$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: PAids+gO4Ch+V8YlSg2AESJZuUNkAAMc9wE040/vBqU= Subject key identifier: DC:D0:F8:C3:7D:38:36:B5:65:FC:56:7B:62:81:B8:A5:06:AD:F2:6F Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: E5 Signing time: Mon 21 Jul 2025 05:36:38 +0000 Manifest this update: Mon 21 Jul 2025 05:36:37 +0000 Manifest next update: Mon 28 Jul 2025 05:36:37 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: Mv1Gjkt0sx6Z7tbsb2N+JFCKorS2sZByA6EQfNdAG50=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Jul 21 05:36:37 2025 GMT Not After : Jul 28 05:36:37 2025 GMT Subject: CN=687dd1e6-ea28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ea:b0:ac:d8:62:6a:64:a3:06:a6:70:fa:b8: 9c:83:ab:ae:b7:87:54:01:67:bb:44:1b:76:26:28: 68:b6:43:ce:bd:73:df:df:ce:b2:fc:4d:0a:be:d4: e0:db:c3:f7:83:91:e5:1e:e7:63:44:ef:44:2c:ec: d5:8b:f2:e9:c2:3b:4f:61:15:c9:97:bb:02:b7:d8: de:65:66:dc:f7:bb:c6:aa:e7:ea:7e:66:64:47:29: 46:df:20:e3:81:7f:3e:db:a0:94:04:31:2d:2f:c9: a4:64:a8:68:39:1e:8f:56:21:4f:44:f0:59:5d:02: 76:a2:16:95:9e:e9:96:b7:01:7b:11:49:a3:ab:2a: 5d:ef:3b:12:21:4d:ed:48:f0:4c:b7:2d:e1:0f:0f: 7a:1d:6b:14:69:2d:31:12:23:0e:51:d3:ab:fd:0c: 11:31:91:bb:fd:66:6d:48:ff:97:24:41:e5:6d:0f: 1d:71:e5:9b:0e:21:55:67:9f:65:8c:33:fd:ef:93: 3e:17:c2:e6:59:75:69:0e:b1:1b:9f:37:29:2e:9e: c7:3d:02:6e:47:40:38:84:84:a4:2b:f0:41:46:29: 2e:43:2b:58:f5:f9:9b:49:45:2c:e3:b3:48:0c:cc: 6e:2f:11:5a:12:9d:2b:df:82:79:d8:43:47:c6:3e: f9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D0:F8:C3:7D:38:36:B5:65:FC:56:7B:62:81:B8:A5:06:AD:F2:6F X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:48:62:18:68:96:fe:ce:f8:a9:9c:b7:49:94:8a:4f:2f:53: c3:39:01:a9:aa:1e:64:ca:60:ab:ee:b9:a2:fe:53:9d:49:9c: 2e:d0:98:2c:04:9f:2f:ce:8d:7f:bd:fe:11:ff:30:23:5c:ff: a8:4f:d3:52:e1:ea:11:31:cc:29:4b:7c:75:33:9f:01:28:43: 62:98:59:72:c3:61:54:c4:79:ae:0c:61:8b:c7:2d:1a:4b:46: 5d:d2:42:48:a4:34:01:1d:ae:bc:a7:ec:c4:5d:a4:e0:0e:71: 8a:04:2f:ff:e8:69:3d:12:3a:8a:a2:ee:2a:50:7b:e7:6d:a4: 68:72:7b:d0:a1:8d:b0:3e:da:15:0a:90:4c:b6:0b:6e:5c:42: 21:2c:64:99:b2:bc:e3:94:2f:f3:b4:48:49:d6:d6:5f:45:5d: f3:50:19:76:e0:34:4d:3e:a3:85:89:cb:8e:58:32:a1:a5:75: c5:aa:73:4d:69:2e:7d:f9:31:d8:9c:bb:50:58:50:12:02:6f: 74:5c:47:af:82:19:20:c9:86:39:e3:dd:94:38:16:81:e2:14: 7c:f2:91:4e:02:2c:72:45:9a:c0:b5:ae:22:3a:56:24:01:8e: 53:08:dd:5a:70:d5:82:6d:69:30:73:b3:98:da:81:0d:c3:2d: 98:12:9a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwNzIxMDUzNjM3WhcNMjUwNzI4MDUzNjM3WjAYMRYwFAYD VQQDEw02ODdkZDFlNi1lYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuqwrNhiamSjBqZw+ricg6uut4dUAWe7RBt2JihotkPOvXPf386y/E0KvtTg 28P3g5HlHudjRO9ELOzVi/LpwjtPYRXJl7sCt9jeZWbc97vGqufqfmZkRylG3yDj gX8+26CUBDEtL8mkZKhoOR6PViFPRPBZXQJ2ohaVnumWtwF7EUmjqypd7zsSIU3t SPBMty3hDw96HWsUaS0xEiMOUdOr/QwRMZG7/WZtSP+XJEHlbQ8dceWbDiFVZ59l jDP975M+F8LmWXVpDrEbnzcpLp7HPQJuR0A4hISkK/BBRikuQytY9fmbSUUs47NI DMxuLxFaEp0r34J52ENHxj759wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzQ+MN9 ODa1ZfxWe2KBuKUGrfJvMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjSGIYaJb+zvipnLdJlIpPL1PDOQGpqh5kymCr7rmi/lOdSZwu0Jgs BJ8vzo1/vf4R/zAjXP+oT9NS4eoRMcwpS3x1M58BKENimFlyw2FUxHmuDGGLxy0a S0Zd0kJIpDQBHa68p+zEXaTgDnGKBC//6Gk9EjqKou4qUHvnbaRocnvQoY2wPtoV CpBMtgtuXEIhLGSZsrzjlC/ztEhJ1tZfRV3zUBl24DRNPqOFicuOWDKhpXXFqnNN aS59+THYnLtQWFASAm90XEevghkgyYY5492UOBaB4hR88pFOAixyRZrAta4iOlYk AY5TCN1acNWCbWkwc7OY2oENwy2YEprt -----END CERTIFICATE-----Generated at Mon Jul 21 12:43:34 2025 by rpki-client