$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: AQ/owwTT8F/C0RrnkvVexmpBA0TAm+dLIh+rkRc8j9g= Subject key identifier: 2F:0D:5C:6D:F0:A4:57:ED:75:AB:A5:EF:0D:99:5D:00:13:BB:88:7F Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 01A4 Signing time: Sat 23 Aug 2025 03:22:43 +0000 Manifest this update: Sat 23 Aug 2025 03:22:42 +0000 Manifest next update: Sat 30 Aug 2025 03:22:42 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: 21Mr5TIlQmvNV9YrNtSqloCJBiCOg83eKbpiZz9pZNI=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4, serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: Aug 23 03:22:42 2025 GMT Not After : Aug 30 03:22:42 2025 GMT Subject: CN=68a93402-e090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:60:c7:37:23:ec:ce:15:8e:3c:8d:44:9c:4b: 8f:66:9f:ab:62:a1:3b:b6:38:51:32:28:12:0c:9a: 5c:f3:46:22:0c:c4:82:f7:c9:31:24:a8:f5:79:93: 04:5f:0e:6d:90:1f:82:38:0e:11:cb:52:17:b9:ea: 52:14:76:e3:2c:23:d4:db:31:8b:d9:de:21:c5:bd: c0:05:5f:45:93:4c:cf:29:26:0c:30:65:99:a2:85: e9:33:f0:4d:5a:37:66:ca:70:9b:1e:57:2a:28:3a: 7d:c5:65:6b:c1:a5:c9:61:6d:36:84:b8:28:36:54: b9:ec:8e:0b:74:7c:fe:51:c2:0f:6d:9e:95:70:78: cd:92:2c:70:16:c3:8e:5c:b8:81:84:d8:62:f9:5e: 94:9a:b5:3f:e9:e9:33:b0:2e:fc:a3:6d:88:be:73: 0f:89:39:25:14:7e:82:94:f7:5f:59:b0:de:f1:a2: 92:35:7b:5a:19:76:b2:73:31:ee:ec:0e:d6:80:4a: 6d:28:04:1c:e2:66:f3:af:6c:c8:1d:c2:06:09:72: 37:b4:9a:93:0e:90:5b:9b:34:29:a0:91:5a:ee:c9: 47:59:2d:b5:4c:92:bb:9b:e9:32:05:43:a6:3c:0b: 2a:ca:9d:2a:70:0c:81:97:ef:22:18:0c:56:60:b4: 41:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0D:5C:6D:F0:A4:57:ED:75:AB:A5:EF:0D:99:5D:00:13:BB:88:7F X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f6:ab:f9:f9:d5:42:b4:eb:61:2d:f4:99:d8:a7:82:f9:fa: 7a:92:c7:a5:a7:15:f8:d1:81:c6:2c:5b:ed:d3:12:e5:89:35: 31:f6:3b:e4:34:2d:dd:80:64:6d:a8:73:c7:43:99:a9:14:e8: 6f:7d:60:93:7c:d9:e5:66:3a:5d:fe:81:97:3c:54:5c:a8:70: 40:9c:92:71:d9:2b:2c:67:7f:f5:13:8a:a7:10:6f:cd:2d:42: aa:b0:08:0f:4f:5e:2b:35:7c:69:3a:13:26:8d:ed:e8:81:42: 13:23:83:9f:b8:72:1b:0e:de:9c:01:fc:be:36:03:7d:f8:64: ea:42:19:ca:67:ac:5e:f6:e3:aa:8b:34:f8:11:dc:0c:f1:f2: cd:11:51:b9:a3:3c:f6:81:fc:c6:1d:8f:c2:1a:57:fe:07:4f: f1:d8:a9:93:69:af:49:51:9e:08:d4:60:2f:fd:15:af:76:ae: fe:87:3d:9b:25:1a:bc:a8:3f:d5:dd:20:67:6b:a1:e1:d1:c0: b2:05:a3:ef:2b:ea:9d:d7:1f:20:ae:75:1a:a3:b9:88:89:ea: a5:69:80:cb:10:51:65:d0:5f:0f:9b:79:9d:47:0d:46:20:80: d7:f1:f0:2b:cd:db:56:95:d6:9b:d4:fe:33:d4:2a:6c:5a:4a: c0:3b:d0:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUwODIzMDMyMjQyWhcNMjUwODMwMDMyMjQyWjAYMRYwFAYD VQQDEw02OGE5MzQwMi1lMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2DHNyPszhWOPI1EnEuPZp+rYqE7tjhRMigSDJpc80YiDMSC98kxJKj1eZME Xw5tkB+COA4Ry1IXuepSFHbjLCPU2zGL2d4hxb3ABV9Fk0zPKSYMMGWZooXpM/BN WjdmynCbHlcqKDp9xWVrwaXJYW02hLgoNlS57I4LdHz+UcIPbZ6VcHjNkixwFsOO XLiBhNhi+V6UmrU/6ekzsC78o22IvnMPiTklFH6ClPdfWbDe8aKSNXtaGXayczHu 7A7WgEptKAQc4mbzr2zIHcIGCXI3tJqTDpBbmzQpoJFa7slHWS21TJK7m+kyBUOm PAsqyp0qcAyBl+8iGAxWYLRBQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8NXG3w pFftdaul7w2ZXQATu4h/MB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK9qv5+dVCtOthLfSZ2KeC+fp6kselpxX40YHGLFvt0xLliTUx9jvk NC3dgGRtqHPHQ5mpFOhvfWCTfNnlZjpd/oGXPFRcqHBAnJJx2SssZ3/1E4qnEG/N LUKqsAgPT14rNXxpOhMmje3ogUITI4OfuHIbDt6cAfy+NgN9+GTqQhnKZ6xe9uOq izT4EdwM8fLNEVG5ozz2gfzGHY/CGlf+B0/x2KmTaa9JUZ4I1GAv/RWvdq7+hz2b JRq8qD/V3SBna6Hh0cCyBaPvK+qd1x8grnUao7mIieqlaYDLEFFl0F8Pm3mdRw1G IIDX8fArzdtWldab1P4z1CpsWkrAO9Ah -----END CERTIFICATE-----Generated at Sat Aug 23 19:08:04 2025 by rpki-client