$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft File: X48BYbesuyVfE88IG2ZTYZtOLAI.mft (raw, json) Hash identifier: 3guKMEK/mGTXrXlCDycEGntyH6s3x/jfCyn8XcbiCI0= Subject key identifier: 5D:35:B9:24:C8:80:52:5B:7C:33:20:A2:FA:58:C7:76:52:54:BA:7F Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft Manifest number: 07DB Signing time: Fri 08 Aug 2025 21:24:58 +0000 Manifest this update: Fri 08 Aug 2025 21:24:57 +0000 Manifest next update: Fri 15 Aug 2025 21:24:57 +0000 Files and hashes: 1: X48BYbesuyVfE88IG2ZTYZtOLAI.crl (hash: Bbc1as+DZl7D/CxxWyEWqYiBrI3laQulhlrUsVs57S4=) 2: 799C6AD8149711EFB0CB9E0AC4F9AE02.roa (hash: Z6c5AlKVKf/klPMN7KddRfh49KHTtioUb3aQg5mvfg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D, serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: Aug 8 21:24:57 2025 GMT Not After : Aug 15 21:24:57 2025 GMT Subject: CN=68966b2a-bf9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:13:2a:15:87:97:19:65:d7:94:6b:3c:e3:51: 6f:be:3c:33:de:32:60:6e:c4:f3:06:79:c3:96:47: 2e:0e:eb:51:d5:d8:4a:d8:6c:06:e3:37:cb:28:ee: 8c:1d:0b:1b:20:a1:aa:ab:ad:c8:86:7a:0d:16:d9: 59:e6:ed:b1:40:a4:c2:c4:cd:b6:62:c7:73:49:48: 11:f9:76:f2:ab:fa:ae:e3:df:c0:71:37:b5:4d:81: b2:31:b6:3b:7a:de:6e:b4:af:f3:1c:48:e2:21:54: 7c:b6:86:d9:ce:7b:61:a8:53:da:78:d0:de:40:a0: b2:c0:f4:e3:63:90:32:91:1f:ee:a9:e4:7f:ef:a6: a1:10:61:32:c9:d0:4c:93:b6:09:ed:96:37:fa:73: c4:04:ae:7a:9a:4e:c6:07:e9:e9:c3:14:eb:d6:27: be:d1:b9:fb:7b:3c:75:67:5c:49:f5:8c:79:c5:dc: e3:95:a5:c0:f2:d9:98:7b:6b:d7:8a:ca:06:63:5c: e9:6f:ff:51:96:23:c7:5b:42:70:bd:18:93:ee:7c: 28:d3:78:6a:a8:10:16:34:98:de:be:82:82:36:62: 3f:34:ad:6e:39:f0:f0:c1:d8:45:ab:4a:f1:22:e3: 7b:22:23:5d:22:ef:ef:1a:6e:31:70:eb:bd:39:19: 1a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:35:B9:24:C8:80:52:5B:7C:33:20:A2:FA:58:C7:76:52:54:BA:7F X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:10:f9:3c:40:3e:03:64:80:a1:f7:85:54:0a:87:b9:fc:c5: dd:4b:1d:86:4b:d8:21:08:98:50:59:4a:ba:aa:83:c2:cf:fe: 89:07:f3:af:8c:bc:da:ff:d2:ed:b0:b9:24:f5:28:1e:8e:87: 24:12:bd:88:02:9c:a8:3c:0e:23:a9:92:b2:15:65:7d:56:e3: 91:30:52:7e:26:37:1d:93:a8:91:0a:04:ac:e3:ae:91:7f:1c: 2d:c2:62:3d:f4:6e:cd:49:2f:28:48:eb:8c:9b:50:ce:f5:c9: 50:09:76:5b:e1:b9:de:35:89:54:0d:a4:16:8f:42:2b:07:34: d4:dc:0e:4b:dc:95:c9:97:d1:6f:b7:a7:6e:83:b9:c9:38:4f: e1:e3:65:6e:a1:0f:e9:9c:18:fa:21:6e:4a:88:ab:a0:ac:19: 22:91:b0:f9:cd:4c:ab:7f:a2:03:22:8f:5f:8b:bb:10:8c:b3: 0d:3e:6c:47:c6:6b:6c:2c:cc:7b:71:08:5e:23:46:d8:c6:d1: 29:57:d8:de:fd:d7:f9:e5:5c:cb:00:14:10:00:06:5b:4c:5b: 43:10:62:7b:6d:86:54:f2:95:75:ce:a8:43:b4:d0:d9:01:0d: e7:0b:85:cd:ef:5f:05:bb:a3:07:6b:07:15:2d:5c:72:49:d9: 5e:53:cd:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjUwODA4MjEyNDU3WhcNMjUwODE1MjEyNDU3WjAYMRYwFAYD VQQDEw02ODk2NmIyYS1iZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RMqFYeXGWXXlGs841Fvvjwz3jJgbsTzBnnDlkcuDutR1dhK2GwG4zfLKO6M HQsbIKGqq63IhnoNFtlZ5u2xQKTCxM22YsdzSUgR+Xbyq/qu49/AcTe1TYGyMbY7 et5utK/zHEjiIVR8tobZznthqFPaeNDeQKCywPTjY5AykR/uqeR/76ahEGEyydBM k7YJ7ZY3+nPEBK56mk7GB+npwxTr1ie+0bn7ezx1Z1xJ9Yx5xdzjlaXA8tmYe2vX isoGY1zpb/9RliPHW0JwvRiT7nwo03hqqBAWNJjevoKCNmI/NK1uOfDwwdhFq0rx IuN7IiNdIu/vGm4xcOu9ORkaDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF01uSTI gFJbfDMgovpYx3ZSVLp/MB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUEwRC8wRkI3OTE2NEZCMTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5 VmZFODhJRzJaVFladE9MQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJEPk8QD4DZICh94VUCoe5/MXdSx2GS9ghCJhQWUq6qoPCz/6JB/Ov jLza/9LtsLkk9SgejockEr2IApyoPA4jqZKyFWV9VuORMFJ+Jjcdk6iRCgSs466R fxwtwmI99G7NSS8oSOuMm1DO9clQCXZb4bneNYlUDaQWj0IrBzTU3A5L3JXJl9Fv t6dug7nJOE/h42VuoQ/pnBj6IW5KiKugrBkikbD5zUyrf6IDIo9fi7sQjLMNPmxH xmtsLMx7cQheI0bYxtEpV9je/df55VzLABQQAAZbTFtDEGJ7bYZU8pV1zqhDtNDZ AQ3nC4XN718Fu6MHawcVLVxySdleU83V -----END CERTIFICATE-----Generated at Sat Aug 9 15:06:28 2025 by rpki-client