$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: cLtIldZvYyNjBYk8msg3jg/Tlp10fj6kLb6RRu5xRSU= Subject key identifier: 7E:24:EF:51:50:BA:03:C2:6E:8C:D6:41:61:F2:52:67:F7:6B:6C:9B Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 34BF Signing time: Mon 04 Aug 2025 14:18:42 +0000 Manifest this update: Mon 04 Aug 2025 14:18:42 +0000 Manifest next update: Mon 11 Aug 2025 14:18:42 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: V+nHabdfPhx1pJbaSWaQdziuUmZJ+dJ977ZEO/VrKb8=) 2: 2C5F8752A10D11EFB9BE8476C4F9AE02.roa (hash: Iv390Bd/MJyqbzwOB0bqCA/PrLBJuVtYX/m4XRUDX5k=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: 6UO6N8yoyg6+8CvpDMt8iCmfSbV26PbG92dRF9r0otc=) 5: F8E58782A10C11EFA3C0F375C4F9AE02.roa (hash: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: 0Wsr5VamrOSe1PRZDclYr+ROoB9PidSlGQIwmrfuBe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Aug 4 14:18:42 2025 GMT Not After : Aug 11 14:18:42 2025 GMT Subject: CN=6890c142-7052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ad:1b:d6:a3:e0:29:d1:8e:5a:44:34:0d:a4: 25:ea:7a:b9:a3:4e:6b:7b:77:ca:c9:82:c6:e6:fb: 1a:02:f5:cd:f5:f7:d1:f1:f6:cd:43:9d:33:e4:22: a2:e9:57:48:85:82:18:ed:da:8f:33:78:5d:51:f0: 5c:bf:62:ab:40:29:84:31:65:f8:79:83:da:53:98: 3e:59:ac:00:32:3b:6c:87:b4:6f:52:4c:a0:00:6a: 1d:7b:44:3f:5a:19:0b:01:6e:53:83:a7:e0:fb:76: 63:61:2f:63:71:a8:b0:bd:a2:2e:c3:ec:93:ec:91: 47:35:a2:50:5f:ef:b1:3a:ea:c4:64:35:f1:cc:09: 6d:a5:f0:2a:3c:df:d5:4b:a2:3d:6d:6b:b3:33:ca: d2:47:0c:b1:b7:1d:e1:88:a3:67:0e:29:4e:2c:4e: 1e:74:54:d5:1e:12:fa:1f:2f:fc:7c:3e:03:c7:ec: d5:e2:53:1e:d8:56:bf:cb:cd:ef:40:15:43:10:4d: 7a:a6:8f:03:05:22:2b:98:7b:4e:af:a8:72:34:1a: c0:42:b9:2c:d4:d5:c4:53:4a:4f:96:9a:0a:5c:d2: eb:29:c0:f2:57:4b:e1:02:12:d5:3a:40:1e:66:97: 9b:bb:cb:39:80:cd:28:94:76:3a:72:f3:7a:61:12: bf:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:24:EF:51:50:BA:03:C2:6E:8C:D6:41:61:F2:52:67:F7:6B:6C:9B X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:72:16:93:92:39:f8:c3:da:c6:d0:84:73:6e:03:4d:aa:d4: 82:c5:04:f2:f2:34:97:84:69:1c:7d:1f:51:51:18:28:dc:5c: c7:79:ea:2e:fb:37:dd:29:f2:fc:e9:c6:ca:c0:c3:89:96:e2: c4:a1:2f:67:60:1e:72:7a:9b:1a:f4:97:a9:a1:c8:ca:a7:5a: 57:d9:d9:58:8a:8f:cb:dd:92:a6:fc:7c:00:1f:29:48:ed:e1: 46:bc:61:85:5f:00:77:6d:5b:1e:70:7d:a8:9e:a9:69:56:a6: 3a:4f:1e:45:66:12:60:6f:83:fc:ef:1e:30:86:32:7e:eb:39: d0:41:8a:14:3d:3e:7c:aa:a4:3d:cf:d7:5f:b8:94:7d:fe:77: d7:e1:d2:b4:b7:ff:41:d7:1f:fd:ec:8d:3e:84:8e:54:77:7b: 43:20:fa:77:8a:d7:fc:78:9b:d8:75:0e:83:f8:9b:c6:22:58: df:26:0d:85:78:0d:87:0c:68:74:db:dd:51:64:e4:1d:19:cc: d9:5c:11:60:7e:04:ed:79:be:87:7a:8d:05:fc:b0:fa:41:ba: 7a:c6:c6:1e:a6:a1:80:45:65:65:ec:3e:1e:5b:3a:7e:08:d5: 35:04:d3:f5:47:58:0e:b6:fa:2c:9a:b6:8e:70:29:7d:a8:81: db:5f:a2:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjUwODA0MTQxODQyWhcNMjUwODExMTQxODQyWjAYMRYwFAYD VQQDEw02ODkwYzE0Mi03MDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy60b1qPgKdGOWkQ0DaQl6nq5o05re3fKyYLG5vsaAvXN9ffR8fbNQ50z5CKi 6VdIhYIY7dqPM3hdUfBcv2KrQCmEMWX4eYPaU5g+WawAMjtsh7RvUkygAGode0Q/ WhkLAW5Tg6fg+3ZjYS9jcaiwvaIuw+yT7JFHNaJQX++xOurEZDXxzAltpfAqPN/V S6I9bWuzM8rSRwyxtx3hiKNnDilOLE4edFTVHhL6Hy/8fD4Dx+zV4lMe2Fa/y83v QBVDEE16po8DBSIrmHtOr6hyNBrAQrks1NXEU0pPlpoKXNLrKcDyV0vhAhLVOkAe Zpebu8s5gM0olHY6cvN6YRK/DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4k71FQ ugPCbozWQWHyUmf3a2ybMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRchaTkjn4w9rG0IRzbgNNqtSCxQTy8jSXhGkcfR9RURgo3FzHeeou +zfdKfL86cbKwMOJluLEoS9nYB5yepsa9JepocjKp1pX2dlYio/L3ZKm/HwAHylI 7eFGvGGFXwB3bVsecH2onqlpVqY6Tx5FZhJgb4P87x4whjJ+6znQQYoUPT58qqQ9 z9dfuJR9/nfX4dK0t/9B1x/97I0+hI5Ud3tDIPp3itf8eJvYdQ6D+JvGIljfJg2F eA2HDGh0291RZOQdGczZXBFgfgTteb6Heo0F/LD6Qbp6xsYepqGARWVl7D4eWzp+ CNU1BNP1R1gOtvosmraOcCl9qIHbX6JL -----END CERTIFICATE-----Generated at Wed Aug 6 06:05:34 2025 by rpki-client