$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft File: AXJLovQFMrfgjXIPTAlmQbShyMQ.mft (raw, json) Hash identifier: 8VF8E1ulHuAysqtEJZHuBrCc7kn7gI2SGWVMZRBGH6I= Subject key identifier: 85:6E:F5:7A:66:F7:41:6F:8F:38:64:78:14:3D:F1:6B:7B:8A:88:EE Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 050A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft Manifest number: 0506 Signing time: Fri 22 Aug 2025 23:50:01 +0000 Manifest this update: Fri 22 Aug 2025 23:50:01 +0000 Manifest next update: Fri 29 Aug 2025 23:50:01 +0000 Files and hashes: 1: AXJLovQFMrfgjXIPTAlmQbShyMQ.crl (hash: +hJZViiacots1CACIoWBaLLS1TROZayIWWXgB+YwU8I=) 2: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (hash: ACAwTbWxAFnsJHmx19kYwRZ2kYaKIODFxQCzfuXITvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271, serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: Aug 22 23:50:01 2025 GMT Not After : Aug 29 23:50:01 2025 GMT Subject: CN=68a90229-cf8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:62:ec:65:9c:b0:ad:de:f2:e1:45:7b:e9: 46:89:81:31:40:d7:4c:3d:c8:28:16:c5:81:0b:08: b5:1c:43:be:70:31:40:c7:5a:f1:44:9e:80:1b:f9: 40:04:45:e3:51:b5:2e:72:42:4a:dc:f7:f2:14:e9: 4a:c6:a0:26:04:b9:c6:43:9f:c5:c9:08:cc:3a:72: f5:ba:cc:d1:34:6b:57:68:8b:8f:8a:34:f9:20:de: d7:54:71:b5:d2:69:5c:36:33:51:46:36:77:c6:d5: a7:c1:78:d9:bd:d5:e9:23:4c:60:71:80:62:0d:6e: 69:d0:9d:2b:4c:aa:13:e7:79:6f:44:c7:d5:1e:b1: 6c:82:33:f3:83:f8:a1:b5:64:33:08:bb:fe:23:85: 0f:7c:59:77:c4:c4:49:41:b1:2c:f6:2e:5d:3c:14: 73:7d:f4:4e:d8:8b:52:4d:0f:01:4c:86:d6:19:14: b5:74:2b:e6:b4:ff:7b:0e:4b:44:5e:ac:17:c4:0d: 6b:3c:eb:c5:2a:1f:bb:47:83:80:83:9d:a8:58:0c: 13:67:d6:11:76:97:b1:d1:ce:27:38:d7:28:3e:ff: c2:6f:a9:71:b0:68:85:a5:91:e2:92:0e:53:ed:11: c6:1d:6f:d9:4a:14:2b:57:9a:c2:6c:f7:7c:87:42: 00:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6E:F5:7A:66:F7:41:6F:8F:38:64:78:14:3D:F1:6B:7B:8A:88:EE X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:79:34:4c:a6:95:c4:40:96:15:21:5b:c5:fe:ca:3e:c3:1f: 97:a5:4f:54:33:0d:25:6b:10:08:cc:7e:9b:62:22:85:ab:61: 7e:1b:d1:de:fb:ae:26:89:b6:5d:b5:c7:9e:96:9a:44:dc:6d: c8:81:5e:01:26:78:83:51:6d:e5:93:32:5d:94:d5:93:ea:e6: 6e:f2:8a:e4:0f:36:d3:4a:c0:5a:6a:04:d2:93:f7:38:94:64: 82:e2:aa:f9:68:c9:b8:8c:6c:b7:cf:73:06:07:c9:94:eb:8d: 60:88:eb:44:41:6e:6f:fc:7e:03:25:b2:94:43:55:69:d3:dc: 5d:6e:00:b3:a0:0d:7d:ce:c9:e6:a7:4b:44:76:74:64:df:01: 54:5b:2d:b3:7a:52:03:42:1c:8d:89:e4:5f:29:bf:82:96:f6: 74:60:28:7a:03:be:25:99:79:15:ad:8c:2e:67:58:2b:e7:35: 8d:db:7e:b2:be:1c:b9:af:42:6b:a5:9b:56:a4:4d:df:ca:b5: a0:25:a8:36:ba:01:fe:6c:0b:14:d4:c5:b0:bb:b9:a9:cf:6b: 42:51:63:fe:9b:c4:48:a5:b9:db:ba:92:a3:3d:b2:b3:6b:0c: a9:04:b6:69:e8:17:28:de:77:6f:13:2a:33:e1:2f:98:70:3f: 50:88:a3:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjUwODIyMjM1MDAxWhcNMjUwODI5MjM1MDAxWjAYMRYwFAYD VQQDEw02OGE5MDIyOS1jZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaxi7GWcsK3e8uFFe+lGiYExQNdMPcgoFsWBCwi1HEO+cDFAx1rxRJ6AG/lA BEXjUbUuckJK3PfyFOlKxqAmBLnGQ5/FyQjMOnL1uszRNGtXaIuPijT5IN7XVHG1 0mlcNjNRRjZ3xtWnwXjZvdXpI0xgcYBiDW5p0J0rTKoT53lvRMfVHrFsgjPzg/ih tWQzCLv+I4UPfFl3xMRJQbEs9i5dPBRzffRO2ItSTQ8BTIbWGRS1dCvmtP97DktE XqwXxA1rPOvFKh+7R4OAg52oWAwTZ9YRdpex0c4nONcoPv/Cb6lxsGiFpZHikg5T 7RHGHW/ZShQrV5rCbPd8h0IAzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVu9Xpm 90FvjzhkeBQ98Wt7iojuMB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODI3MS84MUY5RTJEMDFDNDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1y ZmdqWElQVEFsbVFiU2h5TVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCueTRMppXEQJYVIVvF/so+wx+XpU9UMw0laxAIzH6bYiKFq2F+G9He +64mibZdtceelppE3G3IgV4BJniDUW3lkzJdlNWT6uZu8orkDzbTSsBaagTSk/c4 lGSC4qr5aMm4jGy3z3MGB8mU641giOtEQW5v/H4DJbKUQ1Vp09xdbgCzoA19zsnm p0tEdnRk3wFUWy2zelIDQhyNieRfKb+ClvZ0YCh6A74lmXkVrYwuZ1gr5zWN236y vhy5r0JrpZtWpE3fyrWgJag2ugH+bAsU1MWwu7mpz2tCUWP+m8RIpbnbupKjPbKz awypBLZp6Bco3ndvEyoz4S+YcD9QiKNz -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:37 2025 by rpki-client