$ rpki-client -vvf rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft File: xGfLLMucIacHtd-86roFTBkFI64.mft (raw, json) Hash identifier: kmnMqbsjkBlfJdbX7ZQoPZ19wHpgQ8Om5XlZQbCHPaI= Subject key identifier: B4:8A:CC:9E:7D:0E:A8:F0:15:59:E1:61:F3:3E:D3:17:97:13:C0:7B Authority key identifier: C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE Certificate issuer: /CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE Certificate serial: 0C8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft Manifest number: 0C66 Signing time: Fri 18 Jul 2025 18:41:42 +0000 Manifest this update: Fri 18 Jul 2025 18:41:42 +0000 Manifest next update: Fri 25 Jul 2025 18:41:42 +0000 Files and hashes: 1: xGfLLMucIacHtd-86roFTBkFI64.crl (hash: f3xFPLWglRmQn5iAP2/qxdjjokcRrdMV0XB10MQj2/A=) 2: 2C1A71D81A9B11EFA4886942C4F9AE02.roa (hash: U6YXVJRAyKVKOBp9fvM3MDDPghC49iE+40CZRqzPtNo=) 3: 82054BC05A5211F0BBE5D43EC4F9AE02.roa (hash: PeGjSUoxfFhFQ0C87K9ThPEDCalU5hsYJY8EJY1qm7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C3BE, serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE Validity Not Before: Jul 18 18:41:42 2025 GMT Not After : Jul 25 18:41:42 2025 GMT Subject: CN=687a9566-6c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4c:4d:28:e7:97:c0:e8:92:f1:f0:d8:85:44: 4a:24:7f:e1:3d:7b:88:4c:9f:9d:07:a5:c7:09:3a: 1c:40:74:ff:72:f5:84:c2:0b:19:1a:a0:8f:8b:91: a8:03:c6:8d:d6:1b:21:45:4e:5e:ce:b0:8d:78:7a: 82:e1:ba:83:26:c7:5f:fe:75:8b:67:72:53:c6:1d: b2:6b:fa:7f:bd:4e:62:4f:1d:64:57:f1:08:8e:df: 0a:33:44:45:1b:ad:8d:af:a5:ad:7f:67:2e:71:01: fa:e1:c5:6c:92:71:6f:29:0c:d9:6d:7d:29:37:8d: 13:fe:af:13:01:f3:12:40:1e:4f:c7:c3:e6:ef:79: 46:43:4b:9f:54:79:ee:7c:5a:74:d1:40:ae:f8:6c: c5:69:c4:bf:61:eb:51:ce:f1:a5:4c:a2:5d:92:5f: 77:44:5c:3d:0d:6a:92:19:d5:d0:86:da:e5:a5:a3: e3:cf:99:fa:5a:62:46:31:e7:77:7c:c4:90:ff:13: b9:16:69:5d:4d:17:dc:9a:02:65:77:ed:50:15:4e: 02:71:0e:44:f3:b4:98:37:3b:27:5d:44:16:0b:73: 0e:14:5b:19:e3:43:00:d1:41:5e:d6:0c:bf:ec:c5: 84:ff:c1:67:68:60:54:a7:8e:40:5b:55:20:fb:4f: de:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8A:CC:9E:7D:0E:A8:F0:15:59:E1:61:F3:3E:D3:17:97:13:C0:7B X509v3 Authority Key Identifier: keyid:C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:d3:6c:5d:78:03:92:52:1d:e3:fa:7b:bd:c6:5d:64:29:38: e6:2e:4d:b0:3f:8a:26:ff:8f:d9:ac:5d:67:fa:78:43:3a:3d: d6:c4:25:b0:72:ef:13:38:b1:58:47:9a:12:5d:f6:14:70:e5: 78:bf:74:4b:30:14:3c:d0:c0:92:b9:d8:1a:11:60:0a:fd:d8: e8:68:c3:78:d2:43:3c:7e:e6:fd:44:8e:59:a2:c7:76:0b:a9: d8:8b:7b:8d:39:7f:b5:9e:04:7f:28:40:2c:76:94:35:fa:33: df:90:76:93:8d:ce:fe:45:8e:d6:1a:99:6c:e6:e3:68:a2:49: df:33:26:32:b8:3c:0c:e8:ff:66:f0:d7:1b:8b:60:f9:33:60: cd:f5:2b:80:d6:1f:22:9d:31:06:f3:3d:97:2d:8f:a5:0a:8b: 46:2e:5c:a0:38:38:ca:a1:40:d2:76:f5:9d:8c:cd:53:2a:39: 1c:26:48:97:23:8a:d8:25:93:43:61:26:7b:b5:8d:a6:b7:59: 0e:99:00:d6:3f:ee:b7:fc:02:6e:ad:3c:16:52:e6:ed:30:c3: 82:49:fe:d1:c9:d0:5b:b3:17:9a:14:d1:fd:04:8a:43:7a:4c: 5f:1a:e9:47:2c:cb:9a:80:38:37:f6:1d:0f:a3:74:8c:e8:6b: 80:57:ad:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzQkUxMTAvBgNVBAUTKEM0NjdDQjJDQ0I5QzIxQTcwN0I1REZCQ0VBQkEwNTRD MTkwNTIzQUUwHhcNMjUwNzE4MTg0MTQyWhcNMjUwNzI1MTg0MTQyWjAYMRYwFAYD VQQDEw02ODdhOTU2Ni02YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7UxNKOeXwOiS8fDYhURKJH/hPXuITJ+dB6XHCTocQHT/cvWEwgsZGqCPi5Go A8aN1hshRU5ezrCNeHqC4bqDJsdf/nWLZ3JTxh2ya/p/vU5iTx1kV/EIjt8KM0RF G62Nr6Wtf2cucQH64cVsknFvKQzZbX0pN40T/q8TAfMSQB5Px8Pm73lGQ0ufVHnu fFp00UCu+GzFacS/YetRzvGlTKJdkl93RFw9DWqSGdXQhtrlpaPjz5n6WmJGMed3 fMSQ/xO5FmldTRfcmgJld+1QFU4CcQ5E87SYNzsnXUQWC3MOFFsZ40MA0UFe1gy/ 7MWE/8FnaGBUp45AW1Ug+0/ecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSKzJ59 DqjwFVnhYfM+0xeXE8B7MB8GA1UdIwQYMBaAFMRnyyzLnCGnB7XfvOq6BUwZBSOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzNCRS85NDdCMzUwNjA5 MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lhY0h0ZC04NnJvRlRCa0ZJ NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHZkxMTXVjSWFjSHRkLTg2cm9GVEJrRkk2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzNCRS85NDdCMzUwNjA5MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lh Y0h0ZC04NnJvRlRCa0ZJNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDN02xdeAOSUh3j+nu9xl1kKTjmLk2wP4om/4/ZrF1n+nhDOj3WxCWw cu8TOLFYR5oSXfYUcOV4v3RLMBQ80MCSudgaEWAK/djoaMN40kM8fub9RI5Zosd2 C6nYi3uNOX+1ngR/KEAsdpQ1+jPfkHaTjc7+RY7WGpls5uNooknfMyYyuDwM6P9m 8Ncbi2D5M2DN9SuA1h8inTEG8z2XLY+lCotGLlygODjKoUDSdvWdjM1TKjkcJkiX I4rYJZNDYSZ7tY2mt1kOmQDWP+63/AJurTwWUubtMMOCSf7RydBbsxeaFNH9BIpD ekxfGulHLMuagDg39h0Po3SM6GuAV63p -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:02 2025 by rpki-client