$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft File: -swzUrzjgChT2_SwQFJc_B4VLmA.mft (raw, json) Hash identifier: cnm0SdVCOoQvVwiMaY6ahbeaoXZh1jOy3FyLSKjngc4= Subject key identifier: 46:00:36:8E:47:96:BB:C5:3B:DF:95:2A:7B:64:ED:2A:B6:F4:41:D3 Authority key identifier: FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60 Certificate issuer: /CN=A911B22E/serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft Manifest number: D7 Signing time: Sat 23 Aug 2025 05:42:47 +0000 Manifest this update: Sat 23 Aug 2025 05:42:47 +0000 Manifest next update: Sat 30 Aug 2025 05:42:47 +0000 Files and hashes: 1: -swzUrzjgChT2_SwQFJc_B4VLmA.crl (hash: 1ojPkHFMOMZrwggL//Dw5T0WQhgOj4MiMM05TwhR8bg=) 2: 164D3C32379711EF9ECC714EC4F9AE02.roa (hash: lQyGuB+L8Q0ZdMDNXQZ2OEDjjQlCXslq1mAc1K3qnWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.crl rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E, serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60 Validity Not Before: Aug 23 05:42:47 2025 GMT Not After : Aug 30 05:42:47 2025 GMT Subject: CN=68a954d7-7111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:65:58:de:99:e5:b2:47:08:57:04:05:d3:e5: 67:69:2f:ca:ad:b4:e6:b5:a9:fb:7a:78:59:6c:ad: f6:b3:9d:3a:68:cd:6e:6c:23:e0:fa:0f:53:86:ad: 3e:57:a3:f2:72:cf:e1:07:b2:d2:19:b0:45:23:75: ae:e1:74:94:36:2d:8c:e9:f1:93:08:8a:6e:ac:b9: 00:81:d8:7e:7d:6f:2c:20:65:24:d1:24:87:1a:d8: 07:98:6f:be:d0:ef:23:f3:57:2a:f6:cc:5e:0b:0c: 79:93:c4:c8:4c:86:ea:45:86:5a:5e:fe:e9:5a:a4: 1e:d5:11:ef:9e:66:26:2f:46:b3:cc:31:08:e4:20: 9f:2e:70:1e:6e:2b:d3:18:13:88:53:e2:ec:98:e5: 21:83:27:56:46:5a:64:68:9d:3a:12:00:6e:62:38: b9:c3:54:58:e6:7e:b4:ad:b9:8a:91:84:2b:00:5d: cc:06:ea:7f:40:42:c2:61:fb:45:51:3a:e1:85:e2: cf:8b:ea:69:cf:e5:f5:c4:3f:42:11:34:1d:4c:42: 00:db:45:b1:fa:c8:5a:1a:e8:4c:02:81:16:0a:94: 2a:96:b0:0a:65:60:11:18:e1:9a:b9:ab:ff:19:d3: f7:37:28:c3:aa:08:37:67:d8:20:80:8a:cd:63:19: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:00:36:8E:47:96:BB:C5:3B:DF:95:2A:7B:64:ED:2A:B6:F4:41:D3 X509v3 Authority Key Identifier: keyid:FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:c0:67:2e:ae:62:4d:4a:e6:57:ee:cb:af:6a:a6:96:93:16: f1:41:2b:af:f3:1d:7d:84:5a:0d:64:dc:15:1d:b2:e4:f4:66: 8a:c6:1e:0b:e1:78:9d:da:f5:c5:02:6b:82:2f:a3:7c:2a:6b: 4a:9b:0c:ea:3c:05:3a:be:d6:1e:2b:e6:13:e9:1d:c5:40:65: d7:dd:91:6f:0f:01:1b:53:0e:1c:35:62:09:07:5a:df:ba:e3: 99:76:be:b2:fb:32:6a:41:88:ef:42:16:25:17:e4:f0:57:92: 9d:43:f3:d4:b4:ff:34:a0:81:bf:bd:ce:d1:d7:dc:a9:0a:93: 41:a5:a9:16:19:15:af:02:85:66:30:27:46:82:19:94:91:48: 32:48:98:62:4a:01:3c:59:37:fe:d3:99:a2:a5:13:0d:41:6b: 52:d9:dd:09:e6:6e:c6:7b:37:5b:48:3c:ae:9f:3f:ae:89:ad: ca:5d:33:62:8b:75:dc:e5:14:1b:a0:59:05:31:38:51:a5:78: d1:c4:90:24:b1:27:48:05:bc:ce:b6:fc:b1:5d:a0:62:d7:19: af:43:74:e7:9f:4c:47:30:6f:1a:9d:37:4f:aa:6d:7f:09:0c: 65:3d:a1:ff:c0:47:62:d1:0c:6a:0c:16:c4:ed:a4:c1:0f:29: f8:9c:da:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIyMkUxMTAvBgNVBAUTKEZBQ0MzMzUyQkNFMzgwMjg1M0RCRjRCMDQwNTI1Q0ZD MUUxNTJFNjAwHhcNMjUwODIzMDU0MjQ3WhcNMjUwODMwMDU0MjQ3WjAYMRYwFAYD VQQDEw02OGE5NTRkNy03MTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2VY3pnlskcIVwQF0+VnaS/KrbTmtan7enhZbK32s506aM1ubCPg+g9Thq0+ V6Pycs/hB7LSGbBFI3Wu4XSUNi2M6fGTCIpurLkAgdh+fW8sIGUk0SSHGtgHmG++ 0O8j81cq9sxeCwx5k8TITIbqRYZaXv7pWqQe1RHvnmYmL0azzDEI5CCfLnAebivT GBOIU+LsmOUhgydWRlpkaJ06EgBuYji5w1RY5n60rbmKkYQrAF3MBup/QELCYftF UTrhheLPi+ppz+X1xD9CETQdTEIA20Wx+shaGuhMAoEWCpQqlrAKZWARGOGauav/ GdP3NyjDqgg3Z9gggIrNYxkpaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYANo5H lrvFO9+VKntk7Sq29EHTMB8GA1UdIwQYMBaAFPrMM1K844AoU9v0sEBSXPweFS5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84QkUxMDA4NDM3 OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi8tc3d6VXJ6amdDaFQyX1N3UUZKY19CNFZM bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zd3pVcnpqZ0NoVDJfU3dRRkpjX0I0VkxtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjIyRS84QkUxMDA4NDM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi8tc3d6VXJ6amdD aFQyX1N3UUZKY19CNFZMbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmwGcurmJNSuZX7suvaqaWkxbxQSuv8x19hFoNZNwVHbLk9GaKxh4L 4Xid2vXFAmuCL6N8KmtKmwzqPAU6vtYeK+YT6R3FQGXX3ZFvDwEbUw4cNWIJB1rf uuOZdr6y+zJqQYjvQhYlF+TwV5KdQ/PUtP80oIG/vc7R19ypCpNBpakWGRWvAoVm MCdGghmUkUgySJhiSgE8WTf+05mipRMNQWtS2d0J5m7GezdbSDyunz+uia3KXTNi i3Xc5RQboFkFMThRpXjRxJAksSdIBbzOtvyxXaBi1xmvQ3Tnn0xHMG8anTdPqm1/ CQxlPaH/wEdi0QxqDBbE7aTBDyn4nNp0 -----END CERTIFICATE-----Generated at Sat Aug 23 17:22:20 2025 by rpki-client