$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: FwPwXjB0ZZHVOMNRam7jKGH9utpTU+2wNTJl6ckvxXA= Subject key identifier: 9A:0E:B4:D2:12:31:66:0A:E5:26:EA:5B:FF:EB:9D:BF:15:A2:D3:6B Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 34BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 34A5 Signing time: Sat 14 Jun 2025 14:18:28 +0000 Manifest this update: Sat 14 Jun 2025 14:18:28 +0000 Manifest next update: Sat 21 Jun 2025 14:18:28 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: uGD+q52AIRRUJ6Y4JtPCLPT/CkYPrVhXsRD9DvqDLsY=) 2: 2C5F8752A10D11EFB9BE8476C4F9AE02.roa (hash: Iv390Bd/MJyqbzwOB0bqCA/PrLBJuVtYX/m4XRUDX5k=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: 6UO6N8yoyg6+8CvpDMt8iCmfSbV26PbG92dRF9r0otc=) 5: F8E58782A10C11EFA3C0F375C4F9AE02.roa (hash: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: 0Wsr5VamrOSe1PRZDclYr+ROoB9PidSlGQIwmrfuBe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Jun 14 14:18:28 2025 GMT Not After : Jun 21 14:18:28 2025 GMT Subject: CN=684d84b4-2ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:4c:f9:93:34:ea:06:58:ba:0d:71:55:49: dc:ec:62:ec:6b:11:7c:8b:c9:42:85:48:ad:27:c3: 29:2b:48:8d:82:0e:77:4d:89:53:c6:d4:39:59:14: 3e:ee:fa:5a:7d:19:af:d4:1c:aa:24:82:70:5b:58: 25:57:b4:fe:ef:fa:0b:2d:18:e7:60:dc:04:04:05: 84:ad:66:fa:ef:22:c3:73:e2:cb:69:1d:2e:fe:47: e2:22:80:46:6a:c0:ec:8d:42:38:3b:90:72:f7:a1: 0f:ac:fa:5b:71:d2:4f:92:bd:e2:2f:4c:ec:f3:79: 54:b1:19:c2:6b:f2:e6:4d:86:75:c4:2c:11:cc:3c: 61:cf:8d:5c:8f:5b:08:b5:a8:be:7a:a0:87:ad:f4: 9a:41:33:5e:9f:4c:21:89:33:68:b1:13:eb:53:d9: 5d:0c:2e:d1:09:de:2e:8b:55:3b:3a:9e:a7:ba:8c: b7:5c:96:e5:6b:81:52:4b:11:aa:79:57:69:28:7f: c4:67:a9:7a:a7:2a:4f:b3:19:bd:67:1d:21:e7:48: 98:e4:ba:bc:8f:fa:78:71:36:22:37:6d:e9:e1:b5: 09:33:6a:87:1e:8b:35:a4:31:01:a7:74:ae:0b:a9: e6:e4:c1:17:7d:4c:68:7b:a3:02:87:96:51:37:e1: 87:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0E:B4:D2:12:31:66:0A:E5:26:EA:5B:FF:EB:9D:BF:15:A2:D3:6B X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ad:9b:56:ce:b8:5b:b5:1b:30:ab:38:c7:64:94:1f:e3:ce: f9:ee:ea:93:52:70:0f:43:9b:a7:c5:eb:ae:89:ff:16:d0:b5: 05:ce:f1:05:1b:eb:65:f8:cc:de:f4:aa:7e:e8:2a:c2:af:42: 10:64:08:3b:72:d2:a3:96:dd:be:17:21:e8:c2:06:90:41:cc: 35:0e:47:a2:b1:b1:33:62:18:41:7f:b6:f0:ff:86:1f:33:d1: 1c:a5:0a:a0:f2:de:9e:25:76:30:f7:2e:f2:f0:3e:fd:60:a3: 8d:f8:04:ed:f4:4f:1a:8c:c7:fc:23:c2:d4:8a:f7:bb:bf:ac: 3e:6f:03:12:59:1b:9a:ee:90:1a:99:0e:fe:9d:26:22:f4:c7: 1c:be:d7:28:1b:10:5b:af:44:f9:55:97:9c:77:b1:ab:14:1a: 01:ca:86:60:26:0c:8e:13:1a:4f:08:d9:38:56:82:c0:00:2d: d6:71:19:60:f6:6d:3f:83:4a:d4:2c:b1:29:77:d4:fd:5c:4e: 1f:23:cf:11:40:89:bb:1a:10:de:15:bb:05:34:67:e0:01:61: a3:b5:5b:03:4d:98:83:ba:88:3f:db:c8:10:30:91:11:90:bf: 5c:59:f2:0f:5a:e8:1a:36:d1:de:c8:48:e9:88:17:32:86:93: 46:c2:18:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjUwNjE0MTQxODI4WhcNMjUwNjIxMTQxODI4WjAYMRYwFAYD VQQDEw02ODRkODRiNC0yZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8VM+ZM06gZYug1xVUnc7GLsaxF8i8lChUitJ8MpK0iNgg53TYlTxtQ5WRQ+ 7vpafRmv1ByqJIJwW1glV7T+7/oLLRjnYNwEBAWErWb67yLDc+LLaR0u/kfiIoBG asDsjUI4O5By96EPrPpbcdJPkr3iL0zs83lUsRnCa/LmTYZ1xCwRzDxhz41cj1sI tai+eqCHrfSaQTNen0whiTNosRPrU9ldDC7RCd4ui1U7Op6nuoy3XJbla4FSSxGq eVdpKH/EZ6l6pypPsxm9Zx0h50iY5Lq8j/p4cTYiN23p4bUJM2qHHos1pDEBp3Su C6nm5MEXfUxoe6MCh5ZRN+GHnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoOtNIS MWYK5SbqW//rnb8VotNrMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbrZtWzrhbtRswqzjHZJQf48757uqTUnAPQ5unxeuuif8W0LUFzvEF G+tl+Mze9Kp+6CrCr0IQZAg7ctKjlt2+FyHowgaQQcw1DkeisbEzYhhBf7bw/4Yf M9EcpQqg8t6eJXYw9y7y8D79YKON+ATt9E8ajMf8I8LUive7v6w+bwMSWRua7pAa mQ7+nSYi9MccvtcoGxBbr0T5VZecd7GrFBoByoZgJgyOExpPCNk4VoLAAC3WcRlg 9m0/g0rULLEpd9T9XE4fI88RQIm7GhDeFbsFNGfgAWGjtVsDTZiDuog/28gQMJER kL9cWfIPWugaNtHeyEjpiBcyhpNGwhha -----END CERTIFICATE-----Generated at Sat Jun 14 18:46:54 2025 by rpki-client