$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: f95HVI7OWnHe/NZh/0ex42QGXL3sXF8NbyagZ80NEdA= Subject key identifier: 18:B5:D9:AB:0A:A4:3D:A6:3F:1C:3B:E3:6A:C2:6A:28:1E:85:D3:93 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 0697 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 0693 Signing time: Fri 22 Aug 2025 22:25:42 +0000 Manifest this update: Fri 22 Aug 2025 22:25:41 +0000 Manifest next update: Fri 29 Aug 2025 22:25:41 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: 64Akh5thuxJCCVTzFEarUptfvCKHZdfprqC46juU/i4=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: DpNVsF8S1R1VahxgyAnkQsdhv9Y/GOwsBJQM35rMSJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Aug 22 22:25:41 2025 GMT Not After : Aug 29 22:25:41 2025 GMT Subject: CN=68a8ee65-3607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:37:3a:31:a3:07:a4:ac:62:7d:9c:c1:67:f3: 68:8a:d0:93:3c:38:98:d0:34:b6:58:f9:80:4c:c5: fb:c2:51:2e:6b:e7:e7:90:34:80:07:8d:d2:61:8a: 43:e3:c1:2f:7f:ef:e1:72:12:f0:0b:43:89:25:08: 72:f4:ad:74:69:3e:33:f7:b9:76:c5:d7:8e:52:60: 7f:b1:50:1a:47:19:59:61:4d:b9:6f:ff:c6:a6:fb: da:0b:39:ca:bf:4b:74:4f:b6:59:dd:be:98:e2:a5: ec:25:6e:84:c9:15:6b:e6:6e:a1:06:e8:70:3a:de: 0b:8f:25:6a:6e:fc:1c:f8:22:24:db:4c:8f:02:5e: db:d2:f0:ec:70:0c:14:07:8b:93:4b:bc:e1:03:85: 01:6e:1d:94:27:01:40:8a:d8:16:a3:42:82:7b:46: 99:5a:2a:6a:7f:9f:96:1f:42:e6:e9:8b:5b:2e:67: a3:e4:49:c5:3a:47:bf:6c:48:06:a0:6f:e3:da:56: 36:e1:19:73:53:c8:d1:3c:11:85:d8:89:6a:d7:b2: 11:89:d3:7c:4b:b7:5a:07:50:de:da:a8:6f:56:b3: d6:77:26:7f:a7:23:5a:47:75:48:cf:82:e0:6c:cc: 72:13:98:fd:52:50:41:ae:fc:d7:fb:94:c7:12:8b: d1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B5:D9:AB:0A:A4:3D:A6:3F:1C:3B:E3:6A:C2:6A:28:1E:85:D3:93 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:42:cd:10:78:65:b3:f0:49:cd:5e:a4:79:f7:42:b5:83:c0: 7a:7f:75:15:4d:f3:2e:6f:2c:70:6b:e3:78:9b:bf:cb:c8:cc: 9e:1f:c8:bf:ea:0e:1c:7f:04:0d:a1:e2:2b:52:06:bd:6a:56: 6e:19:61:39:70:7d:6c:d9:d4:d0:98:b8:e0:2a:11:17:4b:e1: 08:1c:40:16:40:79:9a:eb:b3:d6:43:cd:ed:9c:4d:e9:d0:e5: 93:ae:fc:95:ed:28:c4:3f:6c:fc:07:6f:29:fb:e9:47:f1:dc: 4e:9d:34:c1:43:80:19:89:6d:aa:19:d0:b5:24:b6:59:be:ac: c4:b2:5c:2e:73:8a:42:f2:ef:69:fc:c0:f5:a8:69:15:93:ec: 86:8f:3b:50:d9:77:a2:bc:a5:b4:4b:19:ae:69:05:39:0b:31: d6:e7:1a:d3:2b:70:45:c2:97:3d:6d:29:77:aa:14:e2:bc:6b: d5:85:34:e6:04:db:fe:4e:f1:d5:0a:08:b0:fb:5f:b7:44:20: 67:28:8f:12:22:79:ff:4f:54:01:f3:b4:fe:11:4c:de:69:ca: ea:d5:b1:21:f1:f9:fa:7d:03:1a:8b:49:b1:89:cb:f9:08:09: b4:72:44:17:bc:7d:fc:35:7a:0f:89:a2:d6:ab:8f:89:9a:16: 6c:8d:7b:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUwODIyMjIyNTQxWhcNMjUwODI5MjIyNTQxWjAYMRYwFAYD VQQDEw02OGE4ZWU2NS0zNjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzc6MaMHpKxifZzBZ/NoitCTPDiY0DS2WPmATMX7wlEua+fnkDSAB43SYYpD 48Evf+/hchLwC0OJJQhy9K10aT4z97l2xdeOUmB/sVAaRxlZYU25b//GpvvaCznK v0t0T7ZZ3b6Y4qXsJW6EyRVr5m6hBuhwOt4LjyVqbvwc+CIk20yPAl7b0vDscAwU B4uTS7zhA4UBbh2UJwFAitgWo0KCe0aZWipqf5+WH0Lm6YtbLmej5EnFOke/bEgG oG/j2lY24RlzU8jRPBGF2Ilq17IRidN8S7daB1De2qhvVrPWdyZ/pyNaR3VIz4Lg bMxyE5j9UlBBrvzX+5THEovRIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBi12asK pD2mPxw742rCaigehdOTMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCQs0QeGWz8EnNXqR590K1g8B6f3UVTfMubyxwa+N4m7/LyMyeH8i/ 6g4cfwQNoeIrUga9alZuGWE5cH1s2dTQmLjgKhEXS+EIHEAWQHma67PWQ83tnE3p 0OWTrvyV7SjEP2z8B28p++lH8dxOnTTBQ4AZiW2qGdC1JLZZvqzEslwuc4pC8u9p /MD1qGkVk+yGjztQ2XeivKW0SxmuaQU5CzHW5xrTK3BFwpc9bSl3qhTivGvVhTTm BNv+TvHVCgiw+1+3RCBnKI8SInn/T1QB87T+EUzeacrq1bEh8fn6fQMai0mxicv5 CAm0ckQXvH38NXoPiaLWq4+JmhZsjXuC -----END CERTIFICATE-----Generated at Sat Aug 23 10:38:40 2025 by rpki-client