$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: GreeZo3JUyCC4Q4ju1RZeJsrGLRmJd8m8YHaLbVEHZQ= Subject key identifier: CC:E4:8E:75:73:E1:CF:D6:A2:02:E4:2D:1D:9D:ED:9C:9F:02:4A:2C Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: 0100 Signing time: Sun 07 Sep 2025 05:36:31 +0000 Manifest this update: Sun 07 Sep 2025 05:36:30 +0000 Manifest next update: Sun 14 Sep 2025 05:36:30 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: W66HwwrVHmpTPpLtAyeZ4E6V+7DUs8SD+feRHdbqIm0=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: Ur2f+2mtS8rG+Wi5lYOAmNS8a2RYYseSRQgStkLqo/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Sep 7 05:36:30 2025 GMT Not After : Sep 14 05:36:30 2025 GMT Subject: CN=68bd19df-4b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b1:cd:2a:6e:bd:ba:4a:33:ec:13:c0:1a:f5: 95:38:88:5b:76:84:f5:d0:73:a9:c9:cc:96:7f:34: 63:59:93:b0:81:cc:d5:07:74:fd:19:e3:a4:0b:b0: 53:d6:20:bc:bb:03:85:1e:00:b2:4b:d7:40:cd:2f: e8:3f:af:2c:33:70:8a:61:00:66:9c:89:1f:f2:29: 54:aa:52:fc:b8:49:f1:ee:10:22:85:97:47:ce:de: b5:25:36:d1:10:0b:63:50:79:b6:96:47:7f:d2:ae: f6:61:8c:e7:1c:3c:9c:19:e0:b2:93:6f:00:a1:8c: 35:63:60:ad:b4:96:c3:e0:50:cf:78:bb:96:03:5d: 0e:c7:fc:eb:3c:1b:b4:8e:ed:9a:e0:95:9d:c7:99: f1:7c:c4:0c:ee:0c:82:fc:73:f5:21:bc:61:cf:6c: 57:2a:95:2d:8a:b3:ba:e8:4f:db:3e:15:6e:2c:6c: a4:c2:84:5c:e5:ec:1b:c5:da:d7:57:21:c0:6a:3e: 02:81:96:00:ac:b4:68:56:12:96:ae:a7:16:ec:b7: c2:c3:c7:c1:b8:e4:48:f0:97:b4:a6:10:2d:ba:8a: ad:82:ab:65:94:ef:56:88:59:d3:5f:62:75:ef:3b: 05:8d:ac:57:19:78:38:e0:ca:76:5f:bd:9f:24:98: 72:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E4:8E:75:73:E1:CF:D6:A2:02:E4:2D:1D:9D:ED:9C:9F:02:4A:2C X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:d2:d9:1a:1f:ca:73:73:a7:93:c1:33:80:78:7f:63:fc:80: c7:09:e6:f3:fb:3b:49:9d:cc:a6:5d:d2:48:0b:81:91:d1:fb: 1b:d9:3c:78:d3:e8:ed:8c:7d:3a:b6:2e:fc:28:5b:c7:91:9b: 49:62:a7:ae:9f:0a:b3:a9:62:85:63:1e:2b:7e:68:cd:99:9f: ee:ad:c2:8f:16:e3:66:0b:c3:44:3b:e4:dc:f9:82:85:47:dc: 8b:a2:14:40:66:58:a9:b5:60:0e:1d:84:cf:65:04:b3:e2:bd: 97:7d:bf:4b:7a:8c:57:b6:10:49:2d:16:ba:6f:8f:67:fc:2f: 3b:74:c5:24:05:72:d5:50:6e:ae:24:24:2b:bf:bf:ba:f5:a2: 5f:2e:13:a4:65:db:94:cb:d7:1f:53:c7:62:cf:60:1b:25:63: e2:26:65:9b:08:a0:7b:9b:d7:72:d8:e7:06:23:f3:56:19:c6: 50:f6:04:d6:48:40:ab:b8:b9:53:80:64:ee:8b:62:07:ce:f0: e3:93:37:ea:d4:f7:46:b9:ef:9b:55:e4:ea:4e:07:09:2c:82: db:33:85:77:51:bc:8a:40:63:b7:90:ad:3a:3a:46:cc:fb:53: 6c:ee:f0:de:b5:25:87:ec:a0:cf:ba:c9:d6:7b:60:c7:39:b1: ad:d9:3c:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwOTA3MDUzNjMwWhcNMjUwOTE0MDUzNjMwWjAYMRYwFAYD VQQDEw02OGJkMTlkZi00YjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7HNKm69ukoz7BPAGvWVOIhbdoT10HOpycyWfzRjWZOwgczVB3T9GeOkC7BT 1iC8uwOFHgCyS9dAzS/oP68sM3CKYQBmnIkf8ilUqlL8uEnx7hAihZdHzt61JTbR EAtjUHm2lkd/0q72YYznHDycGeCyk28AoYw1Y2CttJbD4FDPeLuWA10Ox/zrPBu0 ju2a4JWdx5nxfMQM7gyC/HP1Ibxhz2xXKpUtirO66E/bPhVuLGykwoRc5ewbxdrX VyHAaj4CgZYArLRoVhKWrqcW7LfCw8fBuORI8Je0phAtuoqtgqtllO9WiFnTX2J1 7zsFjaxXGXg44Mp2X72fJJhyjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzkjnVz 4c/WogLkLR2d7ZyfAkosMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq0tkaH8pzc6eTwTOAeH9j/IDHCebz+ztJncymXdJIC4GR0fsb2Tx4 0+jtjH06ti78KFvHkZtJYqeunwqzqWKFYx4rfmjNmZ/urcKPFuNmC8NEO+Tc+YKF R9yLohRAZliptWAOHYTPZQSz4r2Xfb9LeoxXthBJLRa6b49n/C87dMUkBXLVUG6u JCQrv7+69aJfLhOkZduUy9cfU8diz2AbJWPiJmWbCKB7m9dy2OcGI/NWGcZQ9gTW SECruLlTgGTui2IHzvDjkzfq1PdGue+bVeTqTgcJLILbM4V3UbyKQGO3kK06OkbM +1Ns7vDetSWH7KDPusnWe2DHObGt2TyR -----END CERTIFICATE-----Generated at Mon Sep 8 08:38:16 2025 by rpki-client