$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: O6zBGoYqHh+L0RfaJ3WCv16GOo/KJerNOh1wNpW2OZw= Subject key identifier: 82:B3:7E:C2:9D:B5:A6:4F:2B:16:68:C7:85:A5:82:D7:92:71:34:CD Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0E37 Signing time: Thu 04 Sep 2025 17:57:36 +0000 Manifest this update: Thu 04 Sep 2025 17:57:35 +0000 Manifest next update: Thu 11 Sep 2025 17:57:35 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: 9yuCNadCBYKwvJOE8kE2k/tMNhgPyQluN2zCcZvC48w=) 2: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: qtVktuatmgxYDOUKpmx9+4mvFE8ErGGHadU2rZXHHOI=) 3: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: 6vTa2jFZRIl18mXvmJhTh/HGMJaVZWt9h8uikA4SPmc=) 4: 670DF186232111EB9896B783C4F9AE02.roa (hash: QRv08V7HqtcB3bHnZdM9X+W4jlFsB6z2SpL2l3Cbxgo=) 5: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: rV1Z8AbpTv1d+o44R7LlYsk8JevP6flWo0s81DQ5Rok=) 6: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: lbAPfcc0myVwdYbEISgNYKY5g+qS8g/HzTgMPDxOCGE=) 7: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: 1hlPRZQBD73jEyWKbHC8ZRWrArjylE9If913X/Jb57A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 17:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3679 (0xe5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Sep 4 17:57:35 2025 GMT Not After : Sep 11 17:57:35 2025 GMT Subject: CN=68b9d30f-eeec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7f:b8:a3:dd:5c:a6:6c:c8:f1:a4:ed:0c:7f: fe:fb:7c:2c:cb:ff:95:7c:93:01:09:24:ce:2a:c2: 45:3a:ec:c8:a4:20:7e:7b:dd:81:bb:34:46:d7:e1: ee:ba:fa:cf:64:02:13:81:c8:fc:23:80:e4:03:a0: 52:26:89:8f:71:ee:db:ac:d8:e4:23:63:f6:69:8a: 7c:ec:1a:75:1c:a6:d5:74:ec:12:cd:97:e6:aa:05: 9b:48:5f:0d:58:84:84:0d:89:79:02:20:77:20:56: 62:cf:48:4a:cf:5b:d1:47:81:aa:7f:e4:df:96:34: 68:33:a0:fa:bb:e6:13:9f:e3:f5:d1:be:4b:77:4f: e3:13:d0:08:6d:af:cc:94:9c:b1:5d:8a:00:2d:d6: 3e:6c:87:38:eb:16:e6:f7:5f:38:4e:08:05:1e:49: ce:09:a3:6b:4a:0d:1f:e9:fa:e6:a5:71:81:70:da: 8d:f9:41:4d:37:87:fd:91:55:4b:65:b9:37:54:f1: f4:29:52:44:31:a1:51:26:5d:9c:75:4a:84:fb:bf: c7:1b:c5:40:7f:c1:8b:6d:85:6e:fe:bc:4e:e0:d7: bd:74:57:2c:06:ec:51:3a:c7:6e:43:90:ed:04:1d: b3:13:a2:ef:36:bc:b2:b4:2e:b3:79:5b:2d:9e:0a: 36:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B3:7E:C2:9D:B5:A6:4F:2B:16:68:C7:85:A5:82:D7:92:71:34:CD X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:51:1c:3f:2b:4b:ae:7a:6f:09:53:ed:20:e0:5d:be:b5:86: 8d:7e:cc:f4:cc:bd:5f:1b:f0:37:33:08:86:de:c6:ce:13:ff: ed:52:94:74:e1:c0:0f:96:49:2c:ac:32:62:a8:1c:85:26:db: 8d:31:eb:e3:00:76:be:ea:d6:d5:87:1b:14:59:53:65:c2:75: 45:e3:0f:89:81:66:e6:84:ed:24:41:0f:67:6a:cb:d0:b2:e3: 0d:6f:68:fe:c8:fd:d2:61:1e:2e:62:49:14:20:11:65:49:d7: 0b:f4:be:81:1f:e2:e8:8d:8e:eb:39:94:7b:c0:5d:ae:42:b5: 9c:e6:cd:ef:39:51:42:81:65:a8:66:24:d7:97:96:34:8c:24: 9c:01:f2:f4:e2:eb:b4:fc:d5:cd:64:85:bb:50:ba:1c:80:58: 7c:24:a1:49:3f:39:06:fb:d8:36:0b:19:cc:3b:61:23:5e:73: 58:c8:2b:88:10:44:0e:8b:1f:08:35:22:60:70:91:d9:a2:86: a5:5b:ee:e4:c3:d3:e0:4a:ba:a6:aa:86:88:9c:b2:1c:a6:5d: 55:dd:40:ac:f1:09:b5:cf:eb:39:eb:ae:7b:ba:b1:2f:70:6c: 8a:eb:c9:cb:ce:29:57:41:f0:80:0a:22:48:53:37:fd:e4:60: 78:9d:28:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwOTA0MTc1NzM1WhcNMjUwOTExMTc1NzM1WjAYMRYwFAYD VQQDEw02OGI5ZDMwZi1lZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3+4o91cpmzI8aTtDH/++3wsy/+VfJMBCSTOKsJFOuzIpCB+e92BuzRG1+Hu uvrPZAITgcj8I4DkA6BSJomPce7brNjkI2P2aYp87Bp1HKbVdOwSzZfmqgWbSF8N WISEDYl5AiB3IFZiz0hKz1vRR4Gqf+TfljRoM6D6u+YTn+P10b5Ld0/jE9AIba/M lJyxXYoALdY+bIc46xbm9184TggFHknOCaNrSg0f6frmpXGBcNqN+UFNN4f9kVVL Zbk3VPH0KVJEMaFRJl2cdUqE+7/HG8VAf8GLbYVu/rxO4Ne9dFcsBuxROsduQ5Dt BB2zE6LvNryytC6zeVstngo2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKzfsKd taZPKxZox4WlgteScTTNMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtURw/K0uuem8JU+0g4F2+tYaNfsz0zL1fG/A3MwiG3sbOE//tUpR0 4cAPlkksrDJiqByFJtuNMevjAHa+6tbVhxsUWVNlwnVF4w+JgWbmhO0kQQ9nasvQ suMNb2j+yP3SYR4uYkkUIBFlSdcL9L6BH+LojY7rOZR7wF2uQrWc5s3vOVFCgWWo ZiTXl5Y0jCScAfL04uu0/NXNZIW7ULocgFh8JKFJPzkG+9g2CxnMO2EjXnNYyCuI EEQOix8INSJgcJHZooalW+7kw9PgSrqmqoaInLIcpl1V3UCs8Qm1z+s56657urEv cGyK68nLzilXQfCACiJIUzf95GB4nSi1 -----END CERTIFICATE-----Generated at Fri Sep 5 10:44:20 2025 by rpki-client