$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: 98A0djar4WDZLEiz1kmS3BvctsWlvoXRLHW7gqXn4EM= Subject key identifier: CD:7F:9A:0C:E5:79:B0:8F:A8:12:B8:98:4F:24:E5:8D:88:FD:7C:77 Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 066A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0663 Signing time: Fri 22 Aug 2025 22:43:43 +0000 Manifest this update: Fri 22 Aug 2025 22:43:42 +0000 Manifest next update: Fri 29 Aug 2025 22:43:42 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: QUm04b3D0IYWO9UCGFD3F3fGNiC27DjTEDoE1FwxDT8=) 2: AB791BEE7BC711F0B0A56A74C4F9AE02.roa (hash: lK7bGVCygyPQRcWZjT3XlPriu2CyfUJlUxTwi2dzB50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Aug 22 22:43:42 2025 GMT Not After : Aug 29 22:43:42 2025 GMT Subject: CN=68a8f29f-0e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:33:c3:f6:b4:cd:09:7f:e1:7e:30:4f:c0:9a: 0c:a5:d8:f7:f8:b9:89:7f:06:95:52:5e:25:86:73: 18:92:6d:56:71:95:75:dc:f4:da:a9:87:65:26:0a: fa:4c:5d:da:70:39:d0:fe:e5:73:76:8c:a7:34:50: 17:d8:f6:98:18:72:c0:3d:d6:c2:ed:db:97:d8:5f: 31:1d:38:aa:1a:27:63:99:b0:b4:84:13:e8:fa:30: 71:74:eb:ce:09:8a:69:8c:3d:3e:76:51:35:8f:0c: f8:35:88:9b:90:1d:4c:fa:3e:63:f0:2c:79:b5:62: e9:c8:2b:8a:6b:64:6a:a1:d4:4d:03:3a:68:d7:c0: ef:23:2b:36:03:bd:4d:1d:44:82:6b:90:6c:27:a6: bc:bc:4c:46:2b:59:d6:f4:f9:fd:56:0a:91:f0:56: 65:11:d4:59:cd:be:3e:f8:58:6a:3a:22:b1:9b:f5: 6e:e7:39:a7:84:b9:b4:56:e5:2f:e2:c8:60:04:39: 4b:08:c2:8d:06:61:f4:8c:50:9f:6e:10:e4:d8:6f: ef:4f:51:6f:e2:cd:0c:4d:22:61:24:30:56:75:c1: 59:f3:96:42:ba:90:4f:ea:02:9a:65:cc:cd:21:92: b7:09:e4:f9:13:07:a2:19:45:94:f3:bf:0b:62:ef: d4:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:7F:9A:0C:E5:79:B0:8F:A8:12:B8:98:4F:24:E5:8D:88:FD:7C:77 X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:02:f8:05:9f:f3:f6:51:57:2e:29:99:08:58:56:8b:cc:cb: cd:df:66:53:5e:c8:50:2b:95:36:72:dc:f0:89:06:b1:eb:67: e1:ec:88:27:2e:89:bb:3a:c9:a6:57:d7:10:ce:d4:75:4c:cb: aa:60:de:01:59:9a:eb:22:bb:e1:c3:ba:71:f0:30:41:aa:a1: a9:2a:a2:64:19:1e:f3:fe:bc:68:49:31:a3:b2:94:6a:9d:85: 68:c2:c3:bb:15:63:fa:de:a5:10:b6:90:d1:d3:8d:ea:54:e4: 6a:37:8a:d3:77:a6:7d:13:df:a8:2b:91:2b:7f:7e:7b:6e:a0: 10:24:58:f8:b6:00:e4:b9:a7:08:23:0f:05:22:a1:64:4b:3b: 70:8f:e2:10:8f:a3:c8:7d:c3:b4:2a:45:78:e9:1e:64:02:ed: 40:43:ca:ed:ed:f7:9a:83:e3:75:a5:e0:f7:8d:70:61:88:2d: 43:6d:a2:c8:96:9b:03:d2:42:c9:b1:5f:0b:5c:a3:3d:a0:db: 9b:d5:2b:8a:82:a6:36:97:6e:58:3c:a6:1d:1a:af:71:d8:2b: 54:c8:68:e6:c2:b7:e2:e6:6b:28:14:03:26:88:2c:94:94:48: 88:c0:3a:5c:19:cd:a5:39:bc:f5:62:88:0b:51:9f:2f:33:06: a1:ac:d5:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUwODIyMjI0MzQyWhcNMjUwODI5MjI0MzQyWjAYMRYwFAYD VQQDEw02OGE4ZjI5Zi0wZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TPD9rTNCX/hfjBPwJoMpdj3+LmJfwaVUl4lhnMYkm1WcZV13PTaqYdlJgr6 TF3acDnQ/uVzdoynNFAX2PaYGHLAPdbC7duX2F8xHTiqGidjmbC0hBPo+jBxdOvO CYppjD0+dlE1jwz4NYibkB1M+j5j8Cx5tWLpyCuKa2RqodRNAzpo18DvIys2A71N HUSCa5BsJ6a8vExGK1nW9Pn9VgqR8FZlEdRZzb4++FhqOiKxm/Vu5zmnhLm0VuUv 4shgBDlLCMKNBmH0jFCfbhDk2G/vT1Fv4s0MTSJhJDBWdcFZ85ZCupBP6gKaZczN IZK3CeT5EweiGUWU878LYu/UywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1/mgzl ebCPqBK4mE8k5Y2I/Xx3MB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQAvgFn/P2UVcuKZkIWFaLzMvN32ZTXshQK5U2ctzwiQax62fh7Ign Lom7OsmmV9cQztR1TMuqYN4BWZrrIrvhw7px8DBBqqGpKqJkGR7z/rxoSTGjspRq nYVowsO7FWP63qUQtpDR043qVORqN4rTd6Z9E9+oK5Erf357bqAQJFj4tgDkuacI Iw8FIqFkSztwj+IQj6PIfcO0KkV46R5kAu1AQ8rt7feag+N1peD3jXBhiC1DbaLI lpsD0kLJsV8LXKM9oNub1SuKgqY2l25YPKYdGq9x2CtUyGjmwrfi5msoFAMmiCyU lEiIwDpcGc2lObz1YogLUZ8vMwahrNVv -----END CERTIFICATE-----Generated at Sat Aug 23 20:17:27 2025 by rpki-client