$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: STUYRfCZXnBtPYYm9+6kVzKqvX6cFWZtfPAILsEEUJM= Subject key identifier: 87:17:CE:9E:5C:8F:0F:1C:4C:B6:2C:E3:C5:AC:E0:C8:52:E6:A8:CC Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 065B Signing time: Sat 14 Jun 2025 22:14:36 +0000 Manifest this update: Sat 14 Jun 2025 22:14:36 +0000 Manifest next update: Sat 21 Jun 2025 22:14:36 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: 2gHTQCLJX6TJsrm5tgzuPy2lls11utrOHo7pFFSZIbs=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Jun 14 22:14:36 2025 GMT Not After : Jun 21 22:14:36 2025 GMT Subject: CN=684df44c-694c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4e:b2:e3:e5:8d:60:e8:81:66:9c:5c:2f:b1: ef:90:e7:b1:4d:51:31:fd:20:90:47:17:3c:8d:b4: b2:32:a5:29:c9:50:17:31:4a:e4:0e:f6:88:de:e2: 93:a3:ba:af:d4:e3:30:af:97:14:c7:ae:c4:ca:f2: 22:f2:9f:20:75:ee:09:ac:35:03:16:41:b0:4e:22: 54:7e:5e:37:40:38:03:26:1f:b7:b1:4d:82:ac:4b: 9f:94:d4:01:a0:0e:02:39:89:2f:f5:80:20:4b:46: e4:aa:7d:7a:ce:9c:31:2d:7e:b9:37:07:37:f5:5d: 25:dc:33:ec:d7:18:30:10:ee:2b:f0:27:6f:e5:8f: 4f:2d:a9:1c:fc:bd:0c:67:47:c0:ea:97:c0:56:21: d1:96:16:26:f8:33:4c:5e:b9:e9:e9:1e:3d:c8:ed: 42:f5:64:3b:b7:4f:06:32:80:6b:a1:3f:9a:9a:0f: f1:22:58:55:57:96:c2:53:79:30:0d:64:53:a1:75: 40:3b:a3:cc:25:61:a7:f0:90:14:c2:0c:c0:13:c9: 12:5a:a3:1a:6f:ac:99:dd:c5:88:79:62:57:86:46: cc:03:fa:5f:29:79:d2:55:8f:ff:3b:4e:ef:b1:63: 87:a6:51:c6:ed:5b:3d:ca:52:42:fd:01:79:6d:3e: a3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:17:CE:9E:5C:8F:0F:1C:4C:B6:2C:E3:C5:AC:E0:C8:52:E6:A8:CC X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:66:48:7f:6f:a8:34:ed:b7:13:4e:ce:af:b9:07:c2:04:1f: c0:07:fa:a4:0b:58:aa:ca:01:be:e7:d1:28:b6:65:22:96:7e: 6e:52:a2:cf:fc:3a:70:64:91:af:1b:c6:83:73:e3:be:7e:b4: bd:35:88:80:07:f4:12:14:31:a6:5a:08:80:41:8f:71:f4:80: f7:26:29:f4:3c:27:d3:70:60:1d:1c:fd:bd:5c:79:88:23:4f: 76:9c:72:39:3d:dd:d9:33:54:27:09:22:54:9a:10:97:a7:1e: 68:5a:19:68:87:ce:b7:2b:82:55:c4:91:c7:dc:b1:43:9b:c5: 95:b6:34:f1:f8:1c:88:f5:57:73:b3:0f:eb:18:67:d3:41:a0: fc:3c:20:4a:21:45:74:53:8f:e1:cd:b8:13:d9:3c:06:e9:00: 6b:93:58:80:ba:76:92:81:4c:e7:77:73:c8:9a:80:e5:63:fb: b4:f4:35:85:86:ca:6b:eb:44:c8:97:ea:f5:79:32:a7:31:41: 8d:d4:da:7e:02:3b:e0:40:f4:e3:00:cb:43:b0:72:8c:2d:f4: ac:e3:d9:c9:17:1e:e3:21:b2:01:d2:86:13:52:11:ef:5d:cb: 9d:9a:54:b2:d4:a9:32:d1:58:a5:1d:4a:a1:39:30:16:e0:f6: af:84:16:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUwNjE0MjIxNDM2WhcNMjUwNjIxMjIxNDM2WjAYMRYwFAYD VQQDEw02ODRkZjQ0Yy02OTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5E6y4+WNYOiBZpxcL7HvkOexTVEx/SCQRxc8jbSyMqUpyVAXMUrkDvaI3uKT o7qv1OMwr5cUx67EyvIi8p8gde4JrDUDFkGwTiJUfl43QDgDJh+3sU2CrEuflNQB oA4COYkv9YAgS0bkqn16zpwxLX65Nwc39V0l3DPs1xgwEO4r8Cdv5Y9PLakc/L0M Z0fA6pfAViHRlhYm+DNMXrnp6R49yO1C9WQ7t08GMoBroT+amg/xIlhVV5bCU3kw DWRToXVAO6PMJWGn8JAUwgzAE8kSWqMab6yZ3cWIeWJXhkbMA/pfKXnSVY//O07v sWOHplHG7Vs9ylJC/QF5bT6j5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcXzp5c jw8cTLYs48Ws4MhS5qjMMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeZkh/b6g07bcTTs6vuQfCBB/AB/qkC1iqygG+59EotmUiln5uUqLP /DpwZJGvG8aDc+O+frS9NYiAB/QSFDGmWgiAQY9x9ID3Jin0PCfTcGAdHP29XHmI I092nHI5Pd3ZM1QnCSJUmhCXpx5oWhloh863K4JVxJHH3LFDm8WVtjTx+ByI9Vdz sw/rGGfTQaD8PCBKIUV0U4/hzbgT2TwG6QBrk1iAunaSgUznd3PImoDlY/u09DWF hspr60TIl+r1eTKnMUGN1Np+AjvgQPTjAMtDsHKMLfSs49nJFx7jIbIB0oYTUhHv XcudmlSy1Kky0VilHUqhOTAW4PavhBY+ -----END CERTIFICATE-----Generated at Sun Jun 15 10:22:45 2025 by rpki-client