$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft File: XOvYaFsXSV2z4edFmXn-hPBDg_I.mft (raw, json) Hash identifier: Pe7zNQhz4XahFTwoYPyxX5w/Sutfoo1HcCBd0+C81yU= Subject key identifier: F3:9D:C8:E7:57:6C:49:D9:F5:3B:09:61:32:9D:93:08:95:10:36:BC Authority key identifier: 5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 Certificate issuer: /CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft Manifest number: 0377 Signing time: Sat 19 Jul 2025 02:06:57 +0000 Manifest this update: Sat 19 Jul 2025 02:06:56 +0000 Manifest next update: Sat 26 Jul 2025 02:06:56 +0000 Files and hashes: 1: XOvYaFsXSV2z4edFmXn-hPBDg_I.crl (hash: xTSpxbrF9gj7c/3ZjHJ6Sov8xR0Z6FszzFFo1ZLVHH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Validity Not Before: Jul 19 02:06:56 2025 GMT Not After : Jul 26 02:06:56 2025 GMT Subject: CN=687afdc1-76ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e7:33:2a:24:04:f7:3e:79:88:d6:af:44:c1: dd:0e:fe:25:9f:9e:07:66:44:7e:66:aa:8d:8d:62: f3:16:38:47:11:37:e4:8b:0b:bb:77:15:fb:dc:7d: f1:1a:eb:c1:72:27:b1:74:d8:42:e3:8a:b6:df:b9: 40:e9:e6:32:76:99:8b:bc:f4:78:9f:12:36:1a:0e: e4:92:79:8b:e2:eb:13:54:36:ab:cd:39:0e:b0:e6: 3d:d8:42:89:64:ea:70:4b:6c:a6:b0:e6:7b:1c:e0: c8:e0:9d:a3:ba:ae:64:fb:f9:ab:6b:31:34:48:40: 96:79:7a:ab:7d:75:54:44:e1:b2:80:12:42:ab:6d: f6:2b:db:e8:4a:64:80:43:2b:01:b5:40:64:d1:e6: 61:4e:26:cb:ff:de:4f:38:41:23:63:4a:55:87:34: f2:d1:9b:4b:c3:86:71:91:42:2b:c3:99:ba:8c:47: f4:84:34:aa:c1:b5:49:bf:f9:ad:86:11:fc:ea:b7: 9b:c0:db:ac:07:22:a1:da:9e:d3:3b:80:5d:4a:07: 7b:f8:13:41:8c:f3:81:7a:db:f9:e5:12:8d:32:9b: f9:35:ab:51:c6:e5:25:0b:c5:a2:4c:de:29:6c:24: d4:8b:99:5a:78:0e:04:0c:71:4c:4c:97:c1:46:bc: b2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:9D:C8:E7:57:6C:49:D9:F5:3B:09:61:32:9D:93:08:95:10:36:BC X509v3 Authority Key Identifier: keyid:5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:1f:58:f0:dd:44:26:a0:8d:33:b3:f8:83:6e:21:0b:eb:32: 4f:c1:c7:54:78:a3:39:b1:44:47:8b:bd:69:c8:a7:71:38:8b: 1d:87:e7:ae:f2:b3:30:85:d9:31:1e:b5:27:6e:40:e0:68:d6: cb:51:21:04:b6:da:1d:93:71:26:aa:d6:7b:80:e8:43:67:04: 3f:5a:dd:03:32:08:66:3b:ec:aa:47:8d:ec:86:10:d0:fc:1a: dd:80:3a:06:a0:60:90:38:0b:ee:6f:23:b6:61:1c:ac:34:89: 3d:c1:34:05:62:9a:6f:f5:91:43:a3:6c:5f:25:78:40:a1:c1: ff:ef:42:86:d0:5a:27:3c:3b:c2:92:ea:28:b7:8d:a6:22:af: 8f:aa:3e:15:25:32:59:35:4d:2e:66:44:60:41:ba:71:8e:06: 73:9b:1f:ad:a8:2e:05:26:ee:49:47:ba:a0:6d:ed:22:f5:d7: d9:ce:81:f5:b2:72:bd:83:77:71:2a:1d:69:9d:76:fa:b2:56: a1:09:94:0c:4d:96:07:a3:18:e1:be:39:2b:95:9d:6f:1d:ad: d0:94:77:36:fb:8d:6c:b4:e1:1f:bb:e8:d1:74:ba:ba:66:98: 29:67:41:d4:ed:92:a6:65:57:ba:d6:9e:d6:a6:0e:b2:3c:e9: d4:54:7c:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MTYxMTAvBgNVBAUTKDVDRUJEODY4NUIxNzQ5NURCM0UxRTc0NTk5NzlGRTg0 RjA0MzgzRjIwHhcNMjUwNzE5MDIwNjU2WhcNMjUwNzI2MDIwNjU2WjAYMRYwFAYD VQQDEw02ODdhZmRjMS03NmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOczKiQE9z55iNavRMHdDv4ln54HZkR+ZqqNjWLzFjhHETfkiwu7dxX73H3x GuvBciexdNhC44q237lA6eYydpmLvPR4nxI2Gg7kknmL4usTVDarzTkOsOY92EKJ ZOpwS2ymsOZ7HODI4J2juq5k+/mrazE0SECWeXqrfXVUROGygBJCq232K9voSmSA QysBtUBk0eZhTibL/95POEEjY0pVhzTy0ZtLw4ZxkUIrw5m6jEf0hDSqwbVJv/mt hhH86rebwNusByKh2p7TO4BdSgd7+BNBjPOBetv55RKNMpv5NatRxuUlC8WiTN4p bCTUi5laeA4EDHFMTJfBRryyzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOdyOdX bEnZ9TsJYTKdkwiVEDa8MB8GA1UdIwQYMBaAFFzr2GhbF0lds+HnRZl5/oTwQ4Py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxNi80REI5Q0FDNDE0 MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9YT3ZZYUZzWFNWMno0ZWRGbVhuLWhQQkRn X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPdllhRnNYU1YyejRlZEZtWG4taFBCRGdfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxNi80REI5Q0FDNDE0MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9YT3ZZYUZzWFNW Mno0ZWRGbVhuLWhQQkRnX0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATH1jw3UQmoI0zs/iDbiEL6zJPwcdUeKM5sURHi71pyKdxOIsdh+eu 8rMwhdkxHrUnbkDgaNbLUSEEttodk3EmqtZ7gOhDZwQ/Wt0DMghmO+yqR43shhDQ /BrdgDoGoGCQOAvubyO2YRysNIk9wTQFYppv9ZFDo2xfJXhAocH/70KG0FonPDvC kuoot42mIq+Pqj4VJTJZNU0uZkRgQbpxjgZzmx+tqC4FJu5JR7qgbe0i9dfZzoH1 snK9g3dxKh1pnXb6slahCZQMTZYHoxjhvjkrlZ1vHa3QlHc2+41stOEfu+jRdLq6 ZpgpZ0HU7ZKmZVe61p7Wpg6yPOnUVHzl -----END CERTIFICATE-----Generated at Sun Jul 20 06:12:29 2025 by rpki-client