$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: pdZBLC0rXFKyPQXURfN1usiZOxboBpdCpXck6qLSrM8= Subject key identifier: AF:19:50:5A:3C:F6:53:82:2B:EB:B7:55:BF:B2:BD:68:C6:BF:32:A3 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0C14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0C09 Signing time: Sun 24 Aug 2025 18:42:00 +0000 Manifest this update: Sun 24 Aug 2025 18:41:59 +0000 Manifest next update: Sun 31 Aug 2025 18:41:59 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: wlaYHVO8/OLp7f45SdCyzJrsAUqn/AIMwREsThIF8LA=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Aug 24 18:41:59 2025 GMT Not After : Aug 31 18:41:59 2025 GMT Subject: CN=68ab5cf8-1d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:b5:27:f7:2b:1c:0a:cc:1d:3b:e7:4c:c6: 78:0a:52:47:16:77:1b:f6:5d:02:b4:35:f7:42:6b: 7e:46:aa:dc:ce:a2:81:de:cd:e4:1f:57:0f:2e:93: b1:9c:be:79:db:50:b8:3d:4f:d5:ff:37:1e:d5:e8: 0c:88:bc:52:ad:0a:5f:7d:db:d0:2a:3b:0d:c1:d9: 46:9c:a0:8a:b8:5e:f4:23:65:8a:8a:53:02:51:37: 79:bd:bf:39:6d:30:65:c1:25:df:28:f1:02:f7:56: 83:65:7c:b2:a1:99:9e:54:72:dc:2d:6f:e7:55:53: 57:f7:4a:6f:0e:db:40:69:da:fa:3c:22:e7:5a:2c: 82:a3:82:4f:56:d2:43:9f:bf:82:ea:87:24:e9:4e: 5e:53:34:3b:18:c5:31:4e:cf:88:8f:69:1d:ae:68: 82:dc:3d:8c:00:7d:55:18:10:a3:9b:c2:35:94:0a: a2:27:67:4e:06:dd:6d:6b:71:5d:85:e8:21:91:4c: 83:4b:85:87:82:da:b7:1f:0b:93:b0:3e:a4:df:52: c9:9c:fc:c2:45:c2:7a:0d:dd:43:d6:01:b9:2a:76: 68:62:44:b3:bf:a5:23:2c:4c:f5:ed:01:0e:be:b9: 53:9d:38:6f:a0:d5:d2:f3:6b:a3:96:f8:93:d2:32: 56:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:19:50:5A:3C:F6:53:82:2B:EB:B7:55:BF:B2:BD:68:C6:BF:32:A3 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:b9:f2:41:72:0d:9b:23:b4:04:aa:ae:10:67:29:f7:8f:aa: 52:f0:25:15:d7:90:97:72:42:3f:3a:e4:13:e7:db:33:4d:da: b4:54:53:e1:48:c4:c4:20:97:01:7e:18:3c:8f:cd:a8:62:58: ea:87:3c:26:78:25:4b:39:78:8d:0b:bb:c3:95:e1:c1:59:9c: ce:2c:84:27:95:79:46:72:6e:12:2f:47:58:8a:9a:f3:4f:4f: dd:73:6c:10:7c:8e:e3:a4:75:f5:56:70:8a:f3:61:3a:d4:d1: 03:8c:ef:de:8f:54:61:d6:fe:cf:71:15:8c:3e:66:e1:54:42: 1d:e3:b7:af:6c:77:32:04:33:40:c7:f6:2f:82:1c:1d:ab:d6: 21:f5:0f:6a:fb:ff:f9:94:25:b9:19:1e:02:56:c1:81:5b:6a: 42:c0:b3:81:33:07:fb:d5:e7:61:7f:7c:75:83:89:4d:4e:a7: ca:28:4a:31:c1:a7:e6:39:4a:fc:fb:c5:a9:b1:d3:08:92:74: e9:22:8c:98:77:b0:83:c8:95:ac:a5:d4:94:ad:12:1b:75:34: 13:ed:55:59:03:48:9b:ec:0a:ff:12:da:4e:26:1d:85:02:1c: be:dc:80:7d:f3:36:2b:2f:8d:c0:63:19:02:60:24:e7:04:03: cf:8e:9e:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUwODI0MTg0MTU5WhcNMjUwODMxMTg0MTU5WjAYMRYwFAYD VQQDEw02OGFiNWNmOC0xZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJS1J/crHArMHTvnTMZ4ClJHFncb9l0CtDX3Qmt+RqrczqKB3s3kH1cPLpOx nL5521C4PU/V/zce1egMiLxSrQpffdvQKjsNwdlGnKCKuF70I2WKilMCUTd5vb85 bTBlwSXfKPEC91aDZXyyoZmeVHLcLW/nVVNX90pvDttAadr6PCLnWiyCo4JPVtJD n7+C6ock6U5eUzQ7GMUxTs+Ij2kdrmiC3D2MAH1VGBCjm8I1lAqiJ2dOBt1ta3Fd heghkUyDS4WHgtq3HwuTsD6k31LJnPzCRcJ6Dd1D1gG5KnZoYkSzv6UjLEz17QEO vrlTnThvoNXS82ujlviT0jJWdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8ZUFo8 9lOCK+u3Vb+yvWjGvzKjMB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxufJBcg2bI7QEqq4QZyn3j6pS8CUV15CXckI/OuQT59szTdq0VFPh SMTEIJcBfhg8j82oYljqhzwmeCVLOXiNC7vDleHBWZzOLIQnlXlGcm4SL0dYiprz T0/dc2wQfI7jpHX1VnCK82E61NEDjO/ej1Rh1v7PcRWMPmbhVEId47evbHcyBDNA x/Yvghwdq9Yh9Q9q+//5lCW5GR4CVsGBW2pCwLOBMwf71edhf3x1g4lNTqfKKEox wafmOUr8+8WpsdMIknTpIoyYd7CDyJWspdSUrRIbdTQT7VVZA0ib7Ar/EtpOJh2F Ahy+3IB98zYrL43AYxkCYCTnBAPPjp59 -----END CERTIFICATE-----Generated at Sun Aug 24 21:52:15 2025 by rpki-client