$ rpki-client -vvf rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft File: -XxrnwabbALLPY6tWvc-UGwIyjg.mft (raw, json) Hash identifier: 6svzC+jKoJbN0oJcYDNtBJX9j9fNGrgHB32DAfN9nfc= Subject key identifier: 7F:39:60:55:34:21:EA:86:C2:41:30:8D:B1:6D:E8:0D:89:92:1A:AE Authority key identifier: F9:7C:6B:9F:06:9B:6C:02:CB:3D:8E:AD:5A:F7:3E:50:6C:08:CA:38 Certificate issuer: /CN=A914DB69/serialNumber=F97C6B9F069B6C02CB3D8EAD5AF73E506C08CA38 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft Manifest number: 015C Signing time: Sat 23 Aug 2025 04:13:12 +0000 Manifest this update: Sat 23 Aug 2025 04:13:12 +0000 Manifest next update: Sat 30 Aug 2025 04:13:12 +0000 Files and hashes: 1: -XxrnwabbALLPY6tWvc-UGwIyjg.crl (hash: M9DB2RbyZtMJvI5AN2xr1w8pssrP3c6RTy9IyxKOKyc=) 2: C4AA7A3A6E5F11EE9F66E967C4F9AE02.roa (hash: B+UIB58IevJFHi1QUj4sqmfL/RMK0LGyhhucuugtqng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.crl rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DB69, serialNumber=F97C6B9F069B6C02CB3D8EAD5AF73E506C08CA38 Validity Not Before: Aug 23 04:13:12 2025 GMT Not After : Aug 30 04:13:12 2025 GMT Subject: CN=68a93fd8-0ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d8:9f:67:b7:d1:64:ea:60:ea:a4:ab:24:c2: c6:70:d7:ae:7e:50:06:12:86:31:64:d7:7e:fc:fd: 24:54:76:13:ee:33:13:f6:0e:a1:e8:92:b7:30:7d: 2e:d9:68:08:16:8a:ac:04:de:ce:6b:39:e4:ed:05: a0:c6:50:e1:f9:f0:04:10:2d:65:81:26:ef:dd:85: fc:ab:cc:50:10:e0:19:9a:63:9d:56:2a:29:3b:ce: 33:c6:fe:7c:6b:7e:4d:15:af:48:ed:44:fc:c7:c5: e2:c6:4c:de:a5:84:93:ee:98:40:2e:d0:af:0c:fe: b2:d0:ad:98:d7:22:b0:49:d4:41:bc:d7:4e:54:e0: 4f:a0:a7:36:48:29:2f:5f:81:31:9b:e6:cc:e9:5d: 03:ce:5a:3f:30:ca:6e:77:c0:b4:ed:c9:d3:e6:cc: a0:b0:73:6a:75:cb:e8:d6:f4:32:1a:df:1e:1c:d5: 27:1d:01:ca:f4:05:f2:e4:21:b4:d3:da:68:80:66: 12:22:e8:9b:f7:a3:93:23:e4:ce:5f:e2:fa:1e:4f: 48:c7:74:04:c1:c3:f2:e3:63:54:ef:98:0c:87:82: a3:02:83:6b:95:64:b5:8b:c0:b9:9e:c1:f6:bb:d5: 53:ab:ff:f4:4f:cc:a0:d8:49:d9:09:5f:0a:a3:74: 7b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:39:60:55:34:21:EA:86:C2:41:30:8D:B1:6D:E8:0D:89:92:1A:AE X509v3 Authority Key Identifier: keyid:F9:7C:6B:9F:06:9B:6C:02:CB:3D:8E:AD:5A:F7:3E:50:6C:08:CA:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XxrnwabbALLPY6tWvc-UGwIyjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DB69/DA860CC86E5C11EE9C013361C4F9AE02/-XxrnwabbALLPY6tWvc-UGwIyjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2d:bc:9e:f0:a4:0a:0b:ad:30:61:ab:14:17:ea:8e:17:52: 80:63:a5:0d:55:3f:53:59:22:92:cf:52:c5:04:84:59:2e:e0: 1b:d9:2e:d2:c7:e0:51:bd:78:c4:c9:a7:26:3d:ab:62:ff:4a: 9b:66:e6:c9:e6:1d:21:4d:ff:f0:bd:25:63:57:67:3d:fb:c4: db:72:bc:64:de:0f:15:9c:fd:8b:bd:48:a9:a9:4e:52:fa:d8: a7:59:4c:bb:2c:89:40:49:13:3b:99:a7:e4:78:88:41:93:ed: 74:f7:33:0f:30:d5:dd:c0:55:ec:ac:04:9e:8d:e9:e0:b1:61: 68:63:ef:e9:96:60:bb:b7:53:8f:ee:b7:61:02:05:7b:b2:a1: 05:eb:7b:8b:58:a0:ab:3b:1a:40:55:7d:6f:f5:47:3f:73:8e: c4:f2:f2:50:2e:e6:77:67:e3:00:ad:8b:bf:f2:8c:7b:24:77: 6d:fd:e1:35:60:91:8b:c8:1f:fe:79:94:a5:2e:1b:9c:66:51: f3:da:18:03:fa:c2:2c:3b:55:84:27:71:d9:ad:0b:8c:11:85: 2a:a6:a4:45:87:70:3e:59:ed:f5:17:6c:2e:4d:78:59:89:e3: 10:f7:bd:95:80:8f:2d:6c:f0:c5:8e:9f:f7:4d:0d:3b:e3:14: ba:9d:ea:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERCNjkxMTAvBgNVBAUTKEY5N0M2QjlGMDY5QjZDMDJDQjNEOEVBRDVBRjczRTUw NkMwOENBMzgwHhcNMjUwODIzMDQxMzEyWhcNMjUwODMwMDQxMzEyWjAYMRYwFAYD VQQDEw02OGE5M2ZkOC0wZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NifZ7fRZOpg6qSrJMLGcNeuflAGEoYxZNd+/P0kVHYT7jMT9g6h6JK3MH0u 2WgIFoqsBN7Oaznk7QWgxlDh+fAEEC1lgSbv3YX8q8xQEOAZmmOdViopO84zxv58 a35NFa9I7UT8x8XixkzepYST7phALtCvDP6y0K2Y1yKwSdRBvNdOVOBPoKc2SCkv X4Exm+bM6V0Dzlo/MMpud8C07cnT5sygsHNqdcvo1vQyGt8eHNUnHQHK9AXy5CG0 09pogGYSIuib96OTI+TOX+L6Hk9Ix3QEwcPy42NU75gMh4KjAoNrlWS1i8C5nsH2 u9VTq//0T8yg2EnZCV8Ko3R7AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH85YFU0 IeqGwkEwjbFt6A2JkhquMB8GA1UdIwQYMBaAFPl8a58Gm2wCyz2OrVr3PlBsCMo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REI2OS9EQTg2MENDODZF NUMxMUVFOUMwMTMzNjFDNEY5QUUwMi8tWHhybndhYmJBTExQWTZ0V3ZjLVVHd0l5 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeHJud2FiYkFMTFBZNnRXdmMtVUd3SXlqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REI2OS9EQTg2MENDODZFNUMxMUVFOUMwMTMzNjFDNEY5QUUwMi8tWHhybndhYmJB TExQWTZ0V3ZjLVVHd0l5amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtLbye8KQKC60wYasUF+qOF1KAY6UNVT9TWSKSz1LFBIRZLuAb2S7S x+BRvXjEyacmPati/0qbZubJ5h0hTf/wvSVjV2c9+8Tbcrxk3g8VnP2LvUipqU5S +tinWUy7LIlASRM7mafkeIhBk+109zMPMNXdwFXsrASejengsWFoY+/plmC7t1OP 7rdhAgV7sqEF63uLWKCrOxpAVX1v9Uc/c47E8vJQLuZ3Z+MArYu/8ox7JHdt/eE1 YJGLyB/+eZSlLhucZlHz2hgD+sIsO1WEJ3HZrQuMEYUqpqRFh3A+We31F2wuTXhZ ieMQ972VgI8tbPDFjp/3TQ074xS6neqN -----END CERTIFICATE-----Generated at Sat Aug 23 21:58:47 2025 by rpki-client