$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: r6t8c6rjll0JU7MNWFNKn5PgOpFuim7ffemMw1SRq48= Subject key identifier: 88:8C:43:51:23:C9:51:36:0B:83:6C:03:F2:0C:27:E4:C2:E0:F6:E3 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 03EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 03E6 Signing time: Sat 23 Aug 2025 00:46:35 +0000 Manifest this update: Sat 23 Aug 2025 00:46:35 +0000 Manifest next update: Sat 30 Aug 2025 00:46:35 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: VnXnYNBnCLYcs1bSMY9UaFVXhXsqr8qkFod7zPVtXMA=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: W7ot2zpw7zenj0ixyvV0R84xsbmbGiyY0szYoIQxijc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1003 (0x3eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2, serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: Aug 23 00:46:35 2025 GMT Not After : Aug 30 00:46:35 2025 GMT Subject: CN=68a90f6b-15d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:47:1b:db:5f:8c:a4:2e:1f:cc:61:48:09:8f: 28:3d:d8:5f:b6:f4:5a:a8:a5:82:9e:0c:96:4c:af: 36:ed:d0:bc:65:b8:99:43:db:43:1a:08:0f:d5:6f: 24:44:40:76:b2:5a:ae:86:39:04:a4:c1:59:16:ca: 57:7c:3f:b2:33:e5:23:0f:ef:4d:0a:44:fd:bc:b4: 48:1f:4e:c2:3d:c1:b8:ce:79:6f:91:b0:5a:44:f6: 89:4d:53:82:3e:96:51:c4:ef:3d:b6:9a:3c:56:a3: 2c:d8:b3:49:26:36:74:31:27:e1:1e:ee:fa:54:34: 93:fe:0b:d2:43:c8:8a:23:fd:12:56:41:6f:05:ef: 49:3c:4c:ff:80:f2:a7:bd:85:e7:a1:46:d2:af:a0: d0:94:3b:1c:41:ac:23:9a:9b:7a:ef:61:a1:f2:76: 48:99:68:e3:d0:67:cb:0d:99:9b:09:56:c8:e0:81: ea:6d:0f:e1:65:d9:51:1f:49:1f:24:1b:24:ce:18: c0:4c:27:d3:7d:9a:70:07:43:bc:de:85:a1:30:df: 27:fc:45:7f:ff:f5:54:c7:52:02:48:5d:72:9c:ac: 2d:e6:73:24:b9:6b:2e:57:dc:29:34:e8:d9:91:f1: 26:54:81:74:09:cb:e4:42:3d:49:3c:02:bc:dd:1f: 21:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8C:43:51:23:C9:51:36:0B:83:6C:03:F2:0C:27:E4:C2:E0:F6:E3 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:81:cd:1d:dd:9d:c6:96:46:a1:a1:81:c0:02:7f:0e:4a:2f: b6:37:81:23:c5:c2:b8:78:f1:25:a1:45:45:f3:b2:6c:a0:31: b3:56:da:fa:b8:b6:7c:eb:4f:61:9e:2b:82:0a:5b:10:21:30: 9e:1d:50:03:2e:44:58:78:7c:75:e3:ef:e8:53:87:d7:0a:e2: 5d:88:50:84:a1:66:ac:94:d3:35:16:72:96:2a:1b:ce:f7:c2: 46:22:8a:59:5d:db:d0:4a:21:31:53:da:ea:1d:c4:c9:bc:dc: cc:c2:a4:34:04:7d:ea:f3:6a:62:c9:d4:35:f0:2c:a8:83:8c: 99:c8:c9:3c:17:cc:f4:47:e8:f7:aa:2f:22:c2:e3:93:aa:40: bc:12:96:53:1a:26:0e:d5:f5:4b:07:9f:ca:03:76:09:f2:09: 7a:70:2d:87:de:6c:4f:de:e0:b9:d1:99:bf:40:e7:75:0d:23: 69:83:c7:18:b7:f5:ec:0b:20:bd:1a:99:f4:dc:7e:7b:49:02: 90:33:4d:db:a8:64:b1:85:4d:1c:fe:eb:2a:bc:8e:3b:1e:18: 01:4e:fb:7a:1d:f8:ef:94:59:38:68:4b:2b:ec:e1:3b:df:e0: e8:2a:bf:22:63:41:d6:12:13:1d:bd:77:17:f2:80:2a:00:26: d4:b8:ff:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUwODIzMDA0NjM1WhcNMjUwODMwMDA0NjM1WjAYMRYwFAYD VQQDEw02OGE5MGY2Yi0xNWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ucb21+MpC4fzGFICY8oPdhftvRaqKWCngyWTK827dC8ZbiZQ9tDGggP1W8k REB2slquhjkEpMFZFspXfD+yM+UjD+9NCkT9vLRIH07CPcG4znlvkbBaRPaJTVOC PpZRxO89tpo8VqMs2LNJJjZ0MSfhHu76VDST/gvSQ8iKI/0SVkFvBe9JPEz/gPKn vYXnoUbSr6DQlDscQawjmpt672Gh8nZImWjj0GfLDZmbCVbI4IHqbQ/hZdlRH0kf JBskzhjATCfTfZpwB0O83oWhMN8n/EV///VUx1ICSF1ynKwt5nMkuWsuV9wpNOjZ kfEmVIF0CcvkQj1JPAK83R8hPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiMQ1Ej yVE2C4NsA/IMJ+TC4PbjMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/gc0d3Z3GlkahoYHAAn8OSi+2N4EjxcK4ePEloUVF87JsoDGzVtr6 uLZ8609hniuCClsQITCeHVADLkRYeHx14+/oU4fXCuJdiFCEoWaslNM1FnKWKhvO 98JGIopZXdvQSiExU9rqHcTJvNzMwqQ0BH3q82piydQ18Cyog4yZyMk8F8z0R+j3 qi8iwuOTqkC8EpZTGiYO1fVLB5/KA3YJ8gl6cC2H3mxP3uC50Zm/QOd1DSNpg8cY t/XsCyC9Gpn03H57SQKQM03bqGSxhU0c/usqvI47HhgBTvt6HfjvlFk4aEsr7OE7 3+DoKr8iY0HWEhMdvXcX8oAqACbUuP9f -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:34 2025 by rpki-client