$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: LVkJI5Qu/SEYfv7IJwJELWiqsk/2kQWbLrZ0etZeaBw= Subject key identifier: 4C:06:71:2C:01:87:21:92:11:83:75:67:55:11:A4:A8:F2:5F:CB:C2 Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 01D6 Signing time: Fri 05 Sep 2025 03:24:17 +0000 Manifest this update: Fri 05 Sep 2025 03:24:16 +0000 Manifest next update: Fri 12 Sep 2025 03:24:16 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: PMAqEZ9Hgg2v+m2bNO5Vfc4d+ASAdEa8ZzyISUcH7/c=) 2: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: NHs0+oLxPl8uuJffLMiSnsDVJyHvtsfXj9mt3FT2mqU=) 3: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: TUo7uv4rXTA0iRyimVV1a57fjFNt5Gy9xOb0XovcHoI=) 4: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: AeF6+orX99LwnbHGZiB851tFWKGqrAIMqoROhOgxFpw=) 5: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: 7c9RXUhll7RjmfKdCACTxBkSEfUtF0muR2dkJbiSbMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: Sep 5 03:24:16 2025 GMT Not After : Sep 12 03:24:16 2025 GMT Subject: CN=68ba57e0-8636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:52:89:fc:b5:54:ef:75:4a:1c:0c:cc:20:19: 21:dd:81:e1:22:a0:e2:a4:dc:23:93:8e:1e:ba:1d: 49:e9:7e:3f:9b:14:45:54:fa:40:64:02:5e:0c:14: a8:45:a8:54:8f:89:ee:e1:9c:49:fa:a8:dd:e2:de: a7:32:bd:b8:fe:f4:69:20:2b:e5:dd:9a:f1:77:4e: 65:33:28:49:27:ef:23:12:16:56:b3:cc:34:a4:01: 9b:e0:ef:71:fc:5a:bc:e9:16:fa:1f:b5:fd:51:fe: 33:82:7d:e3:f8:35:9f:19:0a:83:cd:23:62:0c:05: 9c:1a:c5:57:28:ed:33:17:bb:76:d3:ba:e9:80:5c: bd:1b:a9:75:4e:02:f7:6a:a9:66:88:1d:9d:20:ef: a9:f2:5f:76:bc:9d:25:8d:b4:fe:32:fb:b4:95:90: 1c:dd:1e:0e:f6:63:76:0c:5a:09:9c:93:d0:22:3c: d1:a1:45:9b:ba:50:c5:a4:43:9e:af:eb:d0:e5:e1: ad:87:ce:5a:fb:d1:1e:32:83:35:cf:fc:ba:71:da: ce:49:c6:46:2b:87:17:0a:3a:6f:ab:8b:56:10:17: dc:ae:4e:a1:c7:92:af:79:e6:03:33:01:ab:19:08: 2e:8c:0d:94:09:30:cf:b8:67:83:40:1e:70:68:dc: bd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:06:71:2C:01:87:21:92:11:83:75:67:55:11:A4:A8:F2:5F:CB:C2 X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:90:75:a7:37:50:9c:37:c2:4b:7b:d0:52:90:b0:78:83:5e: 4b:b5:48:56:4d:25:03:21:3b:49:7a:eb:bd:94:fd:04:35:9a: cb:a2:26:3e:ee:f6:45:87:39:3d:87:30:27:c1:4b:bc:22:c3: 19:2a:f8:4e:b6:e9:c7:73:35:47:9a:f6:28:3c:ea:49:5f:90: 85:61:06:7c:21:eb:56:1d:ed:ae:34:a7:9c:b3:46:c5:2f:32: b2:ba:b4:fc:e8:d1:27:e3:a4:36:1b:aa:93:3a:2d:40:15:20: dd:d9:1a:d8:9b:f5:60:47:ae:c3:21:17:5c:69:c5:bd:33:55: 43:18:44:4b:49:76:c7:89:25:be:95:32:2e:83:c8:ab:5d:db: 6b:4a:52:cc:80:fe:4f:2a:57:ba:95:7e:83:d3:e7:df:ab:16: 50:ef:d0:5a:c9:a2:77:ad:c2:b2:18:bd:50:c8:87:c7:15:90: eb:68:b8:60:3c:e8:b6:bf:a3:f8:b6:4b:31:58:eb:d9:38:47: 36:b9:d8:4b:31:60:89:90:67:24:71:e8:e1:5c:0e:16:8e:79: 9d:41:33:fe:09:a5:e3:69:54:2a:b1:76:1d:71:55:58:17:63: 75:c6:5c:1e:13:3b:29:40:d2:fb:8f:d7:af:ba:eb:51:45:14: 8c:0d:c5:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjUwOTA1MDMyNDE2WhcNMjUwOTEyMDMyNDE2WjAYMRYwFAYD VQQDEw02OGJhNTdlMC04NjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplKJ/LVU73VKHAzMIBkh3YHhIqDipNwjk44euh1J6X4/mxRFVPpAZAJeDBSo RahUj4nu4ZxJ+qjd4t6nMr24/vRpICvl3Zrxd05lMyhJJ+8jEhZWs8w0pAGb4O9x /Fq86Rb6H7X9Uf4zgn3j+DWfGQqDzSNiDAWcGsVXKO0zF7t207rpgFy9G6l1TgL3 aqlmiB2dIO+p8l92vJ0ljbT+Mvu0lZAc3R4O9mN2DFoJnJPQIjzRoUWbulDFpEOe r+vQ5eGth85a+9EeMoM1z/y6cdrOScZGK4cXCjpvq4tWEBfcrk6hx5KveeYDMwGr GQgujA2UCTDPuGeDQB5waNy9fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwGcSwB hyGSEYN1Z1URpKjyX8vCMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSkHWnN1CcN8JLe9BSkLB4g15LtUhWTSUDITtJeuu9lP0ENZrLoiY+ 7vZFhzk9hzAnwUu8IsMZKvhOtunHczVHmvYoPOpJX5CFYQZ8IetWHe2uNKecs0bF LzKyurT86NEn46Q2G6qTOi1AFSDd2RrYm/VgR67DIRdcacW9M1VDGERLSXbHiSW+ lTIug8irXdtrSlLMgP5PKle6lX6D0+ffqxZQ79BayaJ3rcKyGL1QyIfHFZDraLhg POi2v6P4tksxWOvZOEc2udhLMWCJkGckcejhXA4WjnmdQTP+CaXjaVQqsXYdcVVY F2N1xlweEzspQNL7j9evuutRRRSMDcXD -----END CERTIFICATE-----Generated at Fri Sep 5 11:33:08 2025 by rpki-client