$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: l3CkHaUpRJ/9C0pIcno45rnYTCvdRxAKnm2kg74rSO4= Subject key identifier: C3:02:7D:2F:53:D0:79:27:7A:F6:D0:03:EA:B1:E6:DA:55:E0:B3:B2 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 01B8 Signing time: Sat 19 Jul 2025 03:20:40 +0000 Manifest this update: Sat 19 Jul 2025 03:20:40 +0000 Manifest next update: Sat 26 Jul 2025 03:20:40 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: SXPTFgv6kMD5eKOYss/+bCYFNtCNYVZwRN+kkqEpoJc=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Jul 19 03:20:40 2025 GMT Not After : Jul 26 03:20:40 2025 GMT Subject: CN=687b0f08-a5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a5:54:17:7b:9a:db:b8:c0:64:1a:bc:4e:b2: f3:2e:ec:d0:29:6e:16:b0:13:77:70:35:eb:f4:1d: da:c7:e1:bf:6c:0f:26:42:b0:61:28:a4:61:15:ae: 30:71:13:1b:0a:fc:3d:87:49:40:e4:dc:73:ae:3d: 59:af:74:4c:06:07:cb:86:e5:b9:6f:29:4b:7a:91: c0:1a:32:a7:39:5f:3d:e2:88:b8:9a:87:29:7e:8e: bb:f5:ab:96:42:7b:e1:27:e5:f9:9e:15:19:7b:d6: 46:e0:5d:11:15:f4:9b:55:10:ac:1d:1e:29:b9:ca: 43:a4:25:71:98:93:9c:de:67:02:af:f5:46:ba:f7: d6:86:43:35:d5:05:b1:f6:27:df:05:c1:30:67:10: fb:0b:82:dc:e8:e8:3c:06:5e:78:71:46:07:1f:20: f4:63:82:90:df:e6:39:4f:49:10:b9:e3:4a:a2:bb: e4:8b:fe:65:8a:52:3c:fb:f6:ce:cf:e3:3f:b2:1f: bf:e6:b4:86:5d:f1:57:ae:c3:91:71:8f:40:93:1a: 63:72:ee:f3:bd:0a:46:41:28:09:a9:2a:76:02:86: 72:62:4c:1f:71:ae:06:8c:b0:e2:fe:b4:a0:56:5c: 1a:0d:8d:37:e3:75:ad:db:00:21:d1:14:02:69:a5: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:02:7D:2F:53:D0:79:27:7A:F6:D0:03:EA:B1:E6:DA:55:E0:B3:B2 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:5d:42:d1:c5:7e:0f:60:ea:e3:4d:db:db:3c:77:b4:02:92: 14:e9:1a:5b:fd:5d:f8:12:7f:69:0e:8f:29:50:eb:b1:7e:fb: d7:c2:e4:75:58:22:b0:01:a0:e2:7d:76:56:4b:e7:cb:be:fb: 9e:8c:1e:c7:5d:e7:dc:e2:1b:00:49:56:99:f9:d5:b5:57:59: 43:a6:32:8e:59:96:e0:6e:b0:9d:2a:e2:57:d8:37:b5:d1:67: 8c:8d:00:9a:b4:be:eb:8e:b6:8e:ab:40:87:9e:94:69:e6:a1: 3e:69:de:9c:ec:90:0c:8b:a3:53:4e:f8:c5:d7:27:86:c1:22: 07:67:4e:b9:8e:af:3f:6a:82:6d:ab:7c:03:c3:1b:0f:27:01: 73:d7:85:6d:5d:b7:1a:df:b2:ac:80:c8:df:c0:97:bb:5e:20: 88:63:c9:47:30:99:a3:e3:46:fe:c1:af:c7:a9:74:7a:16:5a: 87:b3:22:e0:7c:a5:79:c5:d9:89:d3:dd:90:80:da:f3:88:e2: 54:39:28:9b:f1:93:f5:b5:b0:d0:cd:99:46:0a:16:16:2d:84: cb:5d:ae:ca:f5:07:b7:d5:2a:b8:3f:1c:ad:47:19:dd:0c:5b: f3:57:a5:f3:15:28:34:a0:3d:1d:77:3a:fe:bb:e9:09:aa:84: 32:db:55:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwNzE5MDMyMDQwWhcNMjUwNzI2MDMyMDQwWjAYMRYwFAYD VQQDEw02ODdiMGYwOC1hNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaVUF3ua27jAZBq8TrLzLuzQKW4WsBN3cDXr9B3ax+G/bA8mQrBhKKRhFa4w cRMbCvw9h0lA5Nxzrj1Zr3RMBgfLhuW5bylLepHAGjKnOV894oi4mocpfo679auW QnvhJ+X5nhUZe9ZG4F0RFfSbVRCsHR4pucpDpCVxmJOc3mcCr/VGuvfWhkM11QWx 9iffBcEwZxD7C4Lc6Og8Bl54cUYHHyD0Y4KQ3+Y5T0kQueNKorvki/5lilI8+/bO z+M/sh+/5rSGXfFXrsORcY9Akxpjcu7zvQpGQSgJqSp2AoZyYkwfca4GjLDi/rSg VlwaDY0343Wt2wAh0RQCaaW1iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMCfS9T 0HknevbQA+qx5tpV4LOyMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBXULRxX4PYOrjTdvbPHe0ApIU6Rpb/V34En9pDo8pUOuxfvvXwuR1 WCKwAaDifXZWS+fLvvuejB7HXefc4hsASVaZ+dW1V1lDpjKOWZbgbrCdKuJX2De1 0WeMjQCatL7rjraOq0CHnpRp5qE+ad6c7JAMi6NTTvjF1yeGwSIHZ065jq8/aoJt q3wDwxsPJwFz14VtXbca37KsgMjfwJe7XiCIY8lHMJmj40b+wa/HqXR6FlqHsyLg fKV5xdmJ092QgNrziOJUOSib8ZP1tbDQzZlGChYWLYTLXa7K9Qe31Sq4PxytRxnd DFvzV6XzFSg0oD0ddzr+u+kJqoQy21XV -----END CERTIFICATE-----Generated at Sun Jul 20 22:35:20 2025 by rpki-client