$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: VlYMcOp2nL14dhlGffvAHNHl29Jpl3vNUnDNFKE34UI= Subject key identifier: 91:21:D2:96:53:D8:7B:44:5A:25:96:65:D4:BF:BA:E5:B9:EB:81:76 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 4A Signing time: Sat 19 Jul 2025 07:36:23 +0000 Manifest this update: Sat 19 Jul 2025 07:36:22 +0000 Manifest next update: Sat 26 Jul 2025 07:36:22 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: 2atJdJSWde8XTcURnDTWbQD8iOxr8KiBGzv+Hm3eRzQ=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: BO96CEY+h3kyCGROfLPYwk1rs1fVmSzj2xY5TwnQPlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Jul 19 07:36:22 2025 GMT Not After : Jul 26 07:36:22 2025 GMT Subject: CN=687b4af7-f76f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f6:2d:79:f3:f9:6e:bd:51:d2:b7:09:f4:a6: 75:b1:6e:9f:82:ef:e1:fe:3b:b0:d6:ba:3d:12:f1: c0:84:53:90:aa:d7:86:33:4b:98:51:70:5d:42:6d: 9c:0f:69:9c:8e:91:45:f0:d9:00:81:7f:55:70:4d: c6:2d:f2:65:a2:28:60:90:1f:1b:fe:0e:74:a1:20: 51:36:3b:6e:20:8e:5d:b5:c4:72:6a:48:a6:50:de: b0:e0:7b:62:eb:8d:4a:e1:32:8b:0c:4b:1a:65:c9: 36:72:50:03:5b:6f:e7:36:ab:fa:e9:88:af:c3:88: f6:6e:71:b2:bf:e3:90:45:1c:a7:f5:5f:cc:22:21: d5:81:11:05:e4:05:c9:b1:b9:52:24:94:9f:6d:51: 15:59:a4:6e:64:35:ec:05:01:8b:4e:a9:c3:cd:ab: 75:4a:ca:cb:3b:a4:98:4f:34:8d:53:a5:e6:cc:dd: c0:cc:2e:ef:24:24:44:75:b2:2d:ad:5e:3a:9d:21: d1:df:c8:3c:0a:4b:54:87:61:c0:a2:28:ef:7c:69: 27:72:09:e7:46:77:53:ab:d5:4a:41:cc:9b:d9:03: 4f:61:16:22:f1:f1:4e:4c:7d:fc:f0:1c:3e:cb:6b: dd:ac:1e:9e:45:d2:b0:49:cc:1b:f9:f0:fe:99:89: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:21:D2:96:53:D8:7B:44:5A:25:96:65:D4:BF:BA:E5:B9:EB:81:76 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:72:53:ca:dc:98:3f:04:65:0b:4d:80:4d:d1:5b:9f:fe:a9: 0d:53:6d:00:8d:5d:1b:69:cb:4b:6f:37:b0:83:1b:3e:98:6f: 09:db:b0:bb:76:54:15:44:d7:13:02:72:1f:24:d5:43:40:70: 75:83:65:5f:8f:bd:45:0c:69:7e:f7:8c:11:cd:fe:e2:2a:46: 50:64:bc:7c:ef:e7:b2:09:96:fd:95:3a:dd:db:7a:dc:21:06: cd:e9:a5:11:51:57:0c:7e:ad:22:ad:06:3f:b5:14:e8:7e:44: 5f:ec:ea:f9:7c:91:af:c8:53:2b:55:bd:da:82:1a:b1:ce:6f: 63:5f:b8:0d:cc:56:22:e2:cc:f4:0a:86:68:bb:1c:50:36:4c: f3:1a:c3:ec:f6:1a:c5:4d:fb:34:4d:92:81:62:98:8c:e1:c9: 19:60:35:56:90:f1:37:26:88:86:c2:b9:6e:5d:de:20:79:44: 58:6e:7b:72:58:1d:cc:6a:d2:36:2b:d1:3d:ed:d3:8a:5d:0e: d6:cc:4b:00:9b:05:b8:ac:05:45:b0:cd:80:4a:ee:20:38:ee: 6e:1e:0f:62:49:25:94:a8:3f:43:4d:93:fc:f4:30:6e:2f:e5: 86:42:b3:f1:93:96:ff:08:10:f6:78:ec:83:81:b6:09:ee:e3: 98:f6:1c:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTA3MTkwNzM2MjJaFw0yNTA3MjYwNzM2MjJaMBgxFjAUBgNV BAMTDTY4N2I0YWY3LWY3NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ9i158/luvVHStwn0pnWxbp+C7+H+O7DWuj0S8cCEU5Cq14YzS5hRcF1CbZwP aZyOkUXw2QCBf1VwTcYt8mWiKGCQHxv+DnShIFE2O24gjl21xHJqSKZQ3rDge2Lr jUrhMosMSxplyTZyUANbb+c2q/rpiK/DiPZucbK/45BFHKf1X8wiIdWBEQXkBcmx uVIklJ9tURVZpG5kNewFAYtOqcPNq3VKyss7pJhPNI1TpebM3cDMLu8kJER1si2t XjqdIdHfyDwKS1SHYcCiKO98aSdyCedGd1Or1UpBzJvZA09hFiLx8U5MffzwHD7L a92sHp5F0rBJzBv58P6ZidJtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkSHSllPY e0RaJZZl1L+65bnrgXYwHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGlyU8rcmD8EZQtNgE3RW5/+qQ1TbQCNXRtpy0tvN7CDGz6YbwnbsLt2 VBVE1xMCch8k1UNAcHWDZV+PvUUMaX73jBHN/uIqRlBkvHzv57IJlv2VOt3betwh Bs3ppRFRVwx+rSKtBj+1FOh+RF/s6vl8ka/IUytVvdqCGrHOb2NfuA3MViLizPQK hmi7HFA2TPMaw+z2GsVN+zRNkoFimIzhyRlgNVaQ8TcmiIbCuW5d3iB5RFhue3JY Hcxq0jYr0T3t04pdDtbMSwCbBbisBUWwzYBK7iA47m4eD2JJJZSoP0NNk/z0MG4v 5YZCs/GTlv8IEPZ47IOBtgnu45j2HLg= -----END CERTIFICATE-----Generated at Sun Jul 20 07:05:32 2025 by rpki-client