$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: 8nkmLPp+oIYtcPlssORgei+xNwwFyw46NmHuAgFkB9k= Subject key identifier: C5:A6:07:9F:FF:EE:66:65:1D:F2:44:7D:C1:85:35:A4:D0:D9:60:AD Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 049F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 0497 Signing time: Sat 23 Aug 2025 00:12:48 +0000 Manifest this update: Sat 23 Aug 2025 00:12:47 +0000 Manifest next update: Sat 30 Aug 2025 00:12:47 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: nsv1T5NlgZlU/Lne8hGUYph8ZOrSlmHz+xsZqZ0+12c=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Aug 23 00:12:47 2025 GMT Not After : Aug 30 00:12:47 2025 GMT Subject: CN=68a9077f-1fb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4c:07:fd:b8:69:3e:f3:cb:33:34:12:26:bf: be:e9:63:51:47:e6:5a:4c:8c:84:4b:64:4a:e3:51: 83:8c:d9:e4:24:57:2f:67:19:c3:3a:c3:6b:18:61: c1:d1:a1:eb:17:81:83:e9:82:ab:ca:5a:8a:68:38: 8e:aa:47:dd:b1:93:5e:ae:54:2a:f1:4f:df:5c:71: aa:99:61:ef:56:20:9b:1a:bc:1f:2e:9e:86:4f:1b: 2f:6c:51:99:c2:ba:ef:24:6a:ae:e5:eb:c1:68:0a: 1c:6b:59:cd:a9:04:ae:b1:85:33:e1:bb:b8:07:e9: ea:2a:4c:37:55:61:da:08:3f:2c:5e:94:b3:11:b0: 39:40:7e:e0:0e:4c:78:bc:82:6a:90:21:a5:51:dd: 05:6e:63:66:33:8e:6f:11:b4:c8:30:26:39:d4:ba: 91:0e:87:3e:54:05:05:65:1d:bc:6c:6e:30:4e:d5: 99:01:8d:15:45:e4:b3:df:3c:d4:6f:0b:3b:1a:4a: 94:f6:d1:b3:57:45:f8:f5:0b:76:dd:04:96:41:a8: a3:15:c3:a0:82:f9:ed:01:10:f9:ab:74:14:f0:4d: c5:1d:5c:ba:03:8a:0c:5a:27:29:d6:4b:7c:4f:a0: 4a:f7:86:e4:ff:51:95:0b:ed:4b:36:2c:68:8b:d9: 55:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A6:07:9F:FF:EE:66:65:1D:F2:44:7D:C1:85:35:A4:D0:D9:60:AD X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9d:0e:e8:bb:f6:08:b6:f5:22:08:f0:ea:97:70:e7:27:1d: 5d:9a:9c:72:37:dc:ad:ca:21:10:a1:a1:1a:9c:3e:68:31:b2: 83:88:4e:1b:59:21:8b:6d:d8:8e:ee:fb:fe:42:8b:66:73:9b: 97:ca:68:81:a8:8f:09:7d:e5:20:e3:3f:fd:eb:b6:11:13:93: 87:20:e3:5a:59:7d:64:b4:fb:ce:2b:49:43:38:ef:36:42:ee: 25:97:b5:0a:1b:d3:cc:86:42:32:bc:50:df:77:d8:a9:cb:23: 7e:1f:95:dd:72:74:08:e7:2f:a1:0e:96:59:b1:b0:e4:dd:f7: 22:a8:2f:ee:e8:d6:5b:91:97:b6:ef:ee:56:0b:7f:99:f5:a9: 40:5e:81:1c:d7:46:59:fa:aa:31:c9:56:49:18:ae:99:d9:d2: 08:24:45:e6:4e:ee:6f:1e:6c:8a:e7:3d:f8:f4:fa:0a:b2:33: 7d:d9:6d:50:49:34:c4:65:44:94:89:63:b6:96:a8:3d:d9:38: cc:28:56:1c:f0:78:9f:5a:cc:80:fa:f4:42:13:3f:06:7a:48: 81:25:18:18:87:88:4e:fd:a6:0d:f8:5a:df:48:62:e0:58:79: a3:39:b9:92:ba:3e:fa:b9:7b:35:b1:22:57:8a:ea:48:92:00: 84:f2:a4:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUwODIzMDAxMjQ3WhcNMjUwODMwMDAxMjQ3WjAYMRYwFAYD VQQDEw02OGE5MDc3Zi0xZmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEwH/bhpPvPLMzQSJr++6WNRR+ZaTIyES2RK41GDjNnkJFcvZxnDOsNrGGHB 0aHrF4GD6YKrylqKaDiOqkfdsZNerlQq8U/fXHGqmWHvViCbGrwfLp6GTxsvbFGZ wrrvJGqu5evBaAoca1nNqQSusYUz4bu4B+nqKkw3VWHaCD8sXpSzEbA5QH7gDkx4 vIJqkCGlUd0FbmNmM45vEbTIMCY51LqRDoc+VAUFZR28bG4wTtWZAY0VReSz3zzU bws7GkqU9tGzV0X49Qt23QSWQaijFcOggvntARD5q3QU8E3FHVy6A4oMWicp1kt8 T6BK94bk/1GVC+1LNixoi9lVcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWmB5// 7mZlHfJEfcGFNaTQ2WCtMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBunQ7ou/YItvUiCPDql3DnJx1dmpxyN9ytyiEQoaEanD5oMbKDiE4b WSGLbdiO7vv+Qotmc5uXymiBqI8JfeUg4z/967YRE5OHIONaWX1ktPvOK0lDOO82 Qu4ll7UKG9PMhkIyvFDfd9ipyyN+H5XdcnQI5y+hDpZZsbDk3fciqC/u6NZbkZe2 7+5WC3+Z9alAXoEc10ZZ+qoxyVZJGK6Z2dIIJEXmTu5vHmyK5z349PoKsjN92W1Q STTEZUSUiWO2lqg92TjMKFYc8HifWsyA+vRCEz8GekiBJRgYh4hO/aYN+FrfSGLg WHmjObmSuj76uXs1sSJXiupIkgCE8qTd -----END CERTIFICATE-----Generated at Sat Aug 23 16:32:53 2025 by rpki-client