$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: KxYTw7quFVfM3RZjZCFYRE7+yq2WgPzjCGguuCXiK6c= Subject key identifier: C5:97:3E:F5:0D:73:8F:44:AF:AE:22:46:D4:EA:21:54:1C:3C:EA:85 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0214 Signing time: Sat 23 Aug 2025 02:15:59 +0000 Manifest this update: Sat 23 Aug 2025 02:15:59 +0000 Manifest next update: Sat 30 Aug 2025 02:15:59 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: /lakbgXmb+EWl3Nnss5TeN0XeIezTTuDLhjEnIO+FBw=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Aug 23 02:15:59 2025 GMT Not After : Aug 30 02:15:59 2025 GMT Subject: CN=68a9245f-3a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f8:3a:3a:f3:c3:cb:09:c1:3c:b9:37:fd:99: c0:1d:40:3d:3b:31:48:4a:31:ee:30:a0:16:8c:05: aa:d4:08:99:63:65:83:74:c0:d3:f3:6a:e0:46:6f: e6:a6:aa:a1:c5:6d:50:88:4b:14:e0:98:a6:f8:68: 47:87:eb:5e:52:17:0f:33:99:b8:b8:7d:7a:1e:ab: ac:c5:63:18:16:26:16:7a:59:73:62:11:3f:6f:d4: c8:f9:e3:3c:bf:63:05:df:39:3c:46:88:52:69:e7: e7:18:74:77:84:de:76:a3:d5:6d:0f:3b:75:3e:91: cb:95:1a:f5:26:93:61:be:83:8f:67:0a:5f:7e:b9: 04:bb:b2:2c:32:d7:1b:fb:2c:c6:37:31:cd:97:9c: 9d:50:06:ac:2a:1c:72:73:25:98:31:91:d9:35:21: 02:73:8b:6f:e9:45:62:6c:12:5d:9b:14:bc:cb:26: d2:97:88:28:b5:98:21:08:65:41:cb:57:48:0a:a1: 94:87:62:b4:da:b0:30:96:54:3e:c3:b9:5c:1b:89: c0:81:1c:6e:da:78:f9:e4:0a:44:7b:01:6c:30:24: 19:b1:1f:b7:2d:7b:e3:39:7a:f8:87:b6:4d:f7:99: f2:23:95:a8:14:26:3b:1e:9e:25:d8:bf:47:08:3a: a4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:97:3E:F5:0D:73:8F:44:AF:AE:22:46:D4:EA:21:54:1C:3C:EA:85 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ad:c1:3e:b1:f8:30:c9:94:0b:92:5c:c1:ed:b7:f8:3d:bc: fe:1b:7c:35:3f:97:0b:a0:15:31:d6:18:8c:7c:f5:c1:33:6c: a1:0c:ae:5d:53:24:59:a4:24:a5:90:4e:75:36:74:54:e3:29: cf:b8:7e:9e:40:67:f5:bb:f7:f1:1a:39:35:a3:ea:cd:a8:4d: 72:98:21:d8:f5:1f:b7:63:f3:19:9f:39:89:33:8c:40:3c:1f: 32:cc:6d:c6:8b:ec:01:58:f9:d7:22:7f:9f:e2:13:a5:45:73: 19:b6:f0:bb:0d:b1:6b:55:a6:eb:48:6c:13:1b:f9:2c:d6:6d: 48:03:45:ce:a1:8e:bc:10:f4:f2:fa:f0:d4:20:30:c7:16:6d: eb:bc:c0:90:31:5d:f5:93:b3:d9:40:4e:f8:c7:d8:d6:fa:86: ba:60:3c:0e:0a:4c:de:97:24:df:e4:7b:07:c4:2c:f3:2c:0b: bd:e6:09:21:94:85:3a:7c:c4:6a:c8:b7:96:1d:3d:7b:56:74: 8f:ac:68:80:cc:7b:e5:de:92:fa:f6:02:08:cd:5b:13:59:eb: b6:7d:d6:c9:7a:47:f8:03:66:d6:3c:e0:c4:53:a1:36:97:3e: 0c:48:c9:f3:ce:fa:0a:da:59:e5:87:d3:c0:1e:4d:0a:5f:fc: d5:ed:84:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwODIzMDIxNTU5WhcNMjUwODMwMDIxNTU5WjAYMRYwFAYD VQQDEw02OGE5MjQ1Zi0zYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfg6OvPDywnBPLk3/ZnAHUA9OzFISjHuMKAWjAWq1AiZY2WDdMDT82rgRm/m pqqhxW1QiEsU4Jim+GhHh+teUhcPM5m4uH16HqusxWMYFiYWellzYhE/b9TI+eM8 v2MF3zk8RohSaefnGHR3hN52o9VtDzt1PpHLlRr1JpNhvoOPZwpffrkEu7IsMtcb +yzGNzHNl5ydUAasKhxycyWYMZHZNSECc4tv6UVibBJdmxS8yybSl4gotZghCGVB y1dICqGUh2K02rAwllQ+w7lcG4nAgRxu2nj55ApEewFsMCQZsR+3LXvjOXr4h7ZN 95nyI5WoFCY7Hp4l2L9HCDqkvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWXPvUN c49Er64iRtTqIVQcPOqFMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABrcE+sfgwyZQLklzB7bf4Pbz+G3w1P5cLoBUx1hiMfPXBM2yhDK5d UyRZpCSlkE51NnRU4ynPuH6eQGf1u/fxGjk1o+rNqE1ymCHY9R+3Y/MZnzmJM4xA PB8yzG3Gi+wBWPnXIn+f4hOlRXMZtvC7DbFrVabrSGwTG/ks1m1IA0XOoY68EPTy +vDUIDDHFm3rvMCQMV31k7PZQE74x9jW+oa6YDwOCkzelyTf5HsHxCzzLAu95gkh lIU6fMRqyLeWHT17VnSPrGiAzHvl3pL69gIIzVsTWeu2fdbJekf4A2bWPODEU6E2 lz4MSMnzzvoK2lnlh9PAHk0KX/zV7YTq -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:34 2025 by rpki-client