$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: +Q3HpYgIW2tvcoqu88t4wzBK3RXwN9J1AYyyfZIxBTM= Subject key identifier: F7:9F:EC:8C:71:A0:83:27:AB:5F:58:D1:5E:58:00:D2:E4:59:16:76 Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 0820 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0818 Signing time: Mon 08 Sep 2025 20:53:08 +0000 Manifest this update: Mon 08 Sep 2025 20:53:07 +0000 Manifest next update: Mon 15 Sep 2025 20:53:07 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: xxJI7S9uKedHzysZ1LvpYrx9JAF+evn/TUZm1t/V3tI=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: iinohx2uez2EL2svxSw8QxTPKTPPk9i54jHLL6kBKQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Sep 8 20:53:07 2025 GMT Not After : Sep 15 20:53:07 2025 GMT Subject: CN=68bf4234-e48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0b:0b:8f:9b:18:15:3e:a7:68:5f:c8:b9:be: 55:94:5f:d9:a0:bf:2a:37:92:21:81:4b:d9:8f:0e: 38:1a:89:a2:7f:29:d7:35:31:c0:69:47:de:b8:ba: d8:47:1b:b9:0b:04:2f:fc:f1:5d:74:03:8d:56:70: 69:64:05:5b:d6:0b:97:90:72:f6:e7:eb:86:24:f0: c5:98:01:35:04:e5:b0:e2:4a:b0:37:3e:82:9d:2d: 4a:b7:0c:00:24:24:b9:e8:59:c0:75:bc:7f:b7:38: 31:16:51:c9:d9:fe:da:5c:53:dc:bd:14:a7:28:38: 6e:b3:a5:47:a1:6d:21:38:42:df:84:be:4a:5b:1b: 15:0c:d0:7d:c8:6f:32:46:49:7f:1a:b1:92:97:71: 30:26:e0:e3:da:6b:6c:e5:bb:7e:5f:4f:9e:eb:dc: 6f:ae:66:a9:85:3f:20:6c:8e:5f:00:bd:56:d5:67: ef:ef:22:74:fd:b3:41:f0:5e:a8:fe:d6:29:0f:a2: df:30:da:42:e7:3b:5d:b4:ab:4f:86:a7:72:29:92: 0a:da:03:2d:76:53:fb:47:23:c3:a3:dd:24:03:59: d0:f6:c7:28:c2:e8:b1:35:db:9c:5a:72:c3:e3:2e: 15:f5:3a:16:2d:79:a3:a3:22:df:f6:56:da:8b:1d: d8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:9F:EC:8C:71:A0:83:27:AB:5F:58:D1:5E:58:00:D2:E4:59:16:76 X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:7b:9d:13:67:1a:d3:f1:cc:5a:b7:7b:f6:f1:50:fa:9b:ba: f4:d0:be:fb:bc:d9:56:1d:67:27:4f:fe:47:c4:11:24:f0:41: 3d:7e:fe:e5:d0:ba:16:9e:4a:ea:3d:44:0b:8e:f4:39:62:22: a1:dc:25:fa:b0:2c:d9:80:46:44:11:26:d3:b5:e5:7f:19:50: c0:9a:e6:8a:40:9f:95:31:f9:91:8c:b8:ca:3a:57:9f:a9:ef: 86:d2:3a:a0:92:81:bb:b5:48:12:85:ce:b6:84:ea:39:ca:84: 66:55:61:8a:35:9a:6d:c1:51:c1:f4:b2:34:be:9c:a6:26:5a: 74:67:10:23:48:fb:3d:4d:9d:b6:95:4a:29:a7:c0:5c:fb:ce: ba:a4:bd:91:55:67:b5:e2:af:ae:c3:81:f9:97:6b:5d:85:d8: da:b6:a4:5d:40:f1:74:ad:f5:92:35:96:66:d5:72:e9:00:4d: c6:83:57:6e:5a:f1:d7:85:29:8f:7b:d3:dc:a7:0e:a9:4e:a4: b4:54:f7:1d:f8:e9:35:93:9e:42:5c:12:d6:4d:14:41:03:5e: 4e:7d:0c:f8:99:cc:aa:1a:49:03:35:54:4c:7a:3c:70:0c:75: 0e:9e:6a:b5:16:ef:a0:1b:72:a2:fc:8c:a9:ad:66:19:5f:04: ad:c9:9d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUwOTA4MjA1MzA3WhcNMjUwOTE1MjA1MzA3WjAYMRYwFAYD VQQDEw02OGJmNDIzNC1lNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQsLj5sYFT6naF/Iub5VlF/ZoL8qN5IhgUvZjw44GomifynXNTHAaUfeuLrY Rxu5CwQv/PFddAONVnBpZAVb1guXkHL25+uGJPDFmAE1BOWw4kqwNz6CnS1KtwwA JCS56FnAdbx/tzgxFlHJ2f7aXFPcvRSnKDhus6VHoW0hOELfhL5KWxsVDNB9yG8y Rkl/GrGSl3EwJuDj2mts5bt+X0+e69xvrmaphT8gbI5fAL1W1Wfv7yJ0/bNB8F6o /tYpD6LfMNpC5ztdtKtPhqdyKZIK2gMtdlP7RyPDo90kA1nQ9scowuixNducWnLD 4y4V9ToWLXmjoyLf9lbaix3YFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPef7Ixx oIMnq19Y0V5YANLkWRZ2MB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBse50TZxrT8cxat3v28VD6m7r00L77vNlWHWcnT/5HxBEk8EE9fv7l 0LoWnkrqPUQLjvQ5YiKh3CX6sCzZgEZEESbTteV/GVDAmuaKQJ+VMfmRjLjKOlef qe+G0jqgkoG7tUgShc62hOo5yoRmVWGKNZptwVHB9LI0vpymJlp0ZxAjSPs9TZ22 lUopp8Bc+866pL2RVWe14q+uw4H5l2tdhdjatqRdQPF0rfWSNZZm1XLpAE3Gg1du WvHXhSmPe9Pcpw6pTqS0VPcd+Ok1k55CXBLWTRRBA15OfQz4mcyqGkkDNVRMejxw DHUOnmq1Fu+gG3Ki/IyprWYZXwStyZ2S -----END CERTIFICATE-----Generated at Tue Sep 9 18:27:36 2025 by rpki-client