$ rpki-client -vvf rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft (raw, json) Hash identifier: i2Uzqo29lgcXDs4QwOe7p3jiFuCq/jRb3anMyHbWzfk= Subject key identifier: 4C:C1:EB:AA:64:7B:AE:07:31:10:65:31:57:28:81:3D:3F:AA:E4:15 Authority key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 Certificate issuer: /CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft Manifest number: 069C Signing time: Fri 22 Aug 2025 22:22:08 +0000 Manifest this update: Fri 22 Aug 2025 22:22:07 +0000 Manifest next update: Fri 29 Aug 2025 22:22:07 +0000 Files and hashes: 1: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl (hash: qBJsqhMVOFjXWfZctWWyj/OcY+AignNRENYsn/ZqNt0=) 2: 546C2E447BD711EB8DB97853C4F9AE02.roa (hash: LymCYpP9ODjDnMZgIvd8/QCM8E6rGc1JYF+pBCdV8o4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D05C, serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Validity Not Before: Aug 22 22:22:07 2025 GMT Not After : Aug 29 22:22:07 2025 GMT Subject: CN=68a8ed8f-87ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:66:fa:b5:64:bc:ea:88:a0:f7:40:71:56:08: d3:a2:3f:b9:3b:dd:ae:1e:8c:77:50:53:5e:0a:e5: f1:d4:19:a2:df:ac:4e:45:36:0e:ad:c0:ed:ad:17: b2:f5:9e:cc:04:34:f0:6e:5e:c9:3f:51:8f:b9:2c: 9d:53:69:6e:01:3f:10:61:ff:e9:d5:c3:81:08:ce: 10:f4:5d:5b:2e:8f:93:58:02:8b:ec:57:b7:ea:90: 8c:04:5b:d5:e1:ea:05:30:fe:06:b2:dd:f7:17:33: c0:09:8d:ba:26:1f:c6:88:3b:ab:5d:57:30:7a:4f: be:ff:25:35:88:33:e3:1a:b2:01:1a:21:07:26:2e: c0:10:cf:d6:67:5f:a6:fb:8f:5c:4f:20:89:7a:c4: b2:a3:50:d9:21:28:71:4f:d6:6a:1a:29:80:d2:c0: 10:9a:3c:1e:c9:28:06:ff:0f:c8:c5:76:9b:94:76: fb:a0:d1:2d:cf:0d:23:b2:f9:bc:c5:a9:2b:b4:4d: 25:37:70:78:34:33:a8:16:3d:7f:1a:59:64:4d:4b: 12:25:4c:30:7e:2e:e1:68:f1:22:e6:eb:82:ee:f4: 96:f9:67:ae:cb:4f:11:1d:01:92:c9:4d:08:22:d2: 32:96:9c:ac:e1:08:44:7b:74:13:c4:dc:a0:55:85: 9d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C1:EB:AA:64:7B:AE:07:31:10:65:31:57:28:81:3D:3F:AA:E4:15 X509v3 Authority Key Identifier: keyid:C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:73:0f:26:4f:80:6e:74:06:25:c2:2d:b7:0b:5f:1b:94:b9: 4b:66:f4:56:ca:59:e9:42:a2:c4:52:73:7f:a5:d6:26:fd:61: 5e:12:54:2d:7e:f6:6b:1f:6c:fb:99:84:ce:34:fd:3f:d1:3d: 06:44:72:5b:b2:da:03:89:51:3e:0e:88:34:c1:6c:a8:24:0d: eb:13:41:55:c1:3b:fe:7e:57:ef:7e:5c:8e:e6:e1:64:c7:fc: 34:53:55:28:56:e3:e6:b4:0b:b7:5f:20:80:1a:06:07:c1:0e: f0:80:d4:0d:3c:7d:c0:9a:25:a2:fb:1c:97:64:b9:83:8e:3c: 40:db:ec:ae:be:ec:e9:2f:09:c0:ac:18:8e:0e:ee:44:55:c1: 5e:b3:c5:45:e7:0e:38:14:25:3d:99:ec:ca:ef:3c:83:a6:44: c8:82:36:f9:b7:6e:21:ca:0c:c7:2b:d0:71:fb:18:72:ca:41: 45:79:02:90:40:d9:ae:ea:fd:54:d7:f9:1a:7d:2a:d2:9d:20: ac:94:87:00:af:5e:c4:3a:d4:03:9e:22:f2:fc:56:cc:22:c5: 8b:09:07:16:34:b2:10:21:8c:28:ef:2c:b5:5e:73:7c:3f:3d: 71:64:19:9d:0d:1d:92:df:f1:07:c6:73:02:ad:1b:2a:c0:22: 14:dd:a3:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwNUMxMTAvBgNVBAUTKEM2OTM5OUIxMzJFMUFFNkIyRUEzMTE2RTE0QjEwMDFD MDgxOUREQTkwHhcNMjUwODIyMjIyMjA3WhcNMjUwODI5MjIyMjA3WjAYMRYwFAYD VQQDEw02OGE4ZWQ4Zi04N2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmb6tWS86oig90BxVgjToj+5O92uHox3UFNeCuXx1Bmi36xORTYOrcDtrRey 9Z7MBDTwbl7JP1GPuSydU2luAT8QYf/p1cOBCM4Q9F1bLo+TWAKL7Fe36pCMBFvV 4eoFMP4Gst33FzPACY26Jh/GiDurXVcwek++/yU1iDPjGrIBGiEHJi7AEM/WZ1+m +49cTyCJesSyo1DZIShxT9ZqGimA0sAQmjweySgG/w/IxXablHb7oNEtzw0jsvm8 xakrtE0lN3B4NDOoFj1/GllkTUsSJUwwfi7haPEi5uuC7vSW+Weuy08RHQGSyU0I ItIylpys4QhEe3QTxNygVYWdwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzB66pk e64HMRBlMVcogT0/quQVMB8GA1UdIwQYMBaAFMaTmbEy4a5rLqMRbhSxABwIGd2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDA1Qy9ERUNFMEYwQTdC RDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJtc3VveEZ1RkxFQUhBZ1oz YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwT1pzVExocm1zdW94RnVGTEVBSEFnWjNhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDA1Qy9ERUNFMEYwQTdCRDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJt c3VveEZ1RkxFQUhBZ1ozYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFcw8mT4BudAYlwi23C18blLlLZvRWylnpQqLEUnN/pdYm/WFeElQt fvZrH2z7mYTONP0/0T0GRHJbstoDiVE+Dog0wWyoJA3rE0FVwTv+flfvflyO5uFk x/w0U1UoVuPmtAu3XyCAGgYHwQ7wgNQNPH3AmiWi+xyXZLmDjjxA2+yuvuzpLwnA rBiODu5EVcFes8VF5w44FCU9mezK7zyDpkTIgjb5t24hygzHK9Bx+xhyykFFeQKQ QNmu6v1U1/kafSrSnSCslIcAr17EOtQDniLy/FbMIsWLCQcWNLIQIYwo7yy1XnN8 Pz1xZBmdDR2S3/EHxnMCrRsqwCIU3aOn -----END CERTIFICATE-----Generated at Sat Aug 23 21:30:59 2025 by rpki-client