$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: IF/p3rTUG7h1lgXfUVSit/vZEU0Q397d6YtDdrziqCs= Subject key identifier: A2:07:36:D6:77:26:0B:78:EE:89:1A:CC:CC:E6:05:5F:6B:EC:6A:52 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 069E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 069A Signing time: Thu 04 Sep 2025 22:31:22 +0000 Manifest this update: Thu 04 Sep 2025 22:31:21 +0000 Manifest next update: Thu 11 Sep 2025 22:31:21 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: Z7z0uacOIn2euGl4ACfUNbYmY3QHi43a063vsZupMA0=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: DpNVsF8S1R1VahxgyAnkQsdhv9Y/GOwsBJQM35rMSJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1694 (0x69e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Sep 4 22:31:21 2025 GMT Not After : Sep 11 22:31:21 2025 GMT Subject: CN=68ba1339-93da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cb:8a:64:2c:fe:32:ee:8e:36:07:69:45:95: ac:ee:ba:66:b0:bb:ac:40:4e:2f:1c:09:e0:ba:aa: e4:a8:fd:70:17:5e:c8:d2:d1:54:87:df:9d:da:d1: 7d:81:73:8a:d0:2c:61:b0:a5:14:1e:83:20:2f:0a: d8:55:de:64:79:89:64:b1:84:54:70:49:37:68:bd: 3e:c6:ec:fd:fa:26:9d:ba:20:65:72:36:7a:80:b3: 01:03:4e:f2:15:88:07:db:66:bd:49:5e:55:cc:cd: 39:c9:90:44:a2:83:62:d2:a7:98:34:61:0d:ce:bf: 58:6b:ab:bf:db:d5:25:d8:82:99:a7:ac:b0:14:c4: 07:87:b8:eb:64:01:24:e4:34:ca:03:bc:6b:22:03: e6:33:d1:54:59:a0:df:4b:6a:87:c6:5b:0e:15:55: ee:ca:69:dd:33:97:a2:9d:b7:ad:e2:ec:15:8f:f7: c5:e8:69:23:7d:65:e1:17:e4:4b:1c:b4:ec:26:bc: dc:0e:65:3a:85:54:6f:fc:7c:9e:3d:33:f8:e3:9d: d4:a8:82:03:13:5a:81:03:f7:12:85:91:a3:1d:27: f0:ba:d5:0f:d7:70:d6:bb:57:a2:0a:23:71:54:65: 9c:d5:a9:4b:8a:6f:c3:c8:2f:d2:e3:f4:56:06:70: 61:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:07:36:D6:77:26:0B:78:EE:89:1A:CC:CC:E6:05:5F:6B:EC:6A:52 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:58:67:70:eb:68:b8:f3:fc:b9:69:00:fb:d2:94:78:c5:73: 11:c8:ac:a9:af:a1:d7:b9:b2:48:4e:1f:39:36:3f:bd:cd:34: 3a:ce:9c:40:a9:f7:e3:f8:21:41:bd:a9:db:98:24:ef:f5:1e: 3a:c6:75:51:65:e6:a6:8f:8d:36:d7:b5:82:9a:46:9a:e0:a6: a8:0b:4c:ae:fd:16:ed:ba:a9:8d:6b:a0:da:a5:f0:12:1a:d2: 08:89:d1:3d:53:f9:4b:25:ba:b6:8b:84:8f:66:70:cc:a7:7c: 44:70:45:c1:40:f0:d1:07:1c:a8:3e:f3:0d:b9:5b:fd:73:d2: c0:7a:db:8b:ce:75:51:18:5e:f4:d2:36:95:bd:c7:8e:db:d6: 21:a5:36:f2:6b:7f:d7:26:04:ef:0b:34:fa:8b:eb:e0:d5:e9: 2e:fa:c2:2e:d1:88:cc:ad:3f:1b:ff:c4:b4:f4:4d:80:96:70: ba:73:7a:85:10:65:8a:37:84:36:e9:3d:8a:d5:24:8b:b9:1e: c9:c8:3c:39:b3:74:1a:59:ab:8c:27:2a:25:b3:5a:29:81:a1: ba:36:29:0c:25:3c:c7:21:54:d0:c4:c1:cb:ef:dc:ce:e7:c2: a2:ae:0f:a5:ab:d7:b0:11:d5:84:92:71:c3:59:ec:6a:9d:c2: bd:5f:80:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUwOTA0MjIzMTIxWhcNMjUwOTExMjIzMTIxWjAYMRYwFAYD VQQDEw02OGJhMTMzOS05M2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMuKZCz+Mu6ONgdpRZWs7rpmsLusQE4vHAnguqrkqP1wF17I0tFUh9+d2tF9 gXOK0CxhsKUUHoMgLwrYVd5keYlksYRUcEk3aL0+xuz9+iaduiBlcjZ6gLMBA07y FYgH22a9SV5VzM05yZBEooNi0qeYNGENzr9Ya6u/29Ul2IKZp6ywFMQHh7jrZAEk 5DTKA7xrIgPmM9FUWaDfS2qHxlsOFVXuymndM5einbet4uwVj/fF6GkjfWXhF+RL HLTsJrzcDmU6hVRv/HyePTP4453UqIIDE1qBA/cShZGjHSfwutUP13DWu1eiCiNx VGWc1alLim/DyC/S4/RWBnBhYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIHNtZ3 Jgt47okazMzmBV9r7GpSMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbWGdw62i48/y5aQD70pR4xXMRyKypr6HXubJITh85Nj+9zTQ6zpxA qffj+CFBvanbmCTv9R46xnVRZeamj40217WCmkaa4KaoC0yu/RbtuqmNa6DapfAS GtIIidE9U/lLJbq2i4SPZnDMp3xEcEXBQPDRBxyoPvMNuVv9c9LAetuLznVRGF70 0jaVvceO29YhpTbya3/XJgTvCzT6i+vg1eku+sIu0YjMrT8b/8S09E2AlnC6c3qF EGWKN4Q26T2K1SSLuR7JyDw5s3QaWauMJyols1opgaG6NikMJTzHIVTQxMHL79zO 58Kirg+lq9ewEdWEknHDWexqncK9X4D0 -----END CERTIFICATE-----Generated at Sat Sep 6 15:11:52 2025 by rpki-client