$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: EQHaOOMc8sjy2LCZst0kr9YJa0eJ2JzhqAONarYQ71k= Subject key identifier: 7A:28:6F:ED:3E:6A:3C:AF:91:C0:CF:43:80:E0:9A:1C:C0:62:2C:29 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: 0101 Signing time: Mon 11 Aug 2025 05:16:09 +0000 Manifest this update: Mon 11 Aug 2025 05:16:09 +0000 Manifest next update: Mon 18 Aug 2025 05:16:09 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: 6yk5HdqzPUoYefZp4bowDjtV0FAGZY8CwgN3YqQ/3I8=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Aug 11 05:16:09 2025 GMT Not After : Aug 18 05:16:09 2025 GMT Subject: CN=68997c99-8638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fa:e4:eb:3e:22:bc:f5:1d:ad:9b:d1:49:fa: ab:ac:85:0a:d6:1a:cf:53:cd:c4:f1:58:5b:7c:46: c4:55:18:bb:ba:af:6a:52:78:be:89:49:b9:cf:5f: 7a:d9:10:92:0a:90:38:77:20:bf:78:66:ae:21:45: 3a:59:7a:39:82:c9:57:5d:95:63:71:f3:66:f2:6d: 75:21:1d:30:91:ee:3a:37:68:2f:00:43:72:3e:85: 54:4e:7c:ee:83:a5:72:ed:50:5d:10:5d:4c:92:5e: a5:6b:60:fc:f5:f9:c9:36:2f:43:dd:aa:9f:c0:4e: 82:9d:47:f6:9a:b8:a3:56:90:6c:a0:e1:5e:13:ee: ea:58:85:e6:7c:e5:93:9b:c9:ee:54:50:76:de:f0: 2d:08:a9:13:ca:e1:68:e9:18:38:d7:40:80:2b:d3: 5c:17:71:1a:e9:7c:bd:0c:38:f9:b1:ac:ca:1b:de: 2d:33:98:d2:5b:2c:69:5e:e7:5b:38:68:5c:ec:7f: 9d:3c:77:f6:2d:2d:39:bc:4f:09:a3:c6:12:bb:85: eb:d9:cc:2a:2f:38:96:fc:16:30:59:0e:ff:99:19: c9:0a:44:39:e7:01:7c:3d:28:3d:da:7b:ca:22:43: 80:71:28:35:56:6c:bd:64:72:1a:83:36:e4:38:fc: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:28:6F:ED:3E:6A:3C:AF:91:C0:CF:43:80:E0:9A:1C:C0:62:2C:29 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:ab:12:75:15:63:61:db:67:ce:b7:71:f4:fc:df:7f:27:03: 24:1b:f8:06:ba:d0:a8:df:1f:8d:8e:97:d2:2c:e1:2d:57:76: cb:87:14:20:1f:6a:1a:d2:38:39:8b:ed:d1:5f:bf:dd:a7:8f: e9:57:a3:53:50:18:73:b7:c2:66:3d:d9:2b:09:d7:4c:ea:fb: 02:c0:5c:45:b0:17:6d:f3:21:3f:86:86:19:06:f4:51:70:eb: ce:7f:23:34:bb:e6:c9:46:6f:49:e2:58:1e:68:87:f8:13:8c: 5d:d4:f4:98:67:8c:e6:12:b3:fe:3a:26:fe:37:bd:14:0e:76: 65:88:03:27:71:8c:c9:a7:7a:4f:3d:6d:e6:b8:e5:16:35:7d: 25:07:a2:d7:84:45:b9:08:51:57:92:3c:a7:62:88:df:de:c3: b6:d5:ce:71:e3:bb:b2:9c:4c:35:57:ec:cc:ff:e7:8c:36:7e: c0:06:8b:35:d6:d2:7f:93:cf:8d:21:38:56:7c:03:8a:53:51: 54:c2:c5:7f:99:d9:f7:05:e7:77:c8:fc:27:13:80:36:5c:5e: 31:05:87:ea:6b:ef:bd:f7:ec:bb:cd:c5:3e:47:45:4c:40:b5: ad:34:a4:69:66:95:31:f2:fb:4d:7e:ad:e6:99:f1:16:3c:11: 2d:58:17:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwODExMDUxNjA5WhcNMjUwODE4MDUxNjA5WjAYMRYwFAYD VQQDEw02ODk5N2M5OS04NjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6frk6z4ivPUdrZvRSfqrrIUK1hrPU83E8VhbfEbEVRi7uq9qUni+iUm5z196 2RCSCpA4dyC/eGauIUU6WXo5gslXXZVjcfNm8m11IR0wke46N2gvAENyPoVUTnzu g6Vy7VBdEF1Mkl6la2D89fnJNi9D3aqfwE6CnUf2mrijVpBsoOFeE+7qWIXmfOWT m8nuVFB23vAtCKkTyuFo6Rg410CAK9NcF3Ea6Xy9DDj5sazKG94tM5jSWyxpXudb OGhc7H+dPHf2LS05vE8Jo8YSu4Xr2cwqLziW/BYwWQ7/mRnJCkQ55wF8PSg92nvK IkOAcSg1Vmy9ZHIagzbkOPx71QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoob+0+ ajyvkcDPQ4DgmhzAYiwpMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIqxJ1FWNh22fOt3H0/N9/JwMkG/gGutCo3x+NjpfSLOEtV3bLhxQg H2oa0jg5i+3RX7/dp4/pV6NTUBhzt8JmPdkrCddM6vsCwFxFsBdt8yE/hoYZBvRR cOvOfyM0u+bJRm9J4lgeaIf4E4xd1PSYZ4zmErP+Oib+N70UDnZliAMncYzJp3pP PW3muOUWNX0lB6LXhEW5CFFXkjynYojf3sO21c5x47uynEw1V+zM/+eMNn7ABos1 1tJ/k8+NIThWfAOKU1FUwsV/mdn3Bed3yPwnE4A2XF4xBYfqa++99+y7zcU+R0VM QLWtNKRpZpUx8vtNfq3mmfEWPBEtWBer -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:41 2025 by rpki-client