$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: a6HpBEYJKnbzJEA8UGwBKlJAbxziK1UMjx9Hgnbt2Rw= Subject key identifier: 5C:99:6B:01:8B:5C:42:33:C4:A6:17:FE:AA:D8:9B:0E:DD:85:6B:AD Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: F5 Signing time: Sat 19 Jul 2025 05:26:17 +0000 Manifest this update: Sat 19 Jul 2025 05:26:17 +0000 Manifest next update: Sat 26 Jul 2025 05:26:17 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: xbg0v67lmLUOdKqS6OsluEL6wuWne+clnub1KJUCkR8=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Jul 19 05:26:17 2025 GMT Not After : Jul 26 05:26:17 2025 GMT Subject: CN=687b2c79-37a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b9:b1:3c:8d:41:00:8c:15:7b:6b:9b:de:65: f3:47:ad:91:cb:f2:a9:92:d5:45:f0:c6:34:06:79: 72:5c:e0:81:e1:b9:20:34:80:c7:26:1c:cb:78:5f: df:d0:4a:af:0b:a5:f2:6d:85:58:f5:ab:37:de:2a: 72:62:94:6b:83:06:8a:35:fe:97:6e:7b:f7:4a:2b: c7:a6:54:a9:ad:d6:a1:bd:29:9e:85:d8:f9:51:7a: 44:31:c8:33:8c:f5:a4:9a:95:2f:b7:25:87:9f:3e: cd:e7:74:83:2c:6c:1e:4b:48:26:28:9e:cc:ac:09: 06:28:dc:66:80:10:ba:08:5b:83:a9:ee:b7:53:61: 42:4c:0e:be:cd:5b:0f:1e:fa:e2:59:b3:bb:81:b7: 0c:50:03:be:b6:49:c1:a0:08:19:92:dc:01:bb:d6: ee:9b:73:8c:c0:36:be:07:af:0a:1a:3e:9a:41:45: dc:29:bb:95:ad:de:a7:ea:4f:a6:93:68:a7:80:4f: 9a:95:80:c9:a5:de:fa:57:1a:a9:38:b6:10:36:6f: 85:66:2c:8b:84:c6:04:3c:01:24:d6:0e:db:aa:89: b9:4f:89:67:07:89:60:1b:32:dd:4d:25:64:fc:83: 6a:0a:9a:f8:5c:90:41:3a:1f:de:fe:b7:99:86:cb: 69:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:99:6B:01:8B:5C:42:33:C4:A6:17:FE:AA:D8:9B:0E:DD:85:6B:AD X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:30:1a:c0:f6:3a:cf:88:d3:33:c6:0e:7e:3e:b4:11:7d:62: 5a:18:e5:05:06:57:58:9c:fa:77:13:bd:ef:aa:9a:8e:a6:77: a1:68:5a:cb:5e:fc:83:1a:a0:dc:01:42:1c:18:11:df:5f:a9: e2:48:a7:2d:b5:b3:dc:95:70:9f:6f:35:15:42:2c:02:9b:18: 94:98:84:c3:c1:9a:0f:f6:08:4f:41:d5:2e:db:4f:1e:66:8e: 31:cf:6c:d0:81:4f:64:35:e7:e4:f6:1b:16:af:50:7a:ae:d5: dd:43:23:14:7a:34:b0:f7:8c:06:3e:f2:ba:b5:a9:09:4b:1c: 49:95:3f:cf:71:1c:30:29:ad:5d:35:e9:2e:89:9f:ac:fd:40: 9c:6b:11:15:c8:14:b1:bd:96:1b:98:c0:79:13:59:a9:1b:5c: 63:9b:79:78:a4:4f:e3:63:5d:eb:80:48:83:17:c1:51:35:1e: 13:de:a6:e5:a1:be:cd:95:ec:fd:be:47:f0:45:3a:eb:7d:c9: bf:51:d4:05:3a:b0:c4:dd:d3:0c:86:ff:c3:5c:40:24:cd:c3: 05:ab:19:44:9b:6e:ed:e0:df:4d:f0:94:ac:35:e9:0c:cb:91: c9:d9:a6:d7:bb:c3:30:72:90:42:94:d8:9d:ab:b3:7a:45:6a: 56:e9:81:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwNzE5MDUyNjE3WhcNMjUwNzI2MDUyNjE3WjAYMRYwFAYD VQQDEw02ODdiMmM3OS0zN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLmxPI1BAIwVe2ub3mXzR62Ry/KpktVF8MY0BnlyXOCB4bkgNIDHJhzLeF/f 0EqvC6XybYVY9as33ipyYpRrgwaKNf6Xbnv3SivHplSprdahvSmehdj5UXpEMcgz jPWkmpUvtyWHnz7N53SDLGweS0gmKJ7MrAkGKNxmgBC6CFuDqe63U2FCTA6+zVsP HvriWbO7gbcMUAO+tknBoAgZktwBu9bum3OMwDa+B68KGj6aQUXcKbuVrd6n6k+m k2ingE+alYDJpd76VxqpOLYQNm+FZiyLhMYEPAEk1g7bqom5T4lnB4lgGzLdTSVk /INqCpr4XJBBOh/e/reZhstpdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyZawGL XEIzxKYX/qrYmw7dhWutMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvMBrA9jrPiNMzxg5+PrQRfWJaGOUFBldYnPp3E73vqpqOpnehaFrL XvyDGqDcAUIcGBHfX6niSKcttbPclXCfbzUVQiwCmxiUmITDwZoP9ghPQdUu208e Zo4xz2zQgU9kNefk9hsWr1B6rtXdQyMUejSw94wGPvK6takJSxxJlT/PcRwwKa1d NekuiZ+s/UCcaxEVyBSxvZYbmMB5E1mpG1xjm3l4pE/jY13rgEiDF8FRNR4T3qbl ob7Nlez9vkfwRTrrfcm/UdQFOrDE3dMMhv/DXEAkzcMFqxlEm27t4N9N8JSsNekM y5HJ2abXu8MwcpBClNidq7N6RWpW6YE8 -----END CERTIFICATE-----Generated at Sun Jul 20 03:11:16 2025 by rpki-client