$ rpki-client -vvf rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft File: X-MMr29aMskZ0zWqlNDnMzzQVDU.mft (raw, json) Hash identifier: Ubd7iWYRF4ARFaGiBu69HUdpa/32MOt/jA5REAVE4/U= Subject key identifier: 13:7A:CB:C2:AC:D1:D9:BA:F5:8A:1A:E4:D1:94:5E:1D:95:D5:FE:3F Authority key identifier: 5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 Certificate issuer: /CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Certificate serial: 0811 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft Manifest number: 0800 Signing time: Fri 22 Aug 2025 21:09:01 +0000 Manifest this update: Fri 22 Aug 2025 21:09:00 +0000 Manifest next update: Fri 29 Aug 2025 21:09:00 +0000 Files and hashes: 1: X-MMr29aMskZ0zWqlNDnMzzQVDU.crl (hash: a4qTJ9YTO9fuQ10SSjJyoLxGGzCP05ysR9XSVy2nhyw=) 2: FE02E774CFFD11EC8CFDFF68C4F9AE02.roa (hash: Mb3AFxuyqsJCVgV+HTF7n8MDdauyi9spCKyVJmftERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2065 (0x811) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E403, serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Validity Not Before: Aug 22 21:09:00 2025 GMT Not After : Aug 29 21:09:00 2025 GMT Subject: CN=68a8dc6c-518d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:43:b7:eb:1b:53:eb:04:a3:d1:26:20:a5: c6:a1:e3:29:d9:26:98:37:d6:3e:a6:30:d5:82:eb: cb:32:15:06:fa:9b:22:cf:84:ad:89:34:03:e4:94: c6:f6:11:4e:a3:8b:4a:d4:b0:d6:dc:52:3b:44:29: 99:fd:4f:38:86:91:aa:df:ba:9b:e1:64:3e:1b:40: 3a:0e:7f:f1:9f:9e:46:e0:92:55:9c:de:02:04:94: 4e:60:2b:a8:4c:b3:ae:0b:ab:02:0d:d6:a8:9a:49: 0f:33:3b:a2:c8:d3:2e:ee:9d:fd:2a:58:fc:44:73: 97:91:56:e2:7b:cb:6e:84:f6:4f:2f:1f:ab:23:26: 45:99:05:e7:26:48:f7:45:d2:ba:d2:26:9b:15:5b: 78:b4:c0:58:30:e1:01:2f:e5:31:ff:90:ad:86:cb: 21:7a:c6:4a:51:24:cb:73:c9:95:6e:3c:b5:bb:0c: be:9a:d1:9f:73:f1:08:78:09:fe:76:00:25:a7:f9: 1d:de:ab:52:50:1c:2b:3a:fd:3b:3a:c9:c8:3d:2c: 5f:d0:1f:62:a6:ef:08:05:9d:37:67:66:2b:cd:bb: 3a:65:be:3e:a6:2a:03:4d:e0:81:c9:e1:e4:01:74: e4:c8:55:b6:7a:27:28:a6:fd:63:f0:79:67:9c:5b: 67:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7A:CB:C2:AC:D1:D9:BA:F5:8A:1A:E4:D1:94:5E:1D:95:D5:FE:3F X509v3 Authority Key Identifier: keyid:5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:0e:59:9b:81:59:4d:64:59:e2:42:89:f9:f0:97:39:59:88: e9:4f:7c:c3:2f:25:e7:7f:42:5c:74:1d:eb:9e:5e:39:34:ef: b2:96:44:6f:b4:12:d0:6c:a6:b9:5c:50:7b:2e:e8:0c:a4:75: 8a:5b:8d:dd:8c:21:c8:ae:bf:18:42:51:ec:02:90:89:98:9f: 1a:e9:b8:14:0a:8d:07:72:f6:e8:aa:98:3a:bd:6a:89:51:50: e1:0f:ef:91:ac:1a:2c:1a:87:77:5b:2e:7d:09:ad:3a:98:53: 6f:6f:3b:a4:69:1e:b5:73:e0:67:68:0b:50:65:9b:b6:80:35: 9f:e7:5a:fc:54:63:60:64:a6:dc:40:88:8c:27:79:5e:87:e6: 3d:74:f0:dd:6b:fd:df:cb:b9:97:a6:fe:72:c7:10:d8:ad:a2: ac:5c:23:2b:d5:80:67:a9:cd:2f:96:0d:2e:ed:8f:db:28:c4: 93:ea:48:80:96:79:79:9b:11:6e:f6:c6:ec:a5:9e:d9:30:f8: 2e:bc:32:e8:8c:1f:f6:f1:49:b8:67:ff:14:d0:0c:bc:44:be: 64:f7:f9:11:45:e9:d2:f2:54:c4:80:52:be:34:65:09:33:8e: e2:c2:53:ca:19:72:5e:bb:76:d3:07:9e:c9:fe:ad:2a:ba:a0: 5e:84:9d:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU0MDMxMTAvBgNVBAUTKDVGRTMwQ0FGNkY1QTMyQzkxOUQzMzVBQTk0RDBFNzMz M0NEMDU0MzUwHhcNMjUwODIyMjEwOTAwWhcNMjUwODI5MjEwOTAwWjAYMRYwFAYD VQQDEw02OGE4ZGM2Yy01MThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0odDt+sbU+sEo9EmIKXGoeMp2SaYN9Y+pjDVguvLMhUG+psiz4StiTQD5JTG 9hFOo4tK1LDW3FI7RCmZ/U84hpGq37qb4WQ+G0A6Dn/xn55G4JJVnN4CBJROYCuo TLOuC6sCDdaomkkPMzuiyNMu7p39Klj8RHOXkVbie8tuhPZPLx+rIyZFmQXnJkj3 RdK60iabFVt4tMBYMOEBL+Ux/5CthsshesZKUSTLc8mVbjy1uwy+mtGfc/EIeAn+ dgAlp/kd3qtSUBwrOv07OsnIPSxf0B9ipu8IBZ03Z2Yrzbs6Zb4+pioDTeCByeHk AXTkyFW2eicopv1j8HlnnFtnNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBN6y8Ks 0dm69Yoa5NGUXh2V1f4/MB8GA1UdIwQYMBaAFF/jDK9vWjLJGdM1qpTQ5zM80FQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTQwMy9BMUNDRUNGRUY4 QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1za1oweldxbE5Ebk16elFW RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtTU1yMjlhTXNrWjB6V3FsTkRuTXp6UVZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTQwMy9BMUNDRUNGRUY4QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1z a1oweldxbE5Ebk16elFWRFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDmDlmbgVlNZFniQon58Jc5WYjpT3zDLyXnf0JcdB3rnl45NO+ylkRv tBLQbKa5XFB7LugMpHWKW43djCHIrr8YQlHsApCJmJ8a6bgUCo0Hcvboqpg6vWqJ UVDhD++RrBosGod3Wy59Ca06mFNvbzukaR61c+BnaAtQZZu2gDWf51r8VGNgZKbc QIiMJ3leh+Y9dPDda/3fy7mXpv5yxxDYraKsXCMr1YBnqc0vlg0u7Y/bKMST6kiA lnl5mxFu9sbspZ7ZMPguvDLojB/28Um4Z/8U0Ay8RL5k9/kRRenS8lTEgFK+NGUJ M47iwlPKGXJeu3bTB57J/q0quqBehJ3H -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:27 2025 by rpki-client