$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: ABBt9WS1m6L6ukws56Ss4NG8SOlOUgapIajWZW5XOIg= Subject key identifier: F9:71:44:F9:BD:3E:58:72:54:DE:FA:76:30:42:9B:60:76:18:D7:E6 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: D6 Signing time: Fri 13 Jun 2025 04:37:10 +0000 Manifest this update: Fri 13 Jun 2025 04:37:10 +0000 Manifest next update: Fri 20 Jun 2025 04:37:10 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: HhnkkzqaGJkhom7agHy9bno2XaAbjJUp6I0Db7zGZqM=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Jun 13 04:37:10 2025 GMT Not After : Jun 20 04:37:10 2025 GMT Subject: CN=684baaf6-a7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:f7:70:ed:4c:e1:2d:a4:56:9f:85:62:75: 9b:5f:29:b8:c1:f6:74:8d:bf:b8:68:8e:c3:fa:3c: c0:dd:1d:02:bb:0c:8a:68:71:bf:6a:5a:bc:8b:96: 8d:30:df:40:7d:b5:30:d4:de:97:3a:3e:7a:e2:f0: e2:68:ae:cb:fc:de:d0:a5:69:a1:bb:d9:cb:81:62: 54:54:be:d2:5a:a6:a2:bf:3d:1c:c1:54:fe:fb:df: d3:2e:95:8c:57:50:7b:d1:a6:7f:49:cc:fc:67:bb: a8:bd:72:4a:0c:98:c5:55:19:f2:c8:b4:0e:3e:08: 12:ff:50:0d:08:fc:49:d7:f8:96:1d:8e:9b:55:8d: 68:d6:ca:ed:df:e6:b7:47:54:8a:0b:29:13:c9:70: ff:ce:da:f7:d1:71:be:8f:77:df:2c:9f:31:fd:f9: 14:5a:08:78:30:7d:84:e7:85:e0:51:d8:14:93:fd: 79:d0:29:34:21:f4:34:66:14:25:00:3b:fa:4c:6a: 5a:83:e2:2f:22:5b:3e:a6:e8:c1:9c:5c:67:dc:ca: 12:1a:77:5f:c8:44:c1:74:34:de:d5:f8:25:2d:81: 9a:fc:8b:07:b9:a4:5c:1e:f7:27:73:f0:05:86:b8: d0:2f:c6:a8:44:73:2e:78:0a:7d:81:84:e4:2e:bc: e8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:71:44:F9:BD:3E:58:72:54:DE:FA:76:30:42:9B:60:76:18:D7:E6 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:2f:fc:55:02:6f:b5:10:ae:04:93:57:d7:71:38:5c:3b:24: 21:4c:93:9d:e7:b7:8d:c7:45:e4:1a:ba:36:21:d7:b2:23:db: dc:a6:a7:a5:b0:17:fb:1a:60:6e:ae:2c:40:27:bc:2a:19:aa: 88:2c:a9:a1:ba:d5:9d:b4:e5:a5:cc:ee:a7:a1:66:60:f2:71: c6:71:fe:d8:37:75:a7:86:f4:28:8a:4f:6a:84:5b:46:bc:43: 2e:2b:23:8c:0c:3b:e3:b5:e7:ba:28:66:10:ad:ce:18:38:44: 6f:bd:1c:22:ff:80:47:f3:bd:e5:d7:7f:9d:69:93:a7:a5:6a: 69:32:33:ec:2b:b1:e9:cf:4c:e0:a1:c1:83:7e:1a:69:3a:42: 32:18:f9:ee:53:5e:8c:c7:a3:26:b0:63:e1:50:05:11:e2:c5: ec:ac:02:b7:86:6e:92:5f:94:74:b7:7b:5e:da:6d:b1:68:39: 3c:e8:cc:29:a8:45:3c:e2:19:0f:32:71:87:1a:f6:00:2d:b8: ff:7c:47:d6:67:98:31:68:e4:d7:5d:90:a6:88:c9:a3:7a:b2: a7:de:8e:71:30:1a:62:40:d8:09:4a:00:8e:5b:7b:a4:19:49: ae:ff:66:90:06:b9:72:a1:51:c7:c5:86:65:81:74:fd:13:be: d9:ab:3d:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwNjEzMDQzNzEwWhcNMjUwNjIwMDQzNzEwWjAYMRYwFAYD VQQDEw02ODRiYWFmNi1hN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWn3cO1M4S2kVp+FYnWbXym4wfZ0jb+4aI7D+jzA3R0CuwyKaHG/alq8i5aN MN9AfbUw1N6XOj564vDiaK7L/N7QpWmhu9nLgWJUVL7SWqaivz0cwVT++9/TLpWM V1B70aZ/Scz8Z7uovXJKDJjFVRnyyLQOPggS/1ANCPxJ1/iWHY6bVY1o1srt3+a3 R1SKCykTyXD/ztr30XG+j3ffLJ8x/fkUWgh4MH2E54XgUdgUk/150Ck0IfQ0ZhQl ADv6TGpag+IvIls+pujBnFxn3MoSGndfyETBdDTe1fglLYGa/IsHuaRcHvcnc/AF hrjQL8aoRHMueAp9gYTkLrzoVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlxRPm9 PlhyVN76djBCm2B2GNfmMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0L/xVAm+1EK4Ek1fXcThcOyQhTJOd57eNx0XkGro2IdeyI9vcpqel sBf7GmBurixAJ7wqGaqILKmhutWdtOWlzO6noWZg8nHGcf7YN3WnhvQoik9qhFtG vEMuKyOMDDvjtee6KGYQrc4YOERvvRwi/4BH873l13+daZOnpWppMjPsK7Hpz0zg ocGDfhppOkIyGPnuU16Mx6MmsGPhUAUR4sXsrAK3hm6SX5R0t3te2m2xaDk86Mwp qEU84hkPMnGHGvYALbj/fEfWZ5gxaOTXXZCmiMmjerKn3o5xMBpiQNgJSgCOW3uk GUmu/2aQBrlyoVHHxYZlgXT9E77Zqz27 -----END CERTIFICATE-----Generated at Sat Jun 14 17:39:33 2025 by rpki-client