$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: e5zozB/R033syB1pfedhWumyFg9/+2yozLbq3nMz2Kw= Subject key identifier: 05:3F:BD:59:D4:B2:07:A8:D3:B4:A8:5C:3E:88:64:92:3E:46:CD:1A Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 098C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0975 Signing time: Sat 14 Jun 2025 19:59:27 +0000 Manifest this update: Sat 14 Jun 2025 19:59:27 +0000 Manifest next update: Sat 21 Jun 2025 19:59:27 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: 8Np3t94X/J199cTc3UUHttSwpVMY1ltNkP76ud42mps=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2444 (0x98c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Jun 14 19:59:27 2025 GMT Not After : Jun 21 19:59:27 2025 GMT Subject: CN=684dd49f-8ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:27:e3:ea:76:97:b9:69:78:82:2e:07:c9:3e: b2:8b:db:b3:d8:52:08:a3:d2:97:e6:00:d6:d5:15: f6:63:a7:1d:ee:1b:17:16:64:05:0b:88:af:cf:36: 5b:d1:58:6d:5e:1e:2c:6b:0c:35:17:72:f6:6f:67: 7a:cc:92:41:30:bb:a1:b8:58:40:c9:21:7b:3f:07: b1:d8:b5:5b:92:42:d9:f6:c6:a8:46:1b:02:d8:e2: 4b:23:91:47:51:40:5d:f3:10:3c:d5:cd:41:1c:83: 5f:ad:4f:02:69:c6:d4:84:f5:54:76:95:94:28:05: 16:39:ed:1e:7a:71:8f:b5:82:3c:8d:60:b0:29:c6: 6c:c0:d0:29:1b:db:bf:57:15:df:85:47:14:75:29: 15:9b:1a:75:fa:6c:fa:e7:db:44:59:c3:4d:27:12: 8c:b4:b6:2d:d2:19:54:fe:f4:f3:22:55:90:99:e5: 86:e4:8b:d3:d3:6d:d8:13:79:4f:95:5b:f2:2f:32: 5d:56:ab:d1:a8:e5:bf:09:21:39:eb:53:e8:b4:00: dd:e6:c9:7b:3b:e0:34:de:63:50:0c:b5:c1:0d:5a: db:cd:4a:92:ab:0a:9b:23:30:e9:d0:a4:9d:72:bf: ed:65:00:59:2f:7a:cb:e8:4d:cd:9d:12:cc:d8:87: 6e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3F:BD:59:D4:B2:07:A8:D3:B4:A8:5C:3E:88:64:92:3E:46:CD:1A X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:8f:2e:8f:ab:d5:27:4e:7d:55:9b:09:33:2c:16:a1:df:02: 5c:57:ae:7a:e5:4f:12:e2:df:26:9f:1a:7f:9b:25:8c:27:61: 82:56:0d:34:cb:81:93:5c:a9:1d:79:d0:16:31:e8:05:4e:b4: 1f:c1:ff:81:12:75:ad:b8:fe:12:45:ca:fe:d5:dc:24:ca:48: ee:4a:18:11:3a:fb:4d:e1:f8:1e:99:a9:08:55:53:48:32:f6: e8:8f:73:62:5f:16:cb:e6:ad:a1:44:24:0b:e6:e3:76:7e:64: 44:f6:61:df:ad:05:bf:18:da:ab:6b:47:6c:3d:4c:54:da:4c: 07:5b:29:19:b1:4c:16:10:8a:69:2c:a2:72:ac:12:0f:eb:1d: ae:df:4c:c6:8c:96:fb:b3:5b:65:1e:c9:76:f6:b4:d8:4e:bb: 7e:b0:8f:bb:e1:de:d7:45:ea:df:5e:5e:44:3b:f4:ab:1f:7c: 8d:46:28:d4:41:58:b8:fc:4d:84:7a:5c:6f:b8:c0:02:5e:c2: d1:2d:9d:40:cb:6c:6f:a4:02:66:f6:fc:81:13:bd:52:0a:cb: 05:dd:27:03:a7:9f:9f:82:69:a3:1a:a9:f6:da:18:40:e9:59: fe:6c:2b:ef:6d:be:2d:a1:f4:51:86:63:34:64:c6:46:7e:aa: ef:e3:70:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUwNjE0MTk1OTI3WhcNMjUwNjIxMTk1OTI3WjAYMRYwFAYD VQQDEw02ODRkZDQ5Zi04ZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsifj6naXuWl4gi4HyT6yi9uz2FIIo9KX5gDW1RX2Y6cd7hsXFmQFC4ivzzZb 0VhtXh4saww1F3L2b2d6zJJBMLuhuFhAySF7Pwex2LVbkkLZ9saoRhsC2OJLI5FH UUBd8xA81c1BHINfrU8CacbUhPVUdpWUKAUWOe0eenGPtYI8jWCwKcZswNApG9u/ VxXfhUcUdSkVmxp1+mz659tEWcNNJxKMtLYt0hlU/vTzIlWQmeWG5IvT023YE3lP lVvyLzJdVqvRqOW/CSE561PotADd5sl7O+A03mNQDLXBDVrbzUqSqwqbIzDp0KSd cr/tZQBZL3rL6E3NnRLM2IdubQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAU/vVnU sgeo07SoXD6IZJI+Rs0aMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIjy6Pq9UnTn1VmwkzLBah3wJcV6565U8S4t8mnxp/myWMJ2GCVg00 y4GTXKkdedAWMegFTrQfwf+BEnWtuP4SRcr+1dwkykjuShgROvtN4fgemakIVVNI Mvboj3NiXxbL5q2hRCQL5uN2fmRE9mHfrQW/GNqra0dsPUxU2kwHWykZsUwWEIpp LKJyrBIP6x2u30zGjJb7s1tlHsl29rTYTrt+sI+74d7XRerfXl5EO/SrH3yNRijU QVi4/E2EelxvuMACXsLRLZ1Ay2xvpAJm9vyBE71SCssF3ScDp5+fgmmjGqn22hhA 6Vn+bCvvbb4tofRRhmM0ZMZGfqrv43C8 -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:38 2025 by rpki-client