$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: XcwZWEzhJwdauDXpOFa6wxDVn4g/OA4B0CaLnAcNl0A= Subject key identifier: ED:D8:15:3A:6D:11:BC:0F:6A:4A:E5:EF:BE:F4:D0:A1:00:5A:30:17 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0746 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 073A Signing time: Fri 22 Aug 2025 21:55:14 +0000 Manifest this update: Fri 22 Aug 2025 21:55:14 +0000 Manifest next update: Fri 29 Aug 2025 21:55:14 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: baXKo8h0BXorGXcEqPVVCCGS4ufEnvAZEV2apuZaVrk=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: IwbM0qanfV+e3+145YunmnHjT+laZw+y8+B4ZLa5xus=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1862 (0x746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Aug 22 21:55:14 2025 GMT Not After : Aug 29 21:55:14 2025 GMT Subject: CN=68a8e742-3880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e2:f7:39:2a:67:9b:f7:f0:e0:6a:e0:66:a7: 74:e8:bf:51:78:a1:3c:3b:51:93:bb:1b:78:19:14: 84:85:81:0b:c3:0b:b0:e0:8f:55:3e:03:23:02:9e: b6:c9:97:dd:ae:d9:83:a1:b5:0a:14:be:e7:8e:18: 81:6e:1a:7b:d8:51:5f:ed:ca:56:87:b6:05:50:a3: 57:70:fa:79:28:73:f0:77:75:76:cb:e2:32:bf:ad: 30:fe:77:3d:43:42:d5:a3:1e:ea:c6:68:3b:97:e6: a7:2d:13:0e:89:91:67:68:e7:ca:37:4c:1d:e5:ed: 63:ee:7d:fd:39:39:ba:ae:3e:0d:dc:31:7d:0e:2f: 9a:3f:29:8a:f1:d3:aa:6a:57:aa:04:b9:f3:20:93: 9a:29:90:e9:97:d6:a5:42:ab:1a:d9:36:9f:0a:65: a9:44:29:dd:4f:1d:76:d8:e8:18:b3:2d:89:66:10: ee:bc:bb:35:74:7c:9d:00:05:a5:e9:95:e5:72:cd: 44:59:5a:77:1c:a5:d1:38:57:2e:1a:00:bb:c7:b1: 2a:53:65:29:a3:fb:55:14:ff:d8:14:38:12:6b:91: 3a:e1:8f:96:e6:b7:06:07:f9:60:ef:14:1b:99:0f: 07:f3:1e:d7:50:0b:8f:10:83:5b:ae:ad:d5:9e:09: 0c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:D8:15:3A:6D:11:BC:0F:6A:4A:E5:EF:BE:F4:D0:A1:00:5A:30:17 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:39:aa:ce:a6:f2:1e:1c:b9:e1:44:2f:2d:49:75:c9:7e:9b: fa:48:d7:f1:60:07:33:20:eb:fd:70:c9:bb:ff:7b:11:75:97: 5d:1e:70:97:21:3e:e9:21:08:0c:40:c9:7f:f1:f8:f2:20:ba: 4e:73:99:9f:a3:bb:ef:d6:40:92:c6:8d:a8:b1:7e:92:36:b3: 51:b2:e6:6a:b7:18:de:e3:ce:bd:cc:4e:c8:b5:29:3b:80:e5: 2f:c6:26:b8:9a:7a:aa:af:9f:c8:13:7a:d9:bc:a9:f5:04:2f: cd:19:65:b5:d9:e2:a2:75:59:31:06:45:29:ae:57:4b:c7:37: 5d:d7:74:f7:dd:f3:57:52:67:ee:d1:9a:d5:fe:85:fc:9d:e3: 23:bc:7e:3c:12:88:14:f7:7f:24:f5:2e:a0:7a:32:cc:6f:18: 93:e7:05:87:e3:19:99:b7:96:35:0f:1a:0c:81:a9:9d:e1:d8: ad:81:2c:15:78:8a:b7:38:a5:49:2c:83:88:f8:d1:33:b6:51: e3:65:34:70:7b:60:c8:a3:34:d2:a9:e6:cb:0d:0a:c6:a8:5c: 1b:1c:7f:fd:04:62:87:2f:60:fc:6c:69:5e:c8:bd:2a:ea:03: 93:55:cd:c6:14:53:2b:f0:7d:d9:72:59:8d:1c:b5:d1:28:35: b1:67:1e:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwODIyMjE1NTE0WhcNMjUwODI5MjE1NTE0WjAYMRYwFAYD VQQDEw02OGE4ZTc0Mi0zODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eL3OSpnm/fw4GrgZqd06L9ReKE8O1GTuxt4GRSEhYELwwuw4I9VPgMjAp62 yZfdrtmDobUKFL7njhiBbhp72FFf7cpWh7YFUKNXcPp5KHPwd3V2y+Iyv60w/nc9 Q0LVox7qxmg7l+anLRMOiZFnaOfKN0wd5e1j7n39OTm6rj4N3DF9Di+aPymK8dOq aleqBLnzIJOaKZDpl9alQqsa2TafCmWpRCndTx122OgYsy2JZhDuvLs1dHydAAWl 6ZXlcs1EWVp3HKXROFcuGgC7x7EqU2Upo/tVFP/YFDgSa5E64Y+W5rcGB/lg7xQb mQ8H8x7XUAuPEINbrq3VngkM2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3YFTpt EbwPakrl77700KEAWjAXMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHOarOpvIeHLnhRC8tSXXJfpv6SNfxYAczIOv9cMm7/3sRdZddHnCX IT7pIQgMQMl/8fjyILpOc5mfo7vv1kCSxo2osX6SNrNRsuZqtxje4869zE7ItSk7 gOUvxia4mnqqr5/IE3rZvKn1BC/NGWW12eKidVkxBkUprldLxzdd13T33fNXUmfu 0ZrV/oX8neMjvH48EogU938k9S6gejLMbxiT5wWH4xmZt5Y1DxoMgamd4ditgSwV eIq3OKVJLIOI+NEztlHjZTRwe2DIozTSqebLDQrGqFwbHH/9BGKHL2D8bGleyL0q 6gOTVc3GFFMr8H3ZclmNHLXRKDWxZx6t -----END CERTIFICATE-----Generated at Sat Aug 23 22:39:21 2025 by rpki-client