$ rpki-client -vvf rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft File: XAVrgGGoYiwsBruFeG6dxhNhS8o.mft (raw, json) Hash identifier: szruLMfXaMy5bQTV1fmugQUm5upw8cIRcynZ8+l7gVU= Subject key identifier: CA:5C:76:63:28:37:D4:CF:05:2C:FE:27:B4:1A:89:0B:8D:D5:2A:42 Authority key identifier: 5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA Certificate issuer: /CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Certificate serial: 024C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft Manifest number: 0229 Signing time: Sun 07 Sep 2025 02:40:26 +0000 Manifest this update: Sun 07 Sep 2025 02:40:25 +0000 Manifest next update: Sun 14 Sep 2025 02:40:25 +0000 Files and hashes: 1: XAVrgGGoYiwsBruFeG6dxhNhS8o.crl (hash: FGepEnkkhPoPp/ClwNleJ/8TAmFMteHhKlq4mRZYk48=) 2: 8C1315A8060611EFB7EFA66CC4F9AE02.roa (hash: D+g5jzuWcvphD1ps8jnw5QvvfxsQjGFWKglonqcWSi0=) 3: 710A095EB62A11EF9D01E53DC4F9AE02.roa (hash: Kuncg/OKHO6KINevgnEgm8twmyohuTIV8xS8NsrR5Yw=) 4: 6121C23230AC11F08C150767C4F9AE02.roa (hash: fShyVa3rIna9iRvZNHAjyEZoQgutIuaEQEMpg+RXaTc=) 5: CD152404495B11EF93EA3757C4F9AE02.roa (hash: G7ZmL/GFUdvItC3mb/pIr2VOosfHx+vaBIP/nBv1gCo=) 6: 71DFDF18890111EEB3F2581FC4F9AE02.roa (hash: 4uRsfI3UTikSBwFuE1LkYP4yx1HQPN2T4+sSHop7B54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A814, serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Validity Not Before: Sep 7 02:40:25 2025 GMT Not After : Sep 14 02:40:25 2025 GMT Subject: CN=68bcf099-c5e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ae:dd:89:fd:65:98:e4:6c:a4:ee:d2:2a:de: 7a:2f:ed:b7:e1:38:47:8c:68:5a:e9:c3:4b:f1:c9: 2c:5e:e5:d4:75:41:4d:fd:3d:03:f8:eb:8c:82:36: 68:77:e1:41:64:67:4d:46:8c:c1:44:9f:b0:22:7b: 0d:6d:23:f1:c5:e9:de:0b:66:d0:55:81:d9:0b:53: 53:42:35:47:3b:28:f0:e2:e3:b1:86:31:e9:7d:40: e1:66:d4:de:74:0f:cb:24:63:15:bb:ab:49:2b:26: 57:ea:c8:cd:11:2d:55:9a:ed:06:2a:9d:2d:ca:ca: 9c:2f:92:dc:a9:5b:c0:4d:e8:70:39:b2:a9:bd:d6: 1e:e7:08:b4:67:8f:45:31:1f:49:bb:e9:00:fa:ac: c0:4c:94:fb:c3:5b:47:94:9b:25:34:d6:60:89:dc: 97:af:b4:10:cf:43:ac:11:ff:f5:88:1f:32:56:da: 3f:23:31:58:6a:47:cc:85:30:ee:f5:b6:80:78:2f: 5a:53:9d:54:c7:21:e1:77:b4:2f:f2:f1:b3:55:cd: da:2e:de:a3:35:d5:1e:86:0f:59:e0:53:af:3e:28: 2b:60:de:b4:ae:d7:f3:6c:09:0b:6a:b5:be:48:09: 5b:f8:b4:f6:c2:65:fb:18:db:2e:67:7f:92:7c:d9: c3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5C:76:63:28:37:D4:CF:05:2C:FE:27:B4:1A:89:0B:8D:D5:2A:42 X509v3 Authority Key Identifier: keyid:5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:fe:dd:d8:cd:dd:fd:67:eb:cf:04:39:d6:74:c2:3f:17:44: c4:b4:20:40:58:23:a5:9a:27:bf:b2:41:a7:ba:d3:ee:b2:ab: 6b:54:39:ae:33:5c:79:9f:2d:2a:01:c2:54:87:0a:60:79:66: 03:68:e1:6f:35:4b:d3:16:18:63:97:42:a2:19:8e:06:ba:99: 51:cb:dc:84:75:15:96:1b:ab:94:69:e1:8d:a4:e4:c8:9a:f4: a3:d9:a6:4b:42:f0:ea:03:e2:4f:c3:58:b2:47:ff:41:24:09: 03:4e:d6:0d:d6:fe:48:2a:35:0b:47:35:10:b8:e0:c9:ba:92: 0b:0c:49:8a:bb:5e:f9:97:de:76:a2:30:98:af:b0:64:a5:62: 37:f0:2d:72:d4:4d:3b:fd:4f:de:4f:97:43:ee:d7:d0:12:d9: f4:a5:a8:55:c3:f7:06:a6:40:4a:bc:f7:72:08:d4:2c:10:98: 35:3a:c6:d0:46:82:04:c4:1b:0e:e3:9d:b9:19:3d:b7:0e:c3: 89:59:29:e3:57:c3:7f:9c:c9:8c:4f:5f:e4:8a:c1:78:b9:48: 9c:8e:10:89:d4:30:32:a2:20:0d:77:96:44:8c:6a:02:7e:d2: 18:68:cf:78:e9:76:fb:f5:39:af:23:17:d6:5f:77:db:ea:d1: ac:ec:9a:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4MTQxMTAvBgNVBAUTKDVDMDU2QjgwNjFBODYyMkMyQzA2QkI4NTc4NkU5REM2 MTM2MTRCQ0EwHhcNMjUwOTA3MDI0MDI1WhcNMjUwOTE0MDI0MDI1WjAYMRYwFAYD VQQDEw02OGJjZjA5OS1jNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA767dif1lmORspO7SKt56L+234ThHjGha6cNL8cksXuXUdUFN/T0D+OuMgjZo d+FBZGdNRozBRJ+wInsNbSPxxeneC2bQVYHZC1NTQjVHOyjw4uOxhjHpfUDhZtTe dA/LJGMVu6tJKyZX6sjNES1Vmu0GKp0tysqcL5LcqVvATehwObKpvdYe5wi0Z49F MR9Ju+kA+qzATJT7w1tHlJslNNZgidyXr7QQz0OsEf/1iB8yVto/IzFYakfMhTDu 9baAeC9aU51UxyHhd7Qv8vGzVc3aLt6jNdUehg9Z4FOvPigrYN60rtfzbAkLarW+ SAlb+LT2wmX7GNsuZ3+SfNnDnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpcdmMo N9TPBSz+J7QaiQuN1SpCMB8GA1UdIwQYMBaAFFwFa4BhqGIsLAa7hXhuncYTYUvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTgxNC9EMzhBMTkxMjc0 NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lpd3NCcnVGZUc2ZHhoTmhT OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBVnJnR0dvWWl3c0JydUZlRzZkeGhOaFM4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTgxNC9EMzhBMTkxMjc0NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lp d3NCcnVGZUc2ZHhoTmhTOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg/t3Yzd39Z+vPBDnWdMI/F0TEtCBAWCOlmie/skGnutPusqtrVDmu M1x5ny0qAcJUhwpgeWYDaOFvNUvTFhhjl0KiGY4GuplRy9yEdRWWG6uUaeGNpOTI mvSj2aZLQvDqA+JPw1iyR/9BJAkDTtYN1v5IKjULRzUQuODJupILDEmKu175l952 ojCYr7BkpWI38C1y1E07/U/eT5dD7tfQEtn0pahVw/cGpkBKvPdyCNQsEJg1OsbQ RoIExBsO4525GT23DsOJWSnjV8N/nMmMT1/kisF4uUicjhCJ1DAyoiANd5ZEjGoC ftIYaM946Xb79TmvIxfWX3fb6tGs7Jo7 -----END CERTIFICATE-----Generated at Sun Sep 7 14:22:30 2025 by rpki-client