$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: HtsJ2Gh67IJNg7GjxyVJEyWAqDFWP5G+/whpPzoL/RE= Subject key identifier: 75:6B:56:A7:88:C6:91:55:AF:28:29:1E:F6:D9:AA:7E:EB:CE:3E:0B Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 01C7 Signing time: Mon 11 Aug 2025 03:08:35 +0000 Manifest this update: Mon 11 Aug 2025 03:08:34 +0000 Manifest next update: Mon 18 Aug 2025 03:08:34 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: CH+zdeUuKrnuXqrzbBm2kU64wVRJPAjn9u8e0Gd+UFw=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Aug 11 03:08:34 2025 GMT Not After : Aug 18 03:08:34 2025 GMT Subject: CN=68995eb2-5f20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:75:33:af:47:4b:6b:7e:36:80:50:31:ca: f2:b0:6c:4f:3b:05:02:ca:29:28:86:41:a0:01:b4: 9a:78:38:77:ee:bb:d9:ad:04:0c:69:2c:1d:66:bc: de:93:d2:98:e2:1a:70:b4:51:92:71:bc:9e:e8:3c: cb:95:e6:c6:aa:eb:ce:e2:f6:38:60:1c:c9:94:2f: 1d:2f:dc:67:03:03:74:01:56:1b:2f:99:bd:2e:06: 1c:ef:02:0a:11:79:a7:e2:07:56:ee:c4:2b:59:f0: 00:65:fa:c6:62:8a:16:74:c3:35:91:1c:d1:c3:3c: 46:71:d7:32:4c:95:62:81:f1:de:a7:57:ee:46:6d: 6a:98:90:b2:af:20:ed:0f:89:16:45:d7:4a:9a:f9: ab:0c:c7:9c:b7:46:7b:cb:49:96:b1:dc:c1:5e:4d: fe:d3:62:51:45:8e:b5:62:d6:6f:80:c2:bc:e7:f6: cb:76:15:10:20:53:4c:23:71:b9:e8:e4:01:81:1f: 79:0a:30:c0:e3:52:49:ac:0b:c6:ef:5d:a7:33:19: cc:41:a3:b9:c3:35:a8:a0:90:e8:30:ac:ad:c2:3b: 0f:b2:dc:6d:e1:e2:44:9b:7f:3b:4a:c3:bc:0c:ca: 02:a2:c2:75:6f:5c:f2:64:ff:29:4c:33:0a:ea:7e: 63:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6B:56:A7:88:C6:91:55:AF:28:29:1E:F6:D9:AA:7E:EB:CE:3E:0B X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:fa:38:50:9f:b8:7a:38:1a:54:5b:17:f7:ca:93:04:f6:7d: d2:36:a3:b0:b1:a7:10:18:42:a8:e5:ae:d6:9d:c1:15:43:61: 68:df:c6:44:5e:2c:16:41:4c:9f:c1:e8:97:e0:a6:4f:53:1e: 7e:01:a2:7e:f7:8a:2f:22:90:14:6f:e4:c6:ec:c5:84:bb:b5: 61:0c:49:c1:33:dc:34:ff:39:32:a8:2c:d3:ef:1e:14:1d:bf: 11:94:37:14:e8:88:99:fe:2c:c8:a1:c0:8c:0c:09:d4:73:27: 7a:ba:74:bf:ab:6c:03:b7:81:14:08:81:69:1d:ed:2e:ee:d7: 05:0c:1d:87:78:21:d2:02:52:64:53:db:52:0d:a2:c8:af:db: 75:ea:45:d4:72:57:b5:0e:87:81:c1:6e:a9:9a:c1:34:b6:74: c2:0b:9f:47:34:5e:61:9e:31:e2:27:3a:e8:b6:33:78:83:36: 5e:20:39:ca:a4:4b:62:bb:56:56:ae:5f:ed:01:0e:fa:dc:53: f1:c2:81:6b:9d:07:bb:f2:f9:aa:b5:4f:48:d3:58:05:4a:fd: 58:ef:a2:bc:40:80:71:e2:a1:07:bb:83:ce:ea:51:b2:41:eb: 53:ed:92:ee:46:0f:ea:d3:96:96:05:3d:18:75:f9:1d:67:5e: e9:0f:52:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwODExMDMwODM0WhcNMjUwODE4MDMwODM0WjAYMRYwFAYD VQQDEw02ODk5NWViMi01ZjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWN1M69HS2t+NoBQMcrysGxPOwUCyikohkGgAbSaeDh37rvZrQQMaSwdZrze k9KY4hpwtFGScbye6DzLlebGquvO4vY4YBzJlC8dL9xnAwN0AVYbL5m9LgYc7wIK EXmn4gdW7sQrWfAAZfrGYooWdMM1kRzRwzxGcdcyTJVigfHep1fuRm1qmJCyryDt D4kWRddKmvmrDMect0Z7y0mWsdzBXk3+02JRRY61YtZvgMK85/bLdhUQIFNMI3G5 6OQBgR95CjDA41JJrAvG712nMxnMQaO5wzWooJDoMKytwjsPstxt4eJEm387SsO8 DMoCosJ1b1zyZP8pTDMK6n5jNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVrVqeI xpFVrygpHvbZqn7rzj4LMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8+jhQn7h6OBpUWxf3ypME9n3SNqOwsacQGEKo5a7WncEVQ2Fo38ZE XiwWQUyfweiX4KZPUx5+AaJ+94ovIpAUb+TG7MWEu7VhDEnBM9w0/zkyqCzT7x4U Hb8RlDcU6IiZ/izIocCMDAnUcyd6unS/q2wDt4EUCIFpHe0u7tcFDB2HeCHSAlJk U9tSDaLIr9t16kXUcle1DoeBwW6pmsE0tnTCC59HNF5hnjHiJzrotjN4gzZeIDnK pEtiu1ZWrl/tAQ763FPxwoFrnQe78vmqtU9I01gFSv1Y76K8QIBx4qEHu4PO6lGy QetT7ZLuRg/q05aWBT0YdfkdZ17pD1I6 -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:12 2025 by rpki-client