$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft File: XOWb6kBJP8xXRnFpIvGYjZYpH74.mft (raw, json) Hash identifier: 4JE75xan+IA4FRoyDMUhpI5Z+cbvPqF0fKo/DW8fzB8= Subject key identifier: 70:3C:91:13:C3:B0:6C:6E:38:EE:30:74:9B:54:8D:50:53:D2:33:76 Authority key identifier: 5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE Certificate issuer: /CN=A9116D68/serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft Manifest number: 17AA Signing time: Fri 22 Aug 2025 17:43:31 +0000 Manifest this update: Fri 22 Aug 2025 17:43:31 +0000 Manifest next update: Fri 29 Aug 2025 17:43:31 +0000 Files and hashes: 1: XOWb6kBJP8xXRnFpIvGYjZYpH74.crl (hash: ZDr8IkV7aEbCvT4NCHnSNU+vTMPLrudSg83XwMdBSk0=) 2: 98A1BAB6E9B611EE89994B66C4F9AE02.roa (hash: t2aB2zeGB7GLVJUFKuYwNrlRUrrBiilMq9C3DO3eLYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68, serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Validity Not Before: Aug 22 17:43:31 2025 GMT Not After : Aug 29 17:43:31 2025 GMT Subject: CN=68a8ac43-c15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3f:42:4f:dd:99:d2:b7:92:0b:5e:f7:24:7b: a8:ef:22:7b:41:c2:54:f3:20:97:d3:0d:0e:f5:aa: 4d:1d:ac:bb:4b:0b:64:1e:56:e3:55:f0:a9:e8:bf: 76:26:45:77:e5:53:22:13:3f:87:c7:92:7d:db:1c: 30:37:44:61:8e:ce:ac:fb:bd:22:0a:65:82:83:21: cd:a4:6f:79:f6:b6:7c:ff:22:38:00:f5:0f:52:bb: c3:52:76:12:1c:fc:2a:94:5c:96:8e:e5:32:39:99: 2b:83:eb:4c:d4:ea:39:d6:0c:53:a6:f6:db:1a:e4: 2e:99:81:9d:71:c0:21:e3:eb:d4:da:76:f6:fb:e1: 8d:a8:e8:18:51:83:6f:71:91:d0:e3:c1:4a:a7:16: ac:8a:cb:de:76:00:9e:54:52:3f:4d:19:55:90:56: 3d:01:c2:8e:ce:8c:da:60:3c:da:0f:77:36:14:7a: ba:ab:9d:e1:2d:36:7c:43:64:18:b5:1c:8e:cf:2a: 37:1f:91:5b:df:4e:17:f7:40:22:0f:d8:a5:1b:3c: b5:6d:50:6f:78:5e:69:30:07:9e:bb:2c:df:20:0a: 64:b8:58:f8:2b:0b:6b:b1:0f:d1:96:37:1a:fa:1b: 7a:74:ab:2c:a5:7c:37:ad:51:c6:8e:c3:0d:f9:59: c4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3C:91:13:C3:B0:6C:6E:38:EE:30:74:9B:54:8D:50:53:D2:33:76 X509v3 Authority Key Identifier: keyid:5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:58:fb:56:d7:fb:d5:38:9a:fd:95:e3:34:02:75:74:8e:6c: f6:99:a8:81:db:66:d0:b6:b1:f6:63:a8:ce:c7:f7:cb:70:a3: 0a:d6:65:96:bb:8e:f3:9b:72:c1:a2:5c:1a:3e:5e:e6:fa:76: ff:72:41:66:c9:50:7c:a1:0d:ad:f1:91:fb:f7:3f:82:d1:df: c0:1e:23:71:8d:71:d3:a2:15:be:9f:4c:c4:7c:20:67:81:b2: 08:e7:f8:a6:b1:7e:06:46:d9:d0:62:c3:25:78:6b:6d:6f:1d: 88:51:db:eb:23:3c:b6:e8:28:fb:0a:ae:7b:18:b3:52:12:80: 32:9b:03:58:8d:4a:8e:a0:62:89:be:a7:86:7c:84:9e:61:85: 0c:21:59:11:c3:25:d0:5b:8b:9e:96:2e:86:56:0f:63:36:dc: e9:d8:c2:49:6a:87:79:d9:31:40:2b:e2:90:be:d3:b6:02:b6: d2:85:d2:a0:cc:13:66:c1:5c:6e:00:66:1c:29:1e:60:83:93: f5:a1:9f:7a:9b:2f:15:c1:cc:b3:cc:54:70:af:44:c9:e3:47: 63:cb:5f:f3:be:2f:13:93:cd:b5:6b:e1:e6:8e:89:b5:6f:92: 68:7a:82:27:6b:76:8f:09:40:22:52:82:bc:a3:9a:81:91:11: 03:d4:94:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKDVDRTU5QkVBNDA0OTNGQ0M1NzQ2NzE2OTIyRjE5ODhE OTYyOTFGQkUwHhcNMjUwODIyMTc0MzMxWhcNMjUwODI5MTc0MzMxWjAYMRYwFAYD VQQDEw02OGE4YWM0My1jMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0T9CT92Z0reSC173JHuo7yJ7QcJU8yCX0w0O9apNHay7SwtkHlbjVfCp6L92 JkV35VMiEz+Hx5J92xwwN0Rhjs6s+70iCmWCgyHNpG959rZ8/yI4APUPUrvDUnYS HPwqlFyWjuUyOZkrg+tM1Oo51gxTpvbbGuQumYGdccAh4+vU2nb2++GNqOgYUYNv cZHQ48FKpxasisvedgCeVFI/TRlVkFY9AcKOzozaYDzaD3c2FHq6q53hLTZ8Q2QY tRyOzyo3H5Fb304X90AiD9ilGzy1bVBveF5pMAeeuyzfIApkuFj4KwtrsQ/Rljca +ht6dKsspXw3rVHGjsMN+VnE/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA8kRPD sGxuOO4wdJtUjVBT0jN2MB8GA1UdIwQYMBaAFFzlm+pAST/MV0ZxaSLxmI2WKR++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4eFhSbkZwSXZHWWpaWXBI NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPV2I2a0JKUDh4WFJuRnBJdkdZalpZcEg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkQ2OC83MjRDQzg0Qzc4ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4 eFhSbkZwSXZHWWpaWXBINzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8WPtW1/vVOJr9leM0AnV0jmz2maiB22bQtrH2Y6jOx/fLcKMK1mWW u47zm3LBolwaPl7m+nb/ckFmyVB8oQ2t8ZH79z+C0d/AHiNxjXHTohW+n0zEfCBn gbII5/imsX4GRtnQYsMleGttbx2IUdvrIzy26Cj7Cq57GLNSEoAymwNYjUqOoGKJ vqeGfISeYYUMIVkRwyXQW4ueli6GVg9jNtzp2MJJaod52TFAK+KQvtO2ArbShdKg zBNmwVxuAGYcKR5gg5P1oZ96my8VwcyzzFRwr0TJ40djy1/zvi8Tk821a+Hmjom1 b5JoeoIna3aPCUAiUoK8o5qBkRED1JSG -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:21 2025 by rpki-client