3:2c:e4: 1f:a7:78:d6:dc:3b:ac:7a:18:5f:27:c0:5a:60:cb:83:5f:b7: 09:a0:4e:17:e3:69:50:01:34:b8:ba:bc:22:ed:95:d1:73:23: 5f:7b:25:d2:9b:41:9f:dc:17:2b:32:5d:e7:e0:88:b9:ac:24: c7:5d:2d:81:dd:88:12:14:ab:9c:24:d3:6b:23:38:6b:d0:ac: 2f:b7:30:61:10:c0:95:4a:fe:eb:23:8c:b3:a7:60:07:f7:31: 4e:43:e3:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUwNzIwMjE0MzMyWhcNMjUwNzI3MjE0MzMyWjAYMRYwFAYD VQQDEw02ODdkNjMwNS1hZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArohueZfY/d9/Pwvhyr2UUAgTTefwYIeuJ8Ug1AUysdqKuLO/5fstSme/H9/+ xjdNBa8/+KtzSIblhQ2NqZUg7SfL0/rWMJDDizK+lDHu/TFAtmeEAQy68+B6OHxb VPCBiA9wR9uxJOo+bl9QvGO5KuT3TBKy/wLNhoo8tWe1t2A5DgjhaQyJqn8S/H47 ggYaqkrTKGBc379zfVCiYe2XekWxF1ye1+UKZLept3NZkOPIx9d4SjBh9CtM9ORS BxbsVtJ/3Q6C3z5fkv1CvqW5zOLHeUtVGQLQHDWPDjUrz4zXsKbDt/XJEVbg0JiK Djm6nI4RFJbt1UKlc+gjk8aOtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ2oi0M CIOTy7L45iB7RUXrVNdyMB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFrFZ7IJrFNh8uFPbLS9z9/j6uqODhutIpRlF4Yfgontjvq1+mj1UB SRpH1meJQyzgRw/3JW6fH2/Les5S9PA4Z2rmZDoF6WjBdhSDL93/ErxfCJRULHuI ++pIdTxzJY2CdFTnlw/7A+qvIF1GfAcC+zPNNW6r7ee2a2na/qKY4u1Y/YeGDSuF LtoXt+xVjSih9tjQp4u3gBb4LE1f5OOjLOQfp3jW3DusehhfJ8BaYMuDX7cJoE4X 42lQATS4urwi7ZXRcyNfeyXSm0Gf3BcrMl3n4Ii5rCTHXS2B3YgSFKucJNNrIzhr 0KwvtzBhEMCVSv7rI4yzp2AH9zFOQ+Md -----END CERTIFICATE-----Generated at Mon Jul 21 12:51:05 2025 by rpki-client