$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: sLouJ/SN8fV9XgSh1tgxQhj8HtwfiLtwGzbwffTTyFA= Subject key identifier: 3F:FB:75:DD:97:1D:0C:3F:02:7A:34:DF:13:50:A3:CD:73:3C:42:CC Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 0176 Signing time: Mon 21 Jul 2025 03:59:08 +0000 Manifest this update: Mon 21 Jul 2025 03:59:08 +0000 Manifest next update: Mon 28 Jul 2025 03:59:08 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: ZljP3CSRmvF3LBq8ci1dX2FaRR9a4GHPuyK8ZDhmTwQ=) 2: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: RH2tA+pDkL65URt1jd9V89/t/7TTanl0u6hNZrCKG3I=) 3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: 3zCR20o/KfK/K9C/wTlGB6P7rn/kp0/zxFVVdoqdb8g=) 4: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: mR/q70Jk2CRrQySn0SCNQ9Ok1ptByPEBAf3/SOp/6zs=) 5: A16CA728B9EA11EFACF35552C4F9AE02.roa (hash: LIplw0gjYt5TLtVYJx2JRQCdxPLCfIKOl8NOlftLuUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: Jul 21 03:59:08 2025 GMT Not After : Jul 28 03:59:08 2025 GMT Subject: CN=687dbb0c-45a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:e7:39:46:78:1c:d6:8f:10:4b:00:67:04: e8:a8:bb:e0:29:46:6c:9a:29:04:02:9b:89:ff:c8: 87:17:ab:46:98:ac:d1:8a:08:0f:60:f1:10:17:dc: bb:ff:93:ec:b1:7f:a2:e3:8a:9d:9a:4c:8a:50:a6: e8:e0:8b:7b:bd:ed:46:5f:36:27:fd:98:68:9b:cc: fe:21:47:9c:db:4d:65:5a:cf:6f:13:f0:03:e1:6e: ee:65:eb:de:e4:3c:84:06:ad:2c:20:85:b7:d0:ff: 72:ef:6e:93:ba:e8:4c:3e:bf:75:b8:8d:1a:94:b5: c3:08:f4:54:2d:ff:c3:09:b4:9e:48:ad:61:01:8f: 25:1f:2c:b8:72:57:b4:40:d8:cb:15:77:f8:66:34: 28:38:a3:38:b5:f5:43:43:b0:0a:e1:f8:7e:9d:a1: 94:48:bb:76:da:e0:90:3e:1a:29:39:a1:67:ef:9e: 36:5e:a1:91:44:4a:3f:4a:96:a7:ae:25:cf:c4:8c: de:6e:a4:e1:ef:22:80:1f:a6:0f:16:0d:46:36:f3: b1:99:8d:0a:b8:1c:a8:59:34:dd:c9:1e:e2:06:b1: 9d:7c:20:3c:42:c4:6a:3e:d6:43:13:2b:5a:5f:76: ad:35:92:61:1a:48:0c:77:a7:55:a4:e6:fc:ac:51: 53:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FB:75:DD:97:1D:0C:3F:02:7A:34:DF:13:50:A3:CD:73:3C:42:CC X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:4e:38:b6:99:33:ec:28:80:93:14:79:31:8a:c4:e0:6c:b5: d4:78:4e:3e:32:01:44:ab:71:97:2a:49:f5:6b:11:4d:89:39: 8a:7c:60:05:ab:6f:cc:e8:0a:3f:f2:f2:2f:bb:4e:32:fb:bf: 9a:d5:4b:bd:c8:5f:0e:d3:4b:6b:15:76:73:d7:f8:f5:c8:59: 04:87:75:b0:3f:6a:b4:e5:27:3b:1b:99:0e:24:3c:36:a9:b1: c3:98:1c:80:94:c9:55:61:8b:86:42:43:57:43:a9:e2:5e:e6: e9:47:35:9a:72:24:83:ce:65:92:c3:ba:b8:1a:49:26:94:0a: c4:ad:46:b5:f8:a3:64:52:4f:95:e8:f0:c8:bd:6a:82:1e:84: 69:bb:03:ed:38:42:1d:9c:95:b0:1d:91:7c:78:cb:95:77:85: 17:f5:93:8b:2d:cb:b3:07:a8:59:e2:6c:dc:15:db:2d:40:f0: 1c:2c:df:b3:ff:b1:c9:29:8b:ef:21:a1:b8:06:a4:0f:5f:2b: fa:48:cd:59:e2:f4:8f:90:c6:26:aa:de:3a:94:42:ba:19:6b: bc:fd:11:6c:58:53:95:63:21:68:35:e1:11:02:a6:af:15:a2: 79:3d:f0:61:c7:b4:c3:28:7c:9d:d3:19:3c:df:8f:cd:60:b3: a7:d4:ff:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUwNzIxMDM1OTA4WhcNMjUwNzI4MDM1OTA4WjAYMRYwFAYD VQQDEw02ODdkYmIwYy00NWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfDnOUZ4HNaPEEsAZwToqLvgKUZsmikEApuJ/8iHF6tGmKzRiggPYPEQF9y7 /5PssX+i44qdmkyKUKbo4It7ve1GXzYn/Zhom8z+IUec201lWs9vE/AD4W7uZeve 5DyEBq0sIIW30P9y726TuuhMPr91uI0alLXDCPRULf/DCbSeSK1hAY8lHyy4cle0 QNjLFXf4ZjQoOKM4tfVDQ7AK4fh+naGUSLt22uCQPhopOaFn7542XqGRREo/Span riXPxIzebqTh7yKAH6YPFg1GNvOxmY0KuByoWTTdyR7iBrGdfCA8QsRqPtZDEyta X3atNZJhGkgMd6dVpOb8rFFTDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/7dd2X HQw/Ano03xNQo81zPELMMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfTji2mTPsKICTFHkxisTgbLXUeE4+MgFEq3GXKkn1axFNiTmKfGAF q2/M6Ao/8vIvu04y+7+a1Uu9yF8O00trFXZz1/j1yFkEh3WwP2q05Sc7G5kOJDw2 qbHDmByAlMlVYYuGQkNXQ6niXubpRzWaciSDzmWSw7q4GkkmlArErUa1+KNkUk+V 6PDIvWqCHoRpuwPtOEIdnJWwHZF8eMuVd4UX9ZOLLcuzB6hZ4mzcFdstQPAcLN+z /7HJKYvvIaG4BqQPXyv6SM1Z4vSPkMYmqt46lEK6GWu8/RFsWFOVYyFoNeERAqav FaJ5PfBhx7TDKHyd0xk834/NYLOn1P/X -----END CERTIFICATE-----Generated at Mon Jul 21 07:44:32 2025 by rpki-client