$ rpki-client -vvf rpki.apnic.net/member_repository/A913C311/F1F7AF262FBF11F09A936057C4F9AE02/xt42pOReepkfxET4yxtFXxdGLI0.mft File: xt42pOReepkfxET4yxtFXxdGLI0.mft (raw, json) Hash identifier: 69Z3w/yV8bsd4kKYO89tjukBd1/OrYgriK/Wf7o+5Oc= Subject key identifier: CD:98:84:14:52:D4:E0:D9:B5:FD:D4:C2:A7:0C:7F:26:C4:A2:34:0A Authority key identifier: C6:DE:36:A4:E4:5E:7A:99:1F:C4:44:F8:CB:1B:45:5F:17:46:2C:8D Certificate issuer: /CN=A913C311/serialNumber=C6DE36A4E45E7A991FC444F8CB1B455F17462C8D Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xt42pOReepkfxET4yxtFXxdGLI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C311/F1F7AF262FBF11F09A936057C4F9AE02/xt42pOReepkfxET4yxtFXxdGLI0.mft Manifest number: 23 Signing time: Sat 19 Jul 2025 08:04:51 +0000 Manifest this update: Sat 19 Jul 2025 08:04:50 +0000 Manifest next update: Sat 26 Jul 2025 08:04:50 +0000 Files and hashes: 1: xt42pOReepkfxET4yxtFXxdGLI0.crl (hash: WuloZpfGrMsVdsahxh+ckESEkjzi0n6taeLh8b+QosM=) 2: AEE8CD702FCC11F09626645EC4F9AE02.roa (hash: C2K9dK4do/Lq7H5EaXQP1EBA+uUbAkgLMeJKgVTTBgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C311/F1F7AF262FBF11F09A936057C4F9AE02/xt42pOReepkfxET4yxtFXxdGLI0.crl rsync://rpki.apnic.net/member_repository/A913C311/F1F7AF262FBF11F09A936057C4F9AE02/xt42pOReepkfxET4yxtFXxdGLI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xt42pOReepkfxET4yxtFXxdGLI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C311, serialNumber=C6DE36A4E45E7A991FC444F8CB1B455F17462C8D Validity Not Before: Jul 19 08:04:50 2025 GMT Not After : Jul 26 08:04:50 2025 GMT Subject: CN=687b51a2-fabd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fd:c2:e4:dd:d0:ce:f2:a4:b6:e4:1e:50:b1: 18:2b:04:b0:c0:1b:4a:97:01:04:54:31:6f:fd:0e: 52:19:f3:ab:2d:3b:38:20:42:a2:20:43:f2:f3:e5: 00:a7:11:80:bb:06:79:56:99:ba:f8:d1:c3:75:e4: 30:6e:45:14:ec:bf:7e:47:b6:bf:3b:53:ac:d7:e0: 72:95:4c:1e:20:41:9b:d9:b3:b5:e7:e8:64:7b:c0: b4:76:84:64:a8:7a:5e:17:ec:6e:7a:87:fd:f4:50: df:70:69:b3:8e:73:61:32:24:c2:ac:37:23:55:89: 60:ae:82:32:86:c2:3f:28:8b:97:0b:02:aa:3b:0c: 6d:ff:25:e0:37:56:ee:6f:e3:d2:91:3c:69:96:e8: 06:c8:ea:09:87:40:dc:b6:03:fb:3e:3d:90:be:aa: 3a:3e:8f:e1:60:e2:77:45:0f:18:9e:53:00:e5:cf: 97:a9:5e:39:ba:d3:7b:eb:cf:e9:31:18:8a:d5:1a: 4a:84:b1:f5:30:7c:ea:2b:41:ec:2a:06:08:23:45: 9c:e0:4e:b8:ed:e1:fd:23:ef:04:63:f2:23:45:73: d6:ea:68:23:93:23:38:eb:c8:ba:79:32:c5:1f:40: e4:5e:e5:0e:dd:51:6e:63:b5:10:a1:72:65:71:3a: eb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:98:84:14:52:D4:E0:D9:B5:FD:D4:C2:A7:0C:7F:26:C4:A2:34:0A X509v3 Authority Key Identifier: keyid:C6:DE:36:A4:E4:5E:7A:99:1F:C4:44:F8:CB:1B:45:5F:17:46:2C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C311/F1F7AF262FBF11F09A936057C4F9AE02/xt42pOReepkfxET4yxtFXxdGLI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xt42pOReepkfxET4yxtFXxdGLI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C311/F1F7AF262FBF11F09A936057C4F9AE02/xt42pOReepkfxET4yxtFXxdGLI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:d4:9f:02:7b:21:6b:58:a3:6c:c0:a9:42:e9:09:69:ce:69: 9d:22:7c:c5:5a:a7:d8:3d:95:a5:85:64:e3:f0:b7:bc:24:a1: 72:d8:59:2d:4c:22:4c:c0:b4:e1:ed:7c:67:a6:c8:38:50:70: 1c:a9:55:3a:f8:a3:a8:9f:aa:6e:81:23:6e:97:fe:f1:72:35: 8f:b2:dd:e1:f4:b3:f8:41:7f:f3:0d:05:6c:bc:7c:d7:a3:10: db:dd:51:16:b4:ec:1b:ec:4a:62:59:86:77:21:e8:ea:b5:3f: 9d:a0:1a:d0:99:bf:78:40:f5:a9:f4:bf:2c:44:f7:2b:57:4d: 85:e1:30:54:2d:4c:80:1c:a3:6a:cf:09:07:af:a6:fb:11:61: b0:2f:a0:e4:a7:d8:2e:f2:c0:9f:a8:3c:48:7e:7f:b8:a1:4a: 78:f0:6b:ef:d4:0c:25:ab:82:2d:d7:07:6a:4b:82:ca:d2:f5: a3:f0:fb:c3:63:69:7c:55:66:c5:e0:2a:cc:84:15:80:ab:04: bd:d2:98:2b:3c:8c:5a:dc:d9:99:89:6e:ce:43:15:57:3c:05: 9f:c1:64:28:5e:2c:50:7e:fd:f4:05:ba:ba:bf:11:7a:56:b3: 02:0f:f7:d9:96:da:ea:14:10:cb:ce:e9:43:5a:64:a5:1d:16: 3c:0b:88:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QzMxMTExMC8GA1UEBRMoQzZERTM2QTRFNDVFN0E5OTFGQzQ0NEY4Q0IxQjQ1NUYx NzQ2MkM4RDAeFw0yNTA3MTkwODA0NTBaFw0yNTA3MjYwODA0NTBaMBgxFjAUBgNV BAMTDTY4N2I1MWEyLWZhYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP/cLk3dDO8qS25B5QsRgrBLDAG0qXAQRUMW/9DlIZ86stOzggQqIgQ/Lz5QCn EYC7BnlWmbr40cN15DBuRRTsv35Htr87U6zX4HKVTB4gQZvZs7Xn6GR7wLR2hGSo el4X7G56h/30UN9wabOOc2EyJMKsNyNViWCugjKGwj8oi5cLAqo7DG3/JeA3Vu5v 49KRPGmW6AbI6gmHQNy2A/s+PZC+qjo+j+Fg4ndFDxieUwDlz5epXjm603vrz+kx GIrVGkqEsfUwfOorQewqBggjRZzgTrjt4f0j7wRj8iNFc9bqaCOTIzjryLp5MsUf QORe5Q7dUW5jtRChcmVxOusnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzZiEFFLU 4Nm1/dTCpwx/JsSiNAowHwYDVR0jBBgwFoAUxt42pOReepkfxET4yxtFXxdGLI0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDMzExL0YxRjdBRjI2MkZC RjExRjA5QTkzNjA1N0M0RjlBRTAyL3h0NDJwT1JlZXBrZnhFVDR5eHRGWHhkR0xJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHQ0MnBPUmVlcGtmeEVUNHl4dEZYeGRHTEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTND MzExL0YxRjdBRjI2MkZCRjExRjA5QTkzNjA1N0M0RjlBRTAyL3h0NDJwT1JlZXBr ZnhFVDR5eHRGWHhkR0xJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALTUnwJ7IWtYo2zAqULpCWnOaZ0ifMVap9g9laWFZOPwt7wkoXLYWS1M IkzAtOHtfGemyDhQcBypVTr4o6ifqm6BI26X/vFyNY+y3eH0s/hBf/MNBWy8fNej ENvdURa07BvsSmJZhnch6Oq1P52gGtCZv3hA9an0vyxE9ytXTYXhMFQtTIAco2rP CQevpvsRYbAvoOSn2C7ywJ+oPEh+f7ihSnjwa+/UDCWrgi3XB2pLgsrS9aPw+8Nj aXxVZsXgKsyEFYCrBL3SmCs8jFrc2ZmJbs5DFVc8BZ/BZCheLFB+/fQFurq/EXpW swIP99mW2uoUEMvO6UNaZKUdFjwLiAg= -----END CERTIFICATE-----Generated at Sun Jul 20 11:45:33 2025 by rpki-client