$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: 98Ux0dtwqHQncUcXz4D0OsMLKVYuInC8L/lMxH/ZMdI= Subject key identifier: 26:5F:F2:CC:34:5F:32:9A:A0:50:B9:42:61:A1:72:90:AA:59:56:E0 Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 028F Signing time: Sat 23 Aug 2025 01:52:18 +0000 Manifest this update: Sat 23 Aug 2025 01:52:17 +0000 Manifest next update: Sat 30 Aug 2025 01:52:17 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: QPui8SNj4r/dpjzOLyub9HC4QAcyAy4BeFhX+ryvZgY=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: rj0KTjzf+DtNN3R81snVNcDYp+a1rWXY0u8rHIUHCk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Aug 23 01:52:17 2025 GMT Not After : Aug 30 01:52:17 2025 GMT Subject: CN=68a91ed1-0d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:aa:66:7f:f3:3c:0f:73:21:1e:77:31:c5:26: ed:df:b1:44:54:7b:a8:20:87:61:00:15:af:d5:5a: c6:b0:96:d6:bf:0f:55:1e:8c:5e:23:1c:8d:6b:25: 45:ff:1b:b9:b8:94:09:6c:cb:4f:c3:23:1b:de:75: 7e:66:f0:83:a6:82:15:99:26:d0:c4:43:81:98:e2: 09:d4:aa:32:87:e4:44:ce:38:c0:c1:dd:07:eb:d4: c4:f6:1d:5b:04:68:1d:7c:d6:dd:2c:99:33:b0:cb: 9e:5c:9c:82:9b:40:75:72:33:0f:8d:6c:e0:56:0f: 82:7a:fd:77:82:6d:e6:af:cf:38:56:fe:c3:ef:1d: 80:4a:28:96:6d:79:a1:8d:ca:a9:b5:14:77:61:17: 04:a3:89:23:87:ad:d1:8e:ff:91:e6:92:54:94:f0: 41:ad:49:41:63:19:7c:56:ee:8f:7b:3a:88:35:ec: 64:92:49:90:ab:7a:67:4e:92:7b:41:8d:d4:75:9a: 2c:d1:71:63:06:d6:07:8d:77:69:22:a6:af:2b:d6: ed:06:66:ff:10:0d:54:95:a5:d7:3d:3a:20:09:fa: f8:5e:98:8f:0b:1d:e7:b4:f9:f8:f1:59:ee:48:61: 02:f5:f5:b1:c0:65:8b:7d:27:3d:7d:b1:ab:28:e3: 39:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5F:F2:CC:34:5F:32:9A:A0:50:B9:42:61:A1:72:90:AA:59:56:E0 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1b:05:eb:c9:11:8f:c2:3d:59:10:10:2c:97:a2:34:ae:75: 0b:d1:8d:18:ab:b3:cd:3f:c8:c7:32:7a:f5:5b:dc:0d:51:3e: 51:65:62:df:11:c2:be:a9:57:39:06:bc:2f:c7:a4:f3:eb:c8: 6f:3e:87:9b:ae:05:a7:a4:ed:c6:79:09:5e:54:2a:95:7a:e5: 74:3b:07:ff:d3:42:69:33:db:e7:b5:e2:20:ee:72:b5:20:8e: ba:d1:da:6f:da:8d:b8:f6:02:57:3a:60:94:71:00:c1:66:5d: d7:21:09:13:6f:37:7a:07:93:fd:ef:b8:d0:3d:0f:e4:3e:b4: c4:9b:12:68:94:6c:b9:07:f2:b4:b9:3a:0d:5c:16:f8:10:c0: c9:a2:60:7b:28:43:95:8e:bb:8b:19:8a:ba:a2:ee:d9:87:71: 90:c6:87:3a:03:63:fd:87:60:08:db:79:23:13:e9:59:93:ce: 24:80:31:69:ce:0b:65:bf:87:61:51:d6:47:46:8a:37:90:f7: 42:ea:30:2d:07:41:65:9c:97:9e:62:d3:7d:69:57:04:8c:67: 32:b4:a8:78:a9:c5:8e:1c:98:48:3a:ec:68:f0:05:02:84:d2: 6d:91:21:09:5b:e5:64:87:1a:6f:92:6a:e1:42:ad:03:ea:69: 8f:eb:b7:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUwODIzMDE1MjE3WhcNMjUwODMwMDE1MjE3WjAYMRYwFAYD VQQDEw02OGE5MWVkMS0wZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6pmf/M8D3MhHncxxSbt37FEVHuoIIdhABWv1VrGsJbWvw9VHoxeIxyNayVF /xu5uJQJbMtPwyMb3nV+ZvCDpoIVmSbQxEOBmOIJ1Koyh+REzjjAwd0H69TE9h1b BGgdfNbdLJkzsMueXJyCm0B1cjMPjWzgVg+Cev13gm3mr884Vv7D7x2ASiiWbXmh jcqptRR3YRcEo4kjh63Rjv+R5pJUlPBBrUlBYxl8Vu6PezqINexkkkmQq3pnTpJ7 QY3UdZos0XFjBtYHjXdpIqavK9btBmb/EA1UlaXXPTogCfr4XpiPCx3ntPn48Vnu SGEC9fWxwGWLfSc9fbGrKOM5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZf8sw0 XzKaoFC5QmGhcpCqWVbgMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvGwXryRGPwj1ZEBAsl6I0rnUL0Y0Yq7PNP8jHMnr1W9wNUT5RZWLf EcK+qVc5Brwvx6Tz68hvPoebrgWnpO3GeQleVCqVeuV0Owf/00JpM9vnteIg7nK1 II660dpv2o249gJXOmCUcQDBZl3XIQkTbzd6B5P977jQPQ/kPrTEmxJolGy5B/K0 uToNXBb4EMDJomB7KEOVjruLGYq6ou7Zh3GQxoc6A2P9h2AI23kjE+lZk84kgDFp zgtlv4dhUdZHRoo3kPdC6jAtB0FlnJeeYtN9aVcEjGcytKh4qcWOHJhIOuxo8AUC hNJtkSEJW+VkhxpvkmrhQq0D6mmP67e9 -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:18 2025 by rpki-client