$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: z3/Lw/5JAfsF7w9IcJ7WeYPqFAqKBc21gyOPu5JhDEI= Subject key identifier: 55:3E:82:BB:B4:59:05:35:50:BC:F7:83:5A:30:1D:9C:64:DA:F4:58 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 0819 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 0813 Signing time: Fri 22 Aug 2025 21:00:26 +0000 Manifest this update: Fri 22 Aug 2025 21:00:25 +0000 Manifest next update: Fri 29 Aug 2025 21:00:25 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: UaL/5+zRyPL7LHwHHwVJ83Wpz+/EepS+4ANa1khBCyg=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: 8MctpWGtN4TB9CaLOxK2lVRFp6WdGzpjql1y9Hz4Ctk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2073 (0x819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Aug 22 21:00:25 2025 GMT Not After : Aug 29 21:00:25 2025 GMT Subject: CN=68a8da6a-eb73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:96:2b:a3:fb:8c:df:6f:70:db:37:75:a5:ee: a5:ef:32:36:5d:5b:ee:83:69:b1:cc:27:d7:2f:a7: a3:af:3e:88:0d:ae:ac:b2:b3:4d:b2:10:0e:d9:b0: 11:85:1b:f2:f5:16:5f:33:56:f0:c6:dd:f9:d6:4e: 26:ae:4f:55:de:57:31:67:bd:77:2e:98:50:4f:ce: 13:14:ef:dc:f8:30:51:ff:32:f8:ba:55:10:7b:8c: 69:93:0c:5c:54:47:5b:ee:a0:12:0c:a5:e9:8f:95: 79:ca:3f:95:42:f1:73:f3:25:69:ca:77:11:98:f4: 58:66:09:6e:5f:05:0d:a7:ff:bd:ad:53:14:fd:31: af:64:70:9b:8a:75:e4:94:59:81:bc:e7:82:aa:bb: 81:00:ee:3a:62:da:37:77:af:6c:7c:29:cd:ae:36: f5:7f:70:93:70:6a:f7:86:fd:01:f9:60:d5:6a:63: d9:8d:ca:a0:a0:b1:0a:0e:59:0c:35:87:1c:50:45: b5:80:a7:8d:56:fb:7f:99:88:ed:8e:e3:d5:93:a7: b0:24:ef:85:23:f6:9e:47:40:fa:3a:6d:41:52:96: ac:f1:c7:e5:48:12:8b:4b:bb:ce:7a:35:92:b8:61: c2:f0:5c:37:b4:55:78:4f:77:84:42:41:4e:b8:f0: 9e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3E:82:BB:B4:59:05:35:50:BC:F7:83:5A:30:1D:9C:64:DA:F4:58 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:2a:68:03:f2:2f:91:99:8a:5f:4b:50:74:38:cb:b0:f5:33: 5c:da:24:5f:ab:ec:93:71:3d:32:b8:be:d0:af:04:01:30:f3: 6e:23:56:41:9f:c6:01:15:55:3c:f0:09:bf:24:7e:e8:de:de: 0c:55:2e:42:88:13:af:c9:fd:07:fc:98:7d:1c:7f:6d:4d:b3: 19:d8:83:05:62:d7:5a:f9:59:63:d9:1d:c5:53:5a:a2:9d:70: 35:ba:93:5b:d9:33:44:cc:e6:3a:a1:63:ea:44:11:03:4b:61: be:81:12:e5:5e:97:5e:f6:4d:6a:8d:96:35:40:55:73:09:cb: 96:d6:25:32:c6:65:fa:82:b9:ab:f8:02:5f:46:ad:d1:cf:62: 47:18:42:6a:b8:0a:75:ee:28:65:c5:06:72:89:45:aa:13:82: f4:b5:c3:9e:bd:56:0d:b6:56:86:6a:48:c0:d4:49:f3:f7:7f: 57:77:a7:08:40:d1:33:a9:65:8a:aa:b4:0f:79:53:00:76:6a: e7:3d:cd:57:af:ec:eb:6c:70:24:e3:95:e3:a8:6d:2b:2a:38: 3b:9e:8e:9a:4d:eb:fb:61:16:ae:f8:85:dc:e7:bc:dd:df:b9: 99:9b:cc:b7:41:71:a8:29:a2:16:af:dd:1c:8d:52:af:fc:dd: 6d:5a:32:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUwODIyMjEwMDI1WhcNMjUwODI5MjEwMDI1WjAYMRYwFAYD VQQDEw02OGE4ZGE2YS1lYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5Yro/uM329w2zd1pe6l7zI2XVvug2mxzCfXL6ejrz6IDa6ssrNNshAO2bAR hRvy9RZfM1bwxt351k4mrk9V3lcxZ713LphQT84TFO/c+DBR/zL4ulUQe4xpkwxc VEdb7qASDKXpj5V5yj+VQvFz8yVpyncRmPRYZgluXwUNp/+9rVMU/TGvZHCbinXk lFmBvOeCqruBAO46Yto3d69sfCnNrjb1f3CTcGr3hv0B+WDVamPZjcqgoLEKDlkM NYccUEW1gKeNVvt/mYjtjuPVk6ewJO+FI/aeR0D6Om1BUpas8cflSBKLS7vOejWS uGHC8Fw3tFV4T3eEQkFOuPCerQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFU+gru0 WQU1ULz3g1owHZxk2vRYMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIKmgD8i+RmYpfS1B0OMuw9TNc2iRfq+yTcT0yuL7QrwQBMPNuI1ZB n8YBFVU88Am/JH7o3t4MVS5CiBOvyf0H/Jh9HH9tTbMZ2IMFYtda+Vlj2R3FU1qi nXA1upNb2TNEzOY6oWPqRBEDS2G+gRLlXpde9k1qjZY1QFVzCcuW1iUyxmX6grmr +AJfRq3Rz2JHGEJquAp17ihlxQZyiUWqE4L0tcOevVYNtlaGakjA1Enz939Xd6cI QNEzqWWKqrQPeVMAdmrnPc1Xr+zrbHAk45XjqG0rKjg7no6aTev7YRau+IXc57zd 37mZm8y3QXGoKaIWr90cjVKv/N1tWjLH -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:25 2025 by rpki-client