$ rpki-client -vvf rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft File: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft (raw, json) Hash identifier: Xd6bejHGfN4ZdVPphR1HhXwz6NdAPuGH7XNo9TS4bog= Subject key identifier: E8:33:20:D5:6F:24:0C:8B:65:8A:D5:5D:63:3F:5A:AA:99:F7:2E:60 Authority key identifier: 5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 Certificate issuer: /CN=A9178ACB/serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft Manifest number: 0299 Signing time: Mon 21 Jul 2025 01:52:37 +0000 Manifest this update: Mon 21 Jul 2025 01:52:36 +0000 Manifest next update: Mon 28 Jul 2025 01:52:36 +0000 Files and hashes: 1: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl (hash: 21MHIFM5jc1hxhc0FMOyt3pLOVeyMpPT7+MiL/oH22s=) 2: F82824B4163311EDA7687F1CC4F9AE02.roa (hash: llGHaeZeNwyGtBSSkhkdbPBkxPf6MV+xeeQondsSA8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178ACB, serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Validity Not Before: Jul 21 01:52:36 2025 GMT Not After : Jul 28 01:52:36 2025 GMT Subject: CN=687d9d65-8022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1f:59:16:40:04:28:c6:df:8b:4f:6b:20:66: f5:a4:eb:46:b1:a2:dc:3c:12:f4:2d:c6:59:32:b5: 01:1b:bf:60:4d:08:e9:47:fe:75:dc:b3:0c:2e:44: 12:4c:43:ef:a3:4c:71:e7:11:8c:1b:53:39:b1:af: 61:e5:ec:09:b2:a8:2b:dc:04:ac:01:bd:4a:36:c6: 13:92:a3:2a:30:e0:c5:25:21:9f:a5:19:20:ff:8d: 8e:d4:7b:f8:fb:76:43:b2:30:71:63:41:9f:0c:84: e5:46:9d:3e:ff:c3:e5:eb:78:fc:b6:32:cf:21:97: ca:91:4b:4e:90:85:fc:d0:39:df:0d:18:dc:c3:65: c8:0a:96:d0:4c:fe:79:36:dc:89:4a:21:0c:95:9d: e6:29:84:0a:cc:39:41:df:a5:b6:83:96:8f:4c:91: 90:8b:3b:56:ff:02:f5:b2:f0:9e:ea:cf:77:5d:91: 2c:1e:49:8a:eb:40:3f:b1:a4:09:65:cc:c7:36:74: 4f:8f:b1:03:93:a9:0e:9b:19:d6:13:a8:58:b4:1a: 96:f1:b0:b5:25:46:68:14:39:6c:7d:27:08:31:49: 12:93:8d:65:ce:5e:f1:1c:7a:60:6a:9a:0c:01:9a: e7:36:df:c6:a2:d7:a9:ae:54:9d:fe:be:bb:91:e3: 97:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:33:20:D5:6F:24:0C:8B:65:8A:D5:5D:63:3F:5A:AA:99:F7:2E:60 X509v3 Authority Key Identifier: keyid:5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:df:81:5f:bd:2d:dc:8b:84:c0:d3:4c:03:46:6a:14:4f:38: 4e:68:d6:02:3d:6d:ad:50:a7:bb:14:47:79:d9:95:67:ca:01: e5:5f:fc:b1:ef:02:b8:09:0f:cb:41:0f:c1:42:34:f9:89:6f: 1c:68:56:6a:39:85:36:4b:92:70:1d:ed:67:38:50:ab:95:77: 26:96:13:97:fa:7d:1c:c4:89:a1:2a:1e:c2:42:76:e8:18:5c: 1a:00:5e:88:24:f6:d3:98:db:80:5e:8e:b3:01:fb:fa:81:27: 53:27:12:57:5d:8e:20:db:63:38:7e:73:a2:3c:1b:21:6b:89: 68:34:13:90:d4:b4:b7:43:37:97:82:1c:19:b0:4c:99:81:4d: 7a:ef:02:28:b1:e0:a2:a9:b5:be:91:79:b0:31:2a:24:d6:6a: ae:30:60:db:36:21:ca:16:17:39:1c:8e:03:04:5f:56:e4:a7: ef:e3:46:5c:a0:36:28:a2:00:dc:14:a3:4d:10:c0:09:0f:be: 22:32:23:22:8b:50:2d:7b:1b:a6:3d:18:7b:11:7c:1d:6f:b1: e8:76:df:ff:3f:b3:b7:cc:26:b9:fe:a5:e9:1a:79:71:3f:c2: a6:65:87:45:89:37:0e:b1:38:8a:9f:e0:50:7c:90:7c:94:06: b5:ab:6c:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBQ0IxMTAvBgNVBAUTKDVDMjdENTNEMEYyMzgxM0M4RUExNjM4QUYwNkM4RDM0 RDhGMkRGRjEwHhcNMjUwNzIxMDE1MjM2WhcNMjUwNzI4MDE1MjM2WjAYMRYwFAYD VQQDEw02ODdkOWQ2NS04MDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqx9ZFkAEKMbfi09rIGb1pOtGsaLcPBL0LcZZMrUBG79gTQjpR/513LMMLkQS TEPvo0xx5xGMG1M5sa9h5ewJsqgr3ASsAb1KNsYTkqMqMODFJSGfpRkg/42O1Hv4 +3ZDsjBxY0GfDITlRp0+/8Pl63j8tjLPIZfKkUtOkIX80DnfDRjcw2XICpbQTP55 NtyJSiEMlZ3mKYQKzDlB36W2g5aPTJGQiztW/wL1svCe6s93XZEsHkmK60A/saQJ ZczHNnRPj7EDk6kOmxnWE6hYtBqW8bC1JUZoFDlsfScIMUkSk41lzl7xHHpgapoM AZrnNt/GoteprlSd/r67keOXIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgzINVv JAyLZYrVXWM/WqqZ9y5gMB8GA1UdIwQYMBaAFFwn1T0PI4E8jqFjivBsjTTY8t/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFDQi81MjNBOEY1NjBC QTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdUeU9vV09LOEd5Tk5Oankz X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDZlZQUThqZ1R5T29XT0s4R3lOTk5qeTNfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEFDQi81MjNBOEY1NjBCQTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdU eU9vV09LOEd5Tk5OankzX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU34FfvS3ci4TA00wDRmoUTzhOaNYCPW2tUKe7FEd52ZVnygHlX/yx 7wK4CQ/LQQ/BQjT5iW8caFZqOYU2S5JwHe1nOFCrlXcmlhOX+n0cxImhKh7CQnbo GFwaAF6IJPbTmNuAXo6zAfv6gSdTJxJXXY4g22M4fnOiPBsha4loNBOQ1LS3QzeX ghwZsEyZgU167wIoseCiqbW+kXmwMSok1mquMGDbNiHKFhc5HI4DBF9W5Kfv40Zc oDYoogDcFKNNEMAJD74iMiMii1AtexumPRh7EXwdb7Hodt//P7O3zCa5/qXpGnlx P8KmZYdFiTcOsTiKn+BQfJB8lAa1q2y6 -----END CERTIFICATE-----Generated at Mon Jul 21 12:40:14 2025 by rpki-client