$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: 1DdOP06job14c+vmYG5QsDiYAx3FoV48XP19Cvh00Xs= Subject key identifier: 8C:26:C9:C6:CF:58:8F:FF:A9:3E:EA:CB:7A:71:34:29:3B:AD:08:88 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 34D0 Signing time: Sat 06 Sep 2025 14:18:36 +0000 Manifest this update: Sat 06 Sep 2025 14:18:36 +0000 Manifest next update: Sat 13 Sep 2025 14:18:36 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: QhBGacq8iWZ/ZNmk7ZfzNFoCzVOgScyYOuhXUUNQq5c=) 2: 2C5F8752A10D11EFB9BE8476C4F9AE02.roa (hash: Iv390Bd/MJyqbzwOB0bqCA/PrLBJuVtYX/m4XRUDX5k=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: 6UO6N8yoyg6+8CvpDMt8iCmfSbV26PbG92dRF9r0otc=) 5: F8E58782A10C11EFA3C0F375C4F9AE02.roa (hash: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: 0Wsr5VamrOSe1PRZDclYr+ROoB9PidSlGQIwmrfuBe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Sep 6 14:18:36 2025 GMT Not After : Sep 13 14:18:36 2025 GMT Subject: CN=68bc42bc-ab6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b8:88:7a:18:88:dd:81:3b:95:eb:df:2f:5e: 6d:aa:3b:bf:df:f5:01:6d:ec:ba:bd:0e:a7:e3:98: ca:16:9c:e1:be:c1:22:28:3a:dd:09:98:4a:03:e5: b6:54:f2:d9:ba:8d:16:3b:b9:31:23:70:c6:23:d7: 5e:ac:b7:4e:71:d8:1d:1d:7b:8f:96:55:a8:bd:43: e5:12:03:ab:cb:63:5c:ef:16:40:68:64:31:2b:42: 99:f3:5c:98:ad:5e:22:57:86:ef:ca:b9:48:88:c5: 07:d9:78:30:d2:e0:d7:e4:47:4b:c8:77:b4:90:40: d0:9e:14:9b:90:28:cd:a7:49:6f:e7:15:ea:8b:f3: 9c:21:4a:4d:f9:a4:81:32:c9:fd:56:15:09:9c:84: 3d:ac:29:67:14:ce:0d:69:39:c7:df:e2:dc:b0:65: b1:83:20:fc:68:dd:54:27:d6:5a:b0:cb:15:49:fe: fa:d1:9a:90:0b:d6:3c:bc:8e:d8:df:3e:d2:95:ba: 98:33:da:26:a0:43:c9:ac:1e:a5:64:dd:4a:28:9d: 10:cb:af:99:ae:69:1d:d7:b3:e1:a6:21:25:c7:d0: 1d:b9:ce:4f:3b:0e:07:bf:2f:a7:0c:2e:7b:e3:ad: 6c:15:40:5a:37:34:b5:a1:dd:34:e8:d0:4f:99:92: 19:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:26:C9:C6:CF:58:8F:FF:A9:3E:EA:CB:7A:71:34:29:3B:AD:08:88 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:50:16:12:0c:d2:47:8c:81:0d:a7:5e:85:b9:09:e2:90:83: 2c:44:94:de:b9:83:04:fd:d8:3b:5b:bb:0f:fa:4c:cb:6e:df: 1b:6f:0e:83:75:fe:49:9a:23:e2:7a:45:ae:2b:fe:8a:c0:f2: 1b:e6:fd:3a:fa:2d:68:68:47:de:bd:07:0d:8a:6b:4f:46:63: 31:5f:01:ad:37:4b:70:da:9c:54:35:ae:98:6f:fd:3d:a5:c3: 6c:13:06:fe:dd:5f:5c:c1:0e:af:5e:d7:84:47:2d:cb:4d:0f: f2:1f:be:22:63:97:08:04:d0:5c:8c:1b:bc:81:85:cf:6a:45: b4:c4:13:ee:8a:8d:1a:21:0d:8b:69:ce:15:67:2a:6c:07:e2: f8:b6:0b:d1:05:fe:74:e2:91:c1:e7:c8:68:5d:39:08:24:94: df:47:9c:ce:72:91:76:c3:ef:aa:a6:7a:22:13:f6:63:08:1b: 9a:b7:e5:c4:29:07:f3:66:05:5d:c0:ee:e7:9d:95:c6:cf:8b: b8:1b:0d:51:e3:43:41:91:fd:0a:54:41:da:6a:ac:74:70:49: 77:f0:9e:83:3e:e2:d3:89:79:6a:ff:d4:84:9e:cf:46:44:2c: d0:02:1c:67:9b:c1:c6:f3:df:ca:9d:cf:bc:ec:5f:26:dc:c6: 13:18:16:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjUwOTA2MTQxODM2WhcNMjUwOTEzMTQxODM2WjAYMRYwFAYD VQQDEw02OGJjNDJiYy1hYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLiIehiI3YE7levfL15tqju/3/UBbey6vQ6n45jKFpzhvsEiKDrdCZhKA+W2 VPLZuo0WO7kxI3DGI9derLdOcdgdHXuPllWovUPlEgOry2Nc7xZAaGQxK0KZ81yY rV4iV4bvyrlIiMUH2Xgw0uDX5EdLyHe0kEDQnhSbkCjNp0lv5xXqi/OcIUpN+aSB Msn9VhUJnIQ9rClnFM4NaTnH3+LcsGWxgyD8aN1UJ9ZasMsVSf760ZqQC9Y8vI7Y 3z7SlbqYM9omoEPJrB6lZN1KKJ0Qy6+Zrmkd17PhpiElx9Aduc5POw4Hvy+nDC57 461sFUBaNzS1od006NBPmZIZXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwmycbP WI//qT7qy3pxNCk7rQiIMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKUBYSDNJHjIENp16FuQnikIMsRJTeuYME/dg7W7sP+kzLbt8bbw6D df5JmiPiekWuK/6KwPIb5v06+i1oaEfevQcNimtPRmMxXwGtN0tw2pxUNa6Yb/09 pcNsEwb+3V9cwQ6vXteERy3LTQ/yH74iY5cIBNBcjBu8gYXPakW0xBPuio0aIQ2L ac4VZypsB+L4tgvRBf504pHB58hoXTkIJJTfR5zOcpF2w++qpnoiE/ZjCBuat+XE KQfzZgVdwO7nnZXGz4u4Gw1R40NBkf0KVEHaaqx0cEl38J6DPuLTiXlq/9SEns9G RCzQAhxnm8HG89/Knc+87F8m3MYTGBac -----END CERTIFICATE-----Generated at Sat Sep 6 17:26:42 2025 by rpki-client