$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft File: XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft (raw, json) Hash identifier: YX9axpnnz545zoZf9U4CCYBGnuqFOKYNBLGcCc5m72A= Subject key identifier: 8B:7A:70:B4:3F:78:9F:B9:B5:D0:2E:A9:86:21:9B:B4:51:3C:32:0B Authority key identifier: 5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC Certificate issuer: /CN=A914F870/serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft Manifest number: 6E Signing time: Sat 23 Aug 2025 07:09:07 +0000 Manifest this update: Sat 23 Aug 2025 07:09:07 +0000 Manifest next update: Sat 30 Aug 2025 07:09:07 +0000 Files and hashes: 1: XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl (hash: lhW21LuqzjrblJUF/X1DefvCjJq5J2cC+DPKZvkyVBU=) 2: 212A832AD7E311EF86266212C4F9AE02.roa (hash: OADH0Zf3ANJ0fVSGo4++5SGmG3UFA33H5Jy/cHOt0/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Validity Not Before: Aug 23 07:09:07 2025 GMT Not After : Aug 30 07:09:07 2025 GMT Subject: CN=68a96913-3a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:38:c8:6f:d3:34:7d:33:84:5d:e8:a7:a7:b9: 9a:2f:b3:a1:82:23:a8:3e:c7:00:c8:91:9f:fc:28: 33:2f:34:30:af:58:d9:ff:8e:22:36:d0:69:6b:bc: aa:87:ca:b0:32:49:27:dc:7b:96:08:85:29:a6:a6: 5a:b3:04:2a:e3:2d:fe:99:9f:96:3b:f1:56:a3:63: 24:a5:6c:5d:c5:9d:a8:d1:60:7b:7e:3d:ec:17:3a: c2:c9:79:cf:fd:3d:d3:7a:98:32:ef:ac:1f:6a:44: ee:e2:0c:e4:a6:fc:0c:fd:2d:dc:39:14:e6:8b:91: c2:60:a1:5c:26:ab:a1:b2:dd:ce:e1:a1:bf:13:8a: 30:d3:8e:45:15:3d:10:6a:f0:19:b4:78:19:64:79: bc:2e:30:96:fa:8d:41:82:11:9b:d8:d6:91:5d:79: a1:49:4c:94:58:b0:17:bb:96:9e:0b:c7:a8:f8:cc: 5a:80:d2:ff:09:41:f0:1b:6d:bb:75:72:6a:91:98: 5e:9b:0b:77:54:7b:03:ab:c9:78:34:d0:c0:4d:1f: 81:1f:d8:00:8a:80:c0:c7:8e:36:53:8c:3d:d2:f1: 12:4f:c8:9a:56:bd:f3:cc:97:a0:3d:74:3e:24:e2: ce:db:a8:81:cf:8d:6c:84:ac:2d:53:5d:01:8a:8f: e5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7A:70:B4:3F:78:9F:B9:B5:D0:2E:A9:86:21:9B:B4:51:3C:32:0B X509v3 Authority Key Identifier: keyid:5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:8b:51:1f:12:78:9c:28:88:51:8a:af:20:fc:4b:d9:03:0c: 16:bb:32:25:d8:db:21:f5:1d:a2:62:3a:4f:82:33:4b:25:4d: f2:24:45:fe:1e:c1:1d:12:9a:db:3d:5e:9d:93:4e:e3:8b:48: 52:25:fc:62:fe:57:22:90:78:58:6b:4a:eb:0f:66:35:54:03: 2a:80:51:c3:53:8a:f2:2b:e8:45:3e:4a:21:d6:72:96:fe:e6: 55:e3:78:9b:2f:cd:aa:da:f9:a8:64:90:40:bc:2f:0c:41:be: ea:f6:a2:48:04:a1:c1:b5:42:21:fa:9e:97:48:1d:3e:9f:d1: 5a:3e:97:71:8c:c1:4a:a1:89:55:17:f1:7d:27:84:9a:f5:e5: fd:9f:e0:29:b3:30:dd:20:3a:d0:3d:b1:d4:33:5b:06:5a:f5: e6:4b:72:38:ae:ed:fa:f4:2b:46:15:18:10:b0:40:b1:d2:3b: 0f:83:15:ee:6d:83:71:09:de:70:d2:d0:07:03:51:46:54:c3: 92:dc:bf:03:9d:6c:3c:5d:98:41:c8:10:95:ab:1f:ac:a1:c9: bd:49:a0:97:ac:19:6f:c5:4e:65:d8:dd:42:66:f5:9b:bd:30: 8d:65:a8:d7:f1:e4:6e:f8:0f:ef:a7:40:0a:e8:2e:a7:cc:c7: 48:cd:b6:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoNUQ1NUYxNTA5QjZGMDM0MjREMjk0NEY4MTFGODY5OTM4 MDk5QkJCQzAeFw0yNTA4MjMwNzA5MDdaFw0yNTA4MzAwNzA5MDdaMBgxFjAUBgNV BAMTDTY4YTk2OTEzLTNhN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1OMhv0zR9M4Rd6KenuZovs6GCI6g+xwDIkZ/8KDMvNDCvWNn/jiI20GlrvKqH yrAySSfce5YIhSmmplqzBCrjLf6Zn5Y78VajYySlbF3FnajRYHt+PewXOsLJec/9 PdN6mDLvrB9qRO7iDOSm/Az9Ldw5FOaLkcJgoVwmq6Gy3c7hob8TijDTjkUVPRBq 8Bm0eBlkebwuMJb6jUGCEZvY1pFdeaFJTJRYsBe7lp4Lx6j4zFqA0v8JQfAbbbt1 cmqRmF6bC3dUewOryXg00MBNH4Ef2ACKgMDHjjZTjD3S8RJPyJpWvfPMl6A9dD4k 4s7bqIHPjWyErC1TXQGKj+W5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi3pwtD94 n7m10C6phiGbtFE8MgswHwYDVR0jBBgwFoAUXVXxUJtvA0JNKUT4Efhpk4CZu7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0M5MjQyNDZBRDdF MjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBKTktVVDRFZmhwazRDWnU3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFZYeFVKdHZBMEpOS1VUNEVmaHBrNENadTd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0M5MjQyNDZBRDdFMjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBK TktVVDRFZmhwazRDWnU3dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADeLUR8SeJwoiFGKryD8S9kDDBa7MiXY2yH1HaJiOk+CM0slTfIkRf4e wR0Smts9Xp2TTuOLSFIl/GL+VyKQeFhrSusPZjVUAyqAUcNTivIr6EU+SiHWcpb+ 5lXjeJsvzara+ahkkEC8LwxBvur2okgEocG1QiH6npdIHT6f0Vo+l3GMwUqhiVUX 8X0nhJr15f2f4CmzMN0gOtA9sdQzWwZa9eZLcjiu7fr0K0YVGBCwQLHSOw+DFe5t g3EJ3nDS0AcDUUZUw5LcvwOdbDxdmEHIEJWrH6yhyb1JoJesGW/FTmXY3UJm9Zu9 MI1lqNfx5G74D++nQAroLqfMx0jNtsw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:46:38 2025 by rpki-client