$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: S5u8DvVz/JXhisGcMS3hroTo1KNmGcpn59SfiXzaOH8= Subject key identifier: 64:73:9E:45:93:63:43:3A:1E:67:88:EC:23:D1:77:D1:81:3A:AA:77 Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 06AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 06A6 Signing time: Thu 04 Sep 2025 22:27:41 +0000 Manifest this update: Thu 04 Sep 2025 22:27:41 +0000 Manifest next update: Thu 11 Sep 2025 22:27:41 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: Mvj4CnvZpU9hi3uHrUMv6E+1V97JwCA69DZQEdLTN4c=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: QJpUBqNgws3PM1RQ/YpxcOLuHjSbFEKESqjd/lkWkNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Sep 4 22:27:41 2025 GMT Not After : Sep 11 22:27:41 2025 GMT Subject: CN=68ba125d-cee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:df:b6:72:b6:a6:17:ce:14:52:7d:d7:3d:d9: 66:e0:6c:4c:15:27:e7:53:ef:fa:0e:c2:4f:35:e1: dc:97:de:90:83:8c:0f:00:4f:78:68:00:ae:f4:ba: a7:1c:e8:95:25:a4:af:5e:a9:f4:58:6e:db:87:91: d5:91:b1:cd:8e:dc:9d:38:32:f9:64:4f:68:40:80: 5f:62:71:d1:b4:ba:fd:1f:67:e5:28:03:17:1d:f3: 82:58:9f:8b:ed:37:58:65:b5:64:9a:10:37:6e:90: 42:5b:27:c9:ce:63:03:17:d2:35:e1:df:57:b2:70: e7:fe:8a:af:38:81:3e:9e:9e:6a:b4:33:89:6f:cb: 2d:0d:a7:33:ef:2c:36:c8:7c:63:0d:ed:be:de:aa: 38:6d:c0:3f:fd:e3:8a:69:ce:f4:60:cf:b0:71:4d: 9b:b6:0f:12:23:e8:c7:0b:a4:c7:f9:76:bb:67:82: 85:45:c4:4a:54:80:2c:24:a0:65:67:53:05:41:29: ef:b2:e7:c7:db:6d:87:16:64:eb:ab:0a:e1:04:26: 60:88:2f:ab:0e:8f:48:47:21:44:8f:17:07:29:a5: 6f:77:f1:ab:18:71:f8:dc:1a:93:95:c1:30:94:61: ed:9a:48:1d:b6:06:0f:ac:90:ae:d4:a3:39:0c:29: f7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:73:9E:45:93:63:43:3A:1E:67:88:EC:23:D1:77:D1:81:3A:AA:77 X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:36:60:72:9e:66:21:53:4b:93:a9:4d:95:8d:6b:af:c5:f7: 65:f9:6a:d5:b9:45:61:95:4b:6b:89:30:79:cf:39:50:6c:ab: 2f:02:c8:40:b2:61:e1:54:d7:de:b0:dc:48:91:1b:f5:a7:14: ac:47:f4:78:17:87:85:f0:37:af:f2:9e:9b:1d:5f:a7:e9:94: 2e:61:c9:6e:88:61:3e:81:f0:5f:74:00:5f:b5:0a:98:6b:67: a2:f4:92:73:75:67:b7:7c:72:63:76:ba:48:91:eb:1a:f5:86: 2e:c9:2a:8f:19:11:db:0a:bb:17:0d:bd:07:08:c6:de:35:34: f1:71:bf:07:ae:0c:07:1d:2b:eb:71:bf:30:89:0f:3b:a9:c3: 1a:69:4d:44:90:c2:c5:10:32:e0:2f:06:4f:8c:14:19:c0:4f: 79:b5:a4:29:43:e2:5b:29:75:cd:ef:4e:a2:3d:ca:d7:5d:80: 6e:f3:63:12:c8:52:40:70:20:0b:19:5e:a5:c8:4b:47:05:2a: b4:77:0a:12:ff:30:8d:48:37:69:a3:71:26:3f:35:72:95:5c: b1:8e:3d:06:a7:c3:65:31:7f:eb:f8:32:4c:11:5d:5c:d4:20: 00:f6:76:d6:65:39:24:5b:67:77:b8:e8:7c:3e:34:88:f9:ec: 61:2e:3e:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjUwOTA0MjIyNzQxWhcNMjUwOTExMjIyNzQxWjAYMRYwFAYD VQQDEw02OGJhMTI1ZC1jZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAud+2cramF84UUn3XPdlm4GxMFSfnU+/6DsJPNeHcl96Qg4wPAE94aACu9Lqn HOiVJaSvXqn0WG7bh5HVkbHNjtydODL5ZE9oQIBfYnHRtLr9H2flKAMXHfOCWJ+L 7TdYZbVkmhA3bpBCWyfJzmMDF9I14d9XsnDn/oqvOIE+np5qtDOJb8stDacz7yw2 yHxjDe2+3qo4bcA//eOKac70YM+wcU2btg8SI+jHC6TH+Xa7Z4KFRcRKVIAsJKBl Z1MFQSnvsufH222HFmTrqwrhBCZgiC+rDo9IRyFEjxcHKaVvd/GrGHH43BqTlcEw lGHtmkgdtgYPrJCu1KM5DCn3nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRznkWT Y0M6HmeI7CPRd9GBOqp3MB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpNmBynmYhU0uTqU2VjWuvxfdl+WrVuUVhlUtriTB5zzlQbKsvAshA smHhVNfesNxIkRv1pxSsR/R4F4eF8Dev8p6bHV+n6ZQuYcluiGE+gfBfdABftQqY a2ei9JJzdWe3fHJjdrpIkesa9YYuySqPGRHbCrsXDb0HCMbeNTTxcb8HrgwHHSvr cb8wiQ87qcMaaU1EkMLFEDLgLwZPjBQZwE95taQpQ+JbKXXN706iPcrXXYBu82MS yFJAcCALGV6lyEtHBSq0dwoS/zCNSDdpo3EmPzVylVyxjj0Gp8NlMX/r+DJMEV1c 1CAA9nbWZTkkW2d3uOh8PjSI+exhLj7g -----END CERTIFICATE-----Generated at Sat Sep 6 20:58:19 2025 by rpki-client