$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: 59HP6TKntBwdM9Xv5jg3NR8Qh56eeEQSuKusbTw1xBU= Subject key identifier: 49:A3:14:08:62:EC:CA:F8:F8:C6:A4:48:EF:70:7A:2B:20:37:D3:AA Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 067E Signing time: Fri 22 Aug 2025 22:34:11 +0000 Manifest this update: Fri 22 Aug 2025 22:34:11 +0000 Manifest next update: Fri 29 Aug 2025 22:34:11 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: W+qopSsxQ1NBf8poa/eSvi9OZNuqAT2+LoYc1vSffzo=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Aug 22 22:34:11 2025 GMT Not After : Aug 29 22:34:11 2025 GMT Subject: CN=68a8f063-3105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0c:b1:32:df:c4:de:3f:78:96:b3:b3:e4:2e: 34:9f:fa:d1:c3:40:fb:f4:5e:e1:d4:fa:0a:b8:ed: ee:2f:e7:69:d5:54:db:63:13:d1:61:b5:dc:0b:bc: 6c:8d:23:b5:fe:7e:ad:a6:2f:cd:78:13:a6:f3:9e: d5:a1:21:82:4f:d3:a1:13:3d:1b:1c:8b:c4:fd:e8: af:0a:77:01:f8:35:cd:01:41:23:40:24:df:11:cb: 9e:0c:a7:33:98:47:1e:cf:89:f3:0d:4e:a5:82:a1: 28:3f:1e:e1:56:71:16:78:62:4d:ed:2c:b0:a1:23: bc:6a:ff:70:f5:2b:3c:36:df:2f:01:d3:2b:f4:8d: b7:ea:cf:2d:44:cb:25:b8:3c:bb:9b:44:b9:87:f6: 7e:7e:3c:bb:ca:83:eb:96:d6:30:33:ac:31:3b:7f: bf:29:ba:cc:de:96:a2:dc:b8:e8:27:10:7f:e4:42: 47:11:19:85:9f:90:44:a4:8b:92:b5:71:77:4f:f6: 9f:08:57:47:17:c1:92:84:0b:3c:ee:76:2a:34:e3: 68:63:52:73:67:fa:0e:f5:26:e2:7d:2f:bc:d1:fc: a4:db:bc:5c:fd:e2:fb:18:5f:24:2a:70:10:43:f2: 97:d8:04:50:c7:f2:f8:95:0b:8a:95:de:00:ce:5d: ae:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A3:14:08:62:EC:CA:F8:F8:C6:A4:48:EF:70:7A:2B:20:37:D3:AA X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:aa:66:e5:a1:40:e8:0b:b4:6a:bb:60:01:33:98:9c:3f:7b: 9c:e9:8d:7e:ef:21:65:8b:bf:18:e3:3c:f6:c8:83:1f:50:83: 35:f5:27:e2:8d:94:ec:5f:d5:2b:02:14:ae:c4:23:87:ad:be: 09:f2:c6:4f:8f:90:7d:d6:bb:95:de:3e:93:2f:2e:48:e6:4a: dc:0a:a3:ff:b1:a4:7c:4f:e0:ad:d2:fb:88:63:02:54:e7:d9: 33:ad:b7:e2:1b:79:01:f9:4c:4e:4f:fb:4d:93:84:2f:6d:4d: da:7d:b3:17:21:ce:31:85:05:e1:6c:c3:33:e0:38:52:db:04: cd:d5:e7:11:01:fa:e6:6c:1c:8a:70:32:80:ab:c6:b1:6b:6e: 71:d3:b7:be:bb:67:4a:b7:f9:0a:29:35:9d:3e:d7:14:1a:a7: 23:8d:59:11:c9:1a:e3:f5:0d:55:e5:6c:26:8a:4e:6f:07:f5: 89:ed:68:a6:f1:18:c3:6a:fa:cb:a9:c7:ca:d4:56:0d:b1:e4: f9:72:6b:26:ba:da:37:8b:c6:85:d0:94:ae:63:b1:6c:2f:72: a7:e9:46:e6:24:a7:30:8d:35:b5:10:66:0f:dc:38:f9:6d:8c: d7:58:f3:5d:03:8d:90:05:70:1f:f9:ef:50:a7:1c:04:c5:7d: ba:77:51:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUwODIyMjIzNDExWhcNMjUwODI5MjIzNDExWjAYMRYwFAYD VQQDEw02OGE4ZjA2My0zMTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgyxMt/E3j94lrOz5C40n/rRw0D79F7h1PoKuO3uL+dp1VTbYxPRYbXcC7xs jSO1/n6tpi/NeBOm857VoSGCT9OhEz0bHIvE/eivCncB+DXNAUEjQCTfEcueDKcz mEcez4nzDU6lgqEoPx7hVnEWeGJN7SywoSO8av9w9Ss8Nt8vAdMr9I236s8tRMsl uDy7m0S5h/Z+fjy7yoPrltYwM6wxO3+/KbrM3pai3LjoJxB/5EJHERmFn5BEpIuS tXF3T/afCFdHF8GShAs87nYqNONoY1JzZ/oO9SbifS+80fyk27xc/eL7GF8kKnAQ Q/KX2ARQx/L4lQuKld4Azl2uAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmjFAhi 7Mr4+MakSO9weisgN9OqMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLqmbloUDoC7Rqu2ABM5icP3uc6Y1+7yFli78Y4zz2yIMfUIM19Sfi jZTsX9UrAhSuxCOHrb4J8sZPj5B91ruV3j6TLy5I5krcCqP/saR8T+Ct0vuIYwJU 59kzrbfiG3kB+UxOT/tNk4QvbU3afbMXIc4xhQXhbMMz4DhS2wTN1ecRAfrmbByK cDKAq8axa25x07e+u2dKt/kKKTWdPtcUGqcjjVkRyRrj9Q1V5Wwmik5vB/WJ7Wim 8RjDavrLqcfK1FYNseT5cmsmuto3i8aF0JSuY7FsL3Kn6UbmJKcwjTW1EGYP3Dj5 bYzXWPNdA42QBXAf+e9QpxwExX26d1Gp -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:40 2025 by rpki-client