$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: fIxyq0qR1QkjVjGsaVnQyPdzy9MP7RZ8ertZC0HTYbs= Subject key identifier: EA:9F:59:AF:6C:4A:76:F5:8C:6F:66:2B:97:CB:74:78:57:E7:B5:75 Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 28 Signing time: Sat 09 Aug 2025 08:16:36 +0000 Manifest this update: Sat 09 Aug 2025 08:16:35 +0000 Manifest next update: Sat 16 Aug 2025 08:16:35 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: UQ+rxXLraCead2CK41txjFYJXrjT9QYxGu9VsEZSznA=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: uKfaLXcOCNJdE2XGkLLuO2/nisMUjVXsuFOacDhWkTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Aug 9 08:16:35 2025 GMT Not After : Aug 16 08:16:35 2025 GMT Subject: CN=689703e4-9fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:51:ac:c5:c9:28:70:6b:da:59:b0:6d:af:2a: 22:9a:8b:b7:8e:76:fa:e7:01:f6:ab:cc:3c:16:09: 18:eb:82:44:8f:68:5e:73:d7:52:77:ab:33:e1:bf: f9:65:4d:96:18:e8:32:73:ea:42:37:ab:93:5e:02: 23:a0:bb:bc:53:df:77:b2:cb:c1:3e:18:ba:72:05: d2:a2:9d:63:d8:15:b5:c3:ca:95:74:1f:a6:c7:7c: 6c:45:23:86:c0:96:b8:9c:c1:56:c9:57:e1:f7:22: 0b:4c:ff:76:6e:b2:7e:19:85:0d:68:3d:1b:42:0f: bc:78:20:26:ee:8b:6b:ce:71:4d:72:44:ac:0c:e9: 31:85:80:48:02:04:d7:b2:f9:bd:1c:d2:4e:c1:de: a7:bb:57:20:1e:ae:e2:58:fe:22:e1:e5:47:b8:bf: 6a:bf:0f:9b:53:bc:d7:fd:b8:dd:a1:24:bd:32:8c: b2:39:80:9d:9a:5c:00:13:9b:65:fc:74:5f:5e:25: cb:7c:79:da:ec:31:01:01:63:db:bc:f2:37:47:96: a1:c8:c1:6f:a1:2e:88:ef:47:33:31:28:14:51:19: cd:ef:3f:db:74:3e:31:99:70:75:77:14:5a:aa:fc: 76:a4:ec:87:75:ab:c4:eb:d5:83:7d:e7:ef:65:f8: e5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9F:59:AF:6C:4A:76:F5:8C:6F:66:2B:97:CB:74:78:57:E7:B5:75 X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3c:00:18:13:94:4a:6c:91:15:4d:5b:8e:ca:4c:3a:ef:54: dd:2b:c9:21:d2:34:2f:8b:b7:39:0d:59:eb:fa:48:07:82:70: a4:ed:ca:a1:04:80:6a:4a:cd:96:54:21:06:29:6e:6a:e8:d1: 7c:71:5b:0b:7b:fd:bb:dd:4c:34:8a:1e:b6:0f:6a:4b:c3:54: 24:2d:42:fa:31:5e:c4:a7:1a:40:a0:1c:fa:8c:e9:74:d6:54: db:8c:76:aa:1b:8e:81:78:ca:2c:e6:7b:d0:01:6e:e8:85:6d: f1:48:5e:63:04:3b:4a:99:f7:7c:d1:f6:76:40:43:a8:2f:40: 89:55:bd:bb:f9:df:c9:c7:5a:82:85:79:62:1e:6e:f5:5d:f4: 6d:ee:12:77:5a:a5:de:3b:9d:64:c3:d2:fc:b9:60:19:a9:bd: 78:54:12:c9:5e:6b:1c:48:f3:28:6d:c8:d7:2b:f0:b2:12:eb: 58:23:a5:08:0b:d6:46:2e:14:6f:ad:cf:66:fb:a4:ab:63:7c: c1:4f:aa:ca:2a:c8:2b:6c:c2:5f:e2:df:fd:37:c7:17:92:1e: 06:65:2a:53:b6:8b:eb:69:45:e4:59:36:7e:71:4c:9e:e8:23: 5e:7c:ae:2c:bc:a5:9a:0a:9e:fc:85:96:6f:b9:c7:45:bf:75: 73:e6:a7:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoNUVDNUZCMzM0RUU1MkI5MDA5Q0I5MjNDNjkzQkQyMEYw NDc4QTE0NDAeFw0yNTA4MDkwODE2MzVaFw0yNTA4MTYwODE2MzVaMBgxFjAUBgNV BAMTDTY4OTcwM2U0LTlmZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1UazFyShwa9pZsG2vKiKai7eOdvrnAfarzDwWCRjrgkSPaF5z11J3qzPhv/ll TZYY6DJz6kI3q5NeAiOgu7xT33eyy8E+GLpyBdKinWPYFbXDypV0H6bHfGxFI4bA lricwVbJV+H3IgtM/3Zusn4ZhQ1oPRtCD7x4ICbui2vOcU1yRKwM6TGFgEgCBNey +b0c0k7B3qe7VyAeruJY/iLh5Ue4v2q/D5tTvNf9uN2hJL0yjLI5gJ2aXAATm2X8 dF9eJct8edrsMQEBY9u88jdHlqHIwW+hLojvRzMxKBRRGc3vP9t0PjGZcHV3FFqq /Hak7Id1q8Tr1YN95+9l+OWVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6p9Zr2xK dvWMb2Yrl8t0eFfntXUwHwYDVR0jBBgwFoAUXsX7M07lK5AJy5I8aTvSDwR4oUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzM0MDA4MDIyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9V US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHNYN00wN2xLNUFKeTVJOGFUdlNEd1I0b1VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF Rjg3LzM0MDA4MDIyMzhCMzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVB Snk1SThhVHZTRHdSNG9VUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAY8ABgTlEpskRVNW47KTDrvVN0rySHSNC+LtzkNWev6SAeCcKTtyqEE gGpKzZZUIQYpbmro0XxxWwt7/bvdTDSKHrYPakvDVCQtQvoxXsSnGkCgHPqM6XTW VNuMdqobjoF4yizme9ABbuiFbfFIXmMEO0qZ93zR9nZAQ6gvQIlVvbv538nHWoKF eWIebvVd9G3uEndapd47nWTD0vy5YBmpvXhUEsleaxxI8yhtyNcr8LIS61gjpQgL 1kYuFG+tz2b7pKtjfMFPqsoqyCtswl/i3/03xxeSHgZlKlO2i+tpReRZNn5xTJ7o I158riy8pZoKnvyFlm+5x0W/dXPmpzQ= -----END CERTIFICATE-----Generated at Sun Aug 10 16:03:27 2025 by rpki-client