$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: 0jYnS8NENPORPRfLZWXwyzXRK67xtFe7sZ1lKIAVN5Y= Subject key identifier: 70:3B:94:82:5F:B0:5B:C1:F8:47:30:9D:56:30:52:5A:A8:67:E6:91 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 064D Signing time: Mon 30 Jun 2025 22:54:50 +0000 Manifest this update: Mon 30 Jun 2025 22:54:50 +0000 Manifest next update: Mon 07 Jul 2025 22:54:50 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: Cje9tH45B0R3Yn3vvzKYtQBmolLOIM9zrhay0A624qc=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: HcRkeL0L46StqN8XUYCiDhZBU5a1szFT/RluEKL79UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Jun 30 22:54:50 2025 GMT Not After : Jul 7 22:54:50 2025 GMT Subject: CN=686315ba-8710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a0:75:a2:7b:a6:44:5e:2b:ea:c7:67:31:5f: 9d:5e:d0:cd:be:74:17:f0:83:94:43:a8:f7:59:28: f4:4d:8f:f2:2e:70:e2:5d:e2:41:9c:a7:b0:a9:83: b6:5c:69:0d:b1:82:f1:74:26:51:d6:1f:0c:bd:3c: 7b:c8:4e:2f:c5:1d:e0:d0:ad:52:07:f4:a1:45:75: ef:00:81:3c:af:87:c2:7c:6f:68:9e:4b:be:cc:92: d1:5c:16:60:8b:e1:09:39:27:48:b5:72:1e:74:59: fc:8d:7b:04:43:2e:1f:ea:72:43:65:2f:67:9e:7c: 18:0a:ed:7d:d0:ee:1e:67:75:21:28:e2:26:05:4c: bc:ef:20:e1:9f:ea:6b:74:a4:8b:cf:60:df:60:74: 23:97:fe:59:4e:0f:6a:2f:d3:ad:b2:11:58:de:de: 4e:20:ec:1f:a2:fd:18:da:18:50:0a:80:32:35:24: 79:dd:18:78:f5:f7:16:7d:b5:8d:1b:d0:ed:56:95: 6b:ba:93:4c:88:8e:eb:3d:f9:00:92:ed:76:dd:9e: 82:27:5b:5b:ed:48:70:ea:1c:c7:f5:3b:f1:c7:b4: 46:6c:c7:e6:fa:40:8f:b9:c0:45:db:16:35:cd:fd: 57:bf:9d:0b:10:72:ca:45:b3:fe:40:18:4e:87:d2: c1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3B:94:82:5F:B0:5B:C1:F8:47:30:9D:56:30:52:5A:A8:67:E6:91 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:70:33:15:bd:ea:6c:93:6f:c3:eb:ce:fd:2d:af:6c:0c:69: 0f:61:82:6b:54:47:39:ad:0d:79:8b:9e:6b:d0:14:c9:32:72: 71:cb:2f:d9:57:ad:88:95:b0:5e:d0:0c:b1:da:2f:ef:8c:77: 9f:de:49:ee:34:c9:06:06:97:50:e8:10:01:36:5c:3f:55:44: 40:6a:f4:f8:f0:22:b3:8e:f2:e4:36:32:43:e5:f2:58:ed:cc: d2:aa:6e:df:5b:0e:6e:30:e0:69:21:37:ac:43:46:21:d3:ed: 77:19:4d:73:ef:13:79:f3:92:89:2a:83:ff:73:54:93:86:3b: 0e:cd:ed:31:e7:c3:a6:04:46:84:56:6d:de:d3:9f:09:2f:1e: a9:66:5e:83:df:68:58:77:d4:b4:ce:f8:1f:10:fd:60:82:df: 3b:a7:27:f2:82:4d:c6:bd:1c:ba:fe:3f:ed:18:6d:51:9f:9c: 30:25:1d:ac:e5:b9:5c:21:a0:ed:a4:c1:05:1c:e9:89:97:fa: b3:91:1b:2b:3d:84:5d:72:3b:8b:b4:35:56:7d:53:12:76:df: 0b:2a:10:4f:2a:a4:26:55:b4:52:38:1d:0d:9b:38:41:40:cd: f8:2d:a2:4a:25:4a:4f:55:11:07:11:fd:cb:cb:28:c5:c3:83: 78:4d:5b:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjUwNjMwMjI1NDUwWhcNMjUwNzA3MjI1NDUwWjAYMRYwFAYD VQQDEw02ODYzMTViYS04NzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqB1onumRF4r6sdnMV+dXtDNvnQX8IOUQ6j3WSj0TY/yLnDiXeJBnKewqYO2 XGkNsYLxdCZR1h8MvTx7yE4vxR3g0K1SB/ShRXXvAIE8r4fCfG9onku+zJLRXBZg i+EJOSdItXIedFn8jXsEQy4f6nJDZS9nnnwYCu190O4eZ3UhKOImBUy87yDhn+pr dKSLz2DfYHQjl/5ZTg9qL9OtshFY3t5OIOwfov0Y2hhQCoAyNSR53Rh49fcWfbWN G9DtVpVrupNMiI7rPfkAku123Z6CJ1tb7Uhw6hzH9Tvxx7RGbMfm+kCPucBF2xY1 zf1Xv50LEHLKRbP+QBhOh9LBFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA7lIJf sFvB+EcwnVYwUlqoZ+aRMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTcDMVvepsk2/D6879La9sDGkPYYJrVEc5rQ15i55r0BTJMnJxyy/Z V62IlbBe0Ayx2i/vjHef3knuNMkGBpdQ6BABNlw/VURAavT48CKzjvLkNjJD5fJY 7czSqm7fWw5uMOBpITesQ0Yh0+13GU1z7xN585KJKoP/c1SThjsOze0x58OmBEaE Vm3e058JLx6pZl6D32hYd9S0zvgfEP1ggt87pyfygk3GvRy6/j/tGG1Rn5wwJR2s 5blcIaDtpMEFHOmJl/qzkRsrPYRdcjuLtDVWfVMSdt8LKhBPKqQmVbRSOB0NmzhB QM34LaJKJUpPVREHEf3LyyjFw4N4TVtE -----END CERTIFICATE-----Generated at Tue Jul 1 19:51:39 2025 by rpki-client