$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: bL6F8lBFbPpsijXFAmlFcfl66T4lkcTYotNwdclsufk= Subject key identifier: 42:A8:9D:03:49:6B:C8:2B:F8:98:7C:2B:19:16:AE:23:B8:9F:AB:7C Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 07F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 07F2 Signing time: Wed 18 Jun 2025 20:48:00 +0000 Manifest this update: Wed 18 Jun 2025 20:47:59 +0000 Manifest next update: Wed 25 Jun 2025 20:47:59 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: bQliPwwdmuiReZOurKNNqZjpTWG2NEMqPaFTP2SQPOQ=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: 8MctpWGtN4TB9CaLOxK2lVRFp6WdGzpjql1y9Hz4Ctk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Jun 18 20:47:59 2025 GMT Not After : Jun 25 20:47:59 2025 GMT Subject: CN=685325ff-b7a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bc:15:b4:ad:9f:de:06:c7:5f:e3:0b:5d:b2: c6:08:05:5f:11:a3:0f:8b:0d:f5:22:34:fc:f3:91: 50:32:48:d1:f6:85:64:51:33:9c:91:b7:76:cb:b1: 6e:9e:3d:d6:e2:72:4a:10:ea:90:0a:95:bb:13:24: e1:f3:f4:f8:ba:bd:b2:da:c6:d9:7a:96:c2:54:8a: ad:87:dc:12:98:19:96:d6:df:4d:44:bb:d8:0a:55: 56:b4:62:76:26:5e:b5:aa:63:e6:ce:e3:ad:c9:0f: f2:96:f0:a9:4e:3b:5c:7e:8d:52:4b:83:35:7b:54: 56:b8:e1:bb:82:ff:ab:40:c7:98:64:07:f2:87:96: bd:5b:06:f1:41:af:6e:19:e5:80:c9:bf:78:a0:ab: 65:98:9b:9b:75:c0:be:6a:d0:ed:ca:d8:2f:d5:f5: 39:57:ae:83:a1:2f:3a:4a:6e:81:7f:fe:95:95:b5: a6:cc:f2:3d:3a:9c:ce:ea:67:0f:4c:17:a8:21:c5: 47:0a:6a:0a:e1:3c:a7:b4:c6:be:75:a7:4b:73:f8: f5:2d:71:28:00:4a:3e:b2:b2:05:34:00:4e:31:09: 54:84:2a:42:03:1a:ff:08:b6:72:08:5a:c1:93:a5: 2e:56:66:17:ca:89:0b:5f:a4:4b:6f:29:7d:df:df: ba:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A8:9D:03:49:6B:C8:2B:F8:98:7C:2B:19:16:AE:23:B8:9F:AB:7C X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:8d:e1:fc:76:78:3a:9d:8b:fe:85:bf:21:c3:29:72:ca:f2: 35:5f:d0:fe:47:df:4e:c3:12:63:7d:2d:4b:ca:1a:c1:ed:af: 41:ea:48:41:36:ba:03:35:2e:17:58:7f:a0:9f:c7:dc:61:22: 3e:d3:e9:66:8b:c3:06:a7:5c:9b:1c:5b:45:f1:a7:5d:c8:ee: 39:55:a7:1c:33:3f:70:d7:d5:b7:90:42:8e:9f:3b:65:da:89: 9e:b3:b7:62:b9:d1:64:9b:b7:9c:8e:86:b7:a3:28:48:e1:12: 15:5c:23:42:da:2d:70:85:86:1f:7c:6b:3b:ba:9c:c0:bb:45: b1:28:8d:08:ad:95:91:d8:06:a0:67:bc:4e:0f:73:69:b7:38: 6c:d5:1d:71:f7:8f:10:ab:db:32:68:37:c8:2b:f3:f9:74:2a: 0c:35:2b:68:7d:db:67:ed:66:9d:f4:bb:6f:67:78:71:a8:22: 76:55:20:6c:65:17:e4:e8:07:0c:5a:97:d6:9f:f1:98:fc:c3: 54:1e:4d:d4:38:60:30:aa:c5:ac:cc:54:70:b4:8d:7d:6a:c9: 6f:cd:48:7f:3f:a0:cd:00:4a:8a:c3:df:43:87:0b:72:e2:b5: 94:5d:9e:b5:44:f4:d6:d5:c3:2f:ee:c5:e5:53:fa:05:b0:34: 45:fe:d8:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUwNjE4MjA0NzU5WhcNMjUwNjI1MjA0NzU5WjAYMRYwFAYD VQQDEw02ODUzMjVmZi1iN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7wVtK2f3gbHX+MLXbLGCAVfEaMPiw31IjT885FQMkjR9oVkUTOckbd2y7Fu nj3W4nJKEOqQCpW7EyTh8/T4ur2y2sbZepbCVIqth9wSmBmW1t9NRLvYClVWtGJ2 Jl61qmPmzuOtyQ/ylvCpTjtcfo1SS4M1e1RWuOG7gv+rQMeYZAfyh5a9WwbxQa9u GeWAyb94oKtlmJubdcC+atDtytgv1fU5V66DoS86Sm6Bf/6VlbWmzPI9OpzO6mcP TBeoIcVHCmoK4TyntMa+dadLc/j1LXEoAEo+srIFNABOMQlUhCpCAxr/CLZyCFrB k6UuVmYXyokLX6RLbyl939+6hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKonQNJ a8gr+Jh8KxkWriO4n6t8MB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEjeH8dng6nYv+hb8hwylyyvI1X9D+R99OwxJjfS1LyhrB7a9B6khB NroDNS4XWH+gn8fcYSI+0+lmi8MGp1ybHFtF8addyO45VaccMz9w19W3kEKOnztl 2omes7diudFkm7ecjoa3oyhI4RIVXCNC2i1whYYffGs7upzAu0WxKI0IrZWR2Aag Z7xOD3Nptzhs1R1x948Qq9syaDfIK/P5dCoMNStofdtn7Wad9LtvZ3hxqCJ2VSBs ZRfk6AcMWpfWn/GY/MNUHk3UOGAwqsWszFRwtI19aslvzUh/P6DNAEqKw99Dhwty 4rWUXZ61RPTW1cMv7sXlU/oFsDRF/th5 -----END CERTIFICATE-----Generated at Fri Jun 20 10:03:01 2025 by rpki-client