$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft File: XEFCLE7PHfpomnDePAORsdR-Vew.mft (raw, json) Hash identifier: sWepRk+Kr447iN8RYgfJ9LNulMkvPu+pZB3fum3FKdg= Subject key identifier: E9:7D:72:C7:1E:ED:60:B7:AA:19:F9:E2:BA:AC:AA:D6:9C:36:A7:CD Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft Manifest number: 028A Signing time: Mon 21 Jul 2025 01:57:31 +0000 Manifest this update: Mon 21 Jul 2025 01:57:30 +0000 Manifest next update: Mon 28 Jul 2025 01:57:30 +0000 Files and hashes: 1: XEFCLE7PHfpomnDePAORsdR-Vew.crl (hash: syhlQlftlkLcUErOxYLMFodzC/PAZKaBoHWIrgAX8Nw=) 2: D11B9044112011EDAC1D3B15C4F9AE02.roa (hash: jBBbANmuNZVxVrVIl9nOmJTDHehO/z/tNRNLXj+1oS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Jul 21 01:57:30 2025 GMT Not After : Jul 28 01:57:30 2025 GMT Subject: CN=687d9e8a-cdfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:c3:ad:c1:17:74:da:2b:20:1e:d8:82:d3: 82:0a:f6:6d:73:e9:19:64:28:93:50:81:23:84:32: 97:45:57:9a:f9:c7:4e:d7:c8:47:2a:f8:2a:16:d1: 67:88:00:fa:cc:9d:51:98:74:6e:02:0c:1f:53:84: 2d:2d:02:a8:36:1b:e3:f4:c8:f9:6b:58:17:df:16: 4d:0a:39:3c:cf:b9:f0:22:d4:c7:f8:10:73:62:78: 05:4d:50:6b:e4:88:9c:36:04:d1:f6:23:70:34:af: 8e:12:0b:7f:df:b6:b3:42:8d:de:c8:6b:f7:9f:71: e6:4a:38:37:bd:42:48:d8:b8:ca:fe:38:3e:06:2f: 08:79:4c:2a:17:a9:f6:23:89:e8:ec:46:ea:c5:87: a1:d0:60:93:1d:19:1b:73:8a:52:8d:e2:10:af:99: b1:b5:17:3f:d8:cd:d3:be:00:c5:9b:5e:36:8b:dc: c8:04:32:6b:c5:bf:8b:ef:9f:92:05:ff:34:c7:d7: 3e:94:cb:5d:c6:92:22:76:df:5e:93:3c:5c:f6:f5: 2f:21:6f:cd:3d:86:c2:7b:1b:d7:c4:f5:fd:d3:f3: f9:cc:e7:05:81:13:8e:98:97:78:6d:55:bb:9f:d1: 74:73:2a:13:e3:9f:00:3e:65:36:7b:6e:6b:f6:fd: 00:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7D:72:C7:1E:ED:60:B7:AA:19:F9:E2:BA:AC:AA:D6:9C:36:A7:CD X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:ca:3a:97:d5:77:88:11:b2:cd:64:51:b9:9c:24:03:b5:79: ab:b4:da:c0:ed:07:7c:12:be:3c:7a:a6:a3:4d:eb:58:5d:65: cc:ca:ca:32:cb:ec:11:89:59:0a:04:82:0b:7b:4a:6b:62:3a: 27:30:46:93:09:6a:c9:f8:e1:b9:ff:c4:4f:98:fd:b1:85:42: 3e:8b:39:78:a3:69:bc:07:9f:29:a0:d0:b1:3a:1a:33:86:57: 8a:9a:cf:3c:aa:a2:14:2a:68:fc:d9:69:09:bd:40:59:43:0c: 2e:90:8a:f3:10:06:ac:da:f6:2a:2f:1d:51:dd:39:4a:70:ca: 57:03:3f:07:4f:57:94:f4:91:3e:ca:ac:77:c7:85:47:d0:ff: 01:50:43:85:d7:83:8e:c0:f2:1e:44:d1:bd:2c:92:c7:a3:6c: d2:0e:7d:43:2e:24:f2:db:2c:f5:03:ff:ce:62:23:f4:b9:7c: 33:d1:d9:df:f8:fc:ce:df:c1:d6:89:d3:45:cb:39:0a:35:40: 31:ae:a6:9f:ce:c4:1f:1b:25:a9:f2:ce:87:20:5f:ef:39:c4: d3:70:1a:22:dc:e4:10:2a:2a:09:94:00:89:94:33:88:16:92: d4:53:b1:1d:1c:42:32:5a:f0:a7:00:a7:0b:84:01:a9:86:25: 20:b0:00:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUwNzIxMDE1NzMwWhcNMjUwNzI4MDE1NzMwWjAYMRYwFAYD VQQDEw02ODdkOWU4YS1jZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPPDrcEXdNorIB7YgtOCCvZtc+kZZCiTUIEjhDKXRVea+cdO18hHKvgqFtFn iAD6zJ1RmHRuAgwfU4QtLQKoNhvj9Mj5a1gX3xZNCjk8z7nwItTH+BBzYngFTVBr 5IicNgTR9iNwNK+OEgt/37azQo3eyGv3n3HmSjg3vUJI2LjK/jg+Bi8IeUwqF6n2 I4no7EbqxYeh0GCTHRkbc4pSjeIQr5mxtRc/2M3TvgDFm142i9zIBDJrxb+L75+S Bf80x9c+lMtdxpIidt9ekzxc9vUvIW/NPYbCexvXxPX90/P5zOcFgROOmJd4bVW7 n9F0cyoT458APmU2e25r9v0A1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl9csce 7WC3qhn54rqsqtacNqfNMB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjE5RC9EMjY5NURERTExMUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhm cG9tbkRlUEFPUnNkUi1WZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVyjqX1XeIEbLNZFG5nCQDtXmrtNrA7Qd8Er48eqajTetYXWXMysoy y+wRiVkKBIILe0prYjonMEaTCWrJ+OG5/8RPmP2xhUI+izl4o2m8B58poNCxOhoz hleKms88qqIUKmj82WkJvUBZQwwukIrzEAas2vYqLx1R3TlKcMpXAz8HT1eU9JE+ yqx3x4VH0P8BUEOF14OOwPIeRNG9LJLHo2zSDn1DLiTy2yz1A//OYiP0uXwz0dnf +PzO38HWidNFyzkKNUAxrqafzsQfGyWp8s6HIF/vOcTTcBoi3OQQKioJlACJlDOI FpLUU7EdHEIyWvCnAKcLhAGphiUgsACR -----END CERTIFICATE-----Generated at Mon Jul 21 07:28:35 2025 by rpki-client