$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: rQtMvW8UYw243yIoYpOiuaVQOcxQkSuN5Cvp1RRCXR8= Subject key identifier: 59:F4:28:C7:80:7D:6D:EB:28:73:1A:55:C0:52:1F:97:C3:10:75:A6 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: C5 Signing time: Mon 21 Jul 2025 05:30:48 +0000 Manifest this update: Mon 21 Jul 2025 05:30:48 +0000 Manifest next update: Mon 28 Jul 2025 05:30:48 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: je/yzoyt/SwmccxYvwCUMa9ERcZAG2KFlI+2gmVaVxo=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Jul 21 05:30:48 2025 GMT Not After : Jul 28 05:30:48 2025 GMT Subject: CN=687dd088-89ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e3:23:7f:08:5b:8c:d1:8d:3e:1a:e3:ca:c6: 4f:41:e9:a5:5d:71:44:02:74:65:37:c6:51:c8:c2: ba:96:2e:75:30:f8:de:86:4a:25:bd:dc:8d:d8:8d: 71:1e:c5:f8:7e:d4:35:76:0e:01:d0:26:3d:0b:f0: 8f:ab:6c:b0:8e:13:04:59:a5:c5:f2:cc:e7:59:d2: 1a:c8:3d:14:28:99:cc:ed:1d:14:ee:30:f1:e1:92: 48:ef:5b:74:72:b4:75:ae:c8:83:b5:18:bd:ec:27: 68:98:6f:bb:98:17:c9:d0:1d:86:af:af:05:56:a2: 2d:16:24:5c:c1:e4:85:85:c7:45:bd:25:30:46:d9: f3:1f:9b:8d:63:24:0e:82:00:24:9d:d8:2d:83:ea: 86:0f:88:ae:c3:ec:5e:92:cc:b5:15:1b:67:b3:ef: 6d:31:a4:b4:57:7d:7d:bc:c6:c9:5e:f6:95:da:a3: fe:a3:7c:c9:00:c5:b9:4a:14:a4:b4:60:7a:c4:20: 6a:52:ed:8d:fa:cd:62:01:31:95:8a:48:a4:6d:f8: f7:cc:ad:c8:24:ec:d4:e7:29:08:c3:4f:a3:e7:98: 0c:19:5d:de:0b:09:94:e3:2a:6f:bc:74:e6:51:98: fa:dd:dc:9c:00:b9:42:9c:a9:d3:b3:a0:3e:74:e6: 1b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F4:28:C7:80:7D:6D:EB:28:73:1A:55:C0:52:1F:97:C3:10:75:A6 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:41:ad:94:96:dd:a4:16:3e:f2:69:23:52:3b:b9:73:d3:45: c3:c6:34:8a:87:6e:c7:87:06:23:58:d1:4b:13:14:67:33:38: 44:53:65:99:98:3d:83:21:03:cd:4a:c2:4b:d7:76:05:24:56: 25:08:eb:76:b0:6f:29:c9:24:0b:09:19:db:60:94:4c:e1:46: a3:b8:f5:9b:34:a2:af:e1:c1:c2:7d:c4:96:a3:34:bf:e8:a6: 5d:4b:c2:cb:2d:19:9c:30:a0:17:24:7b:ec:07:63:6e:b2:d0: 32:ba:15:7a:d9:5b:66:5f:f3:fd:0f:a9:fb:95:20:c0:91:21: 4e:8a:db:f4:43:41:ed:24:2b:8d:a2:5b:d7:30:d4:60:3c:43: 69:90:09:11:fc:03:1b:12:71:33:aa:f8:d3:59:47:9c:d7:0e: df:d4:26:8b:7b:6b:3c:d9:4c:68:a7:4a:3a:5c:5b:59:b2:04: 6e:24:62:c1:11:fd:1c:27:44:eb:63:e9:4a:7b:84:ca:69:3b: 3c:cc:da:ab:ea:e6:b5:98:95:c8:1b:1e:27:b5:47:8e:b3:59: 00:f8:b5:cc:1a:ae:71:86:3a:3e:cb:0a:69:e4:2a:f5:e5:61: bf:58:ad:80:8b:bb:29:28:84:96:27:2b:ba:f9:00:24:56:68: 69:27:97:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwNzIxMDUzMDQ4WhcNMjUwNzI4MDUzMDQ4WjAYMRYwFAYD VQQDEw02ODdkZDA4OC04OWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eMjfwhbjNGNPhrjysZPQemlXXFEAnRlN8ZRyMK6li51MPjehkolvdyN2I1x HsX4ftQ1dg4B0CY9C/CPq2ywjhMEWaXF8sznWdIayD0UKJnM7R0U7jDx4ZJI71t0 crR1rsiDtRi97CdomG+7mBfJ0B2Gr68FVqItFiRcweSFhcdFvSUwRtnzH5uNYyQO ggAkndgtg+qGD4iuw+xeksy1FRtns+9tMaS0V319vMbJXvaV2qP+o3zJAMW5ShSk tGB6xCBqUu2N+s1iATGVikikbfj3zK3IJOzU5ykIw0+j55gMGV3eCwmU4ypvvHTm UZj63dycALlCnKnTs6A+dOYbvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFn0KMeA fW3rKHMaVcBSH5fDEHWmMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8Qa2Ult2kFj7yaSNSO7lz00XDxjSKh27HhwYjWNFLExRnMzhEU2WZ mD2DIQPNSsJL13YFJFYlCOt2sG8pySQLCRnbYJRM4UajuPWbNKKv4cHCfcSWozS/ 6KZdS8LLLRmcMKAXJHvsB2NustAyuhV62VtmX/P9D6n7lSDAkSFOitv0Q0HtJCuN olvXMNRgPENpkAkR/AMbEnEzqvjTWUec1w7f1CaLe2s82Uxop0o6XFtZsgRuJGLB Ef0cJ0TrY+lKe4TKaTs8zNqr6ua1mJXIGx4ntUeOs1kA+LXMGq5xhjo+ywpp5Cr1 5WG/WK2Ai7spKISWJyu6+QAkVmhpJ5f7 -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:10 2025 by rpki-client