$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: 7SpkvytnYnPLkyN30Pq3pjpIfHNi108/x7np+29aYYA= Subject key identifier: 58:C2:42:DE:A6:3A:D1:57:10:E7:91:B4:9F:35:68:4C:1F:D9:A4:E7 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0C13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0C08 Signing time: Fri 22 Aug 2025 18:50:35 +0000 Manifest this update: Fri 22 Aug 2025 18:50:34 +0000 Manifest next update: Fri 29 Aug 2025 18:50:34 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: UcPMD36hpbYEQS6bM0xDNJ8SuHz5OGdr8vGFGHcHHe4=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3091 (0xc13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Aug 22 18:50:34 2025 GMT Not After : Aug 29 18:50:34 2025 GMT Subject: CN=68a8bbfa-52ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:74:63:c7:48:4c:37:d3:f9:24:e6:ff:38:39: 14:e3:fe:55:11:a1:80:3c:03:0e:53:7b:33:33:87: 60:22:a1:c6:1b:df:92:82:73:d6:1f:0a:9b:62:b2: 53:42:67:88:41:d8:66:48:05:f2:83:bc:12:bc:08: 9b:88:2a:d8:00:03:f9:4d:b6:f1:b6:4b:fe:6c:28: 38:ef:86:02:ec:ed:f5:e5:c7:55:02:cf:99:28:de: 4e:dd:a5:85:6b:e2:f3:5c:21:1e:a4:c1:a6:a9:77: 1f:79:9d:d4:97:31:49:1f:e8:ba:85:12:2c:05:dc: 2d:df:76:dd:de:54:47:c7:8b:d9:c0:32:d1:5c:79: 91:fe:95:dc:39:52:09:f3:98:66:16:81:f5:db:ef: 76:90:d0:9e:d5:d6:25:2d:dd:db:78:56:b6:64:40: 17:e7:48:41:3d:22:0f:71:37:9f:83:3e:5d:d2:fa: b8:08:af:32:c6:72:89:2b:25:af:35:64:53:cb:bb: 30:20:2b:87:db:8c:6d:f7:cd:e8:08:38:db:8b:2a: 79:ab:f9:3a:39:e8:72:b1:08:ae:36:37:7d:31:7b: 09:77:e3:28:55:ac:7a:60:f0:0b:48:df:ce:da:9a: f8:60:35:10:a2:34:f4:a0:0e:90:98:4a:92:aa:aa: d6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C2:42:DE:A6:3A:D1:57:10:E7:91:B4:9F:35:68:4C:1F:D9:A4:E7 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:6a:4d:0b:bd:38:f5:37:e6:7d:b2:58:87:27:0e:9f:be:93: 01:43:e7:1b:09:9b:fc:84:c7:df:23:01:a3:e8:26:7c:75:c5: 67:fd:73:1f:80:7d:12:31:66:3d:4e:8f:9f:ba:a1:c7:11:7c: 2d:a5:52:4e:74:cd:cf:d0:11:5f:de:df:48:bb:2b:3d:b2:da: 81:8a:10:bd:2d:40:36:a7:10:13:fb:00:04:47:9f:5e:d3:9d: 90:c7:5e:ea:1c:57:75:bc:3e:38:57:ad:c3:1f:70:a6:a2:66: 48:75:22:af:a1:7d:cc:b8:77:51:85:b7:fe:47:d1:2f:ac:ba: a0:57:6a:a4:24:29:5a:cc:17:af:1f:8c:94:e1:2f:cd:82:06: 17:45:5e:88:fa:10:ac:9f:b3:4d:4f:05:94:7d:e7:6f:53:c7: ad:0a:00:31:f7:ce:9d:dd:d5:e4:81:94:b6:7b:66:e6:5a:de: 45:5f:17:d9:8a:03:b8:17:eb:8b:13:52:43:99:71:f2:c8:a5: 02:b5:ac:34:5f:67:ca:68:b7:13:50:0f:c0:1f:f7:1e:93:c6: b6:73:52:9f:69:a9:fe:d4:b7:69:ec:e2:cf:61:6b:1f:31:e1: 83:73:b2:6a:0f:43:0a:64:d5:c8:ee:e8:e4:d0:03:a1:b3:76: 29:1f:d1:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUwODIyMTg1MDM0WhcNMjUwODI5MTg1MDM0WjAYMRYwFAYD VQQDEw02OGE4YmJmYS01MmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnRjx0hMN9P5JOb/ODkU4/5VEaGAPAMOU3szM4dgIqHGG9+SgnPWHwqbYrJT QmeIQdhmSAXyg7wSvAibiCrYAAP5Tbbxtkv+bCg474YC7O315cdVAs+ZKN5O3aWF a+LzXCEepMGmqXcfeZ3UlzFJH+i6hRIsBdwt33bd3lRHx4vZwDLRXHmR/pXcOVIJ 85hmFoH12+92kNCe1dYlLd3beFa2ZEAX50hBPSIPcTefgz5d0vq4CK8yxnKJKyWv NWRTy7swICuH24xt983oCDjbiyp5q/k6OehysQiuNjd9MXsJd+MoVax6YPALSN/O 2pr4YDUQojT0oA6QmEqSqqrW6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjCQt6m OtFXEOeRtJ81aEwf2aTnMB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwak0LvTj1N+Z9sliHJw6fvpMBQ+cbCZv8hMffIwGj6CZ8dcVn/XMf gH0SMWY9To+fuqHHEXwtpVJOdM3P0BFf3t9Iuys9stqBihC9LUA2pxAT+wAER59e 052Qx17qHFd1vD44V63DH3CmomZIdSKvoX3MuHdRhbf+R9EvrLqgV2qkJClazBev H4yU4S/NggYXRV6I+hCsn7NNTwWUfedvU8etCgAx986d3dXkgZS2e2bmWt5FXxfZ igO4F+uLE1JDmXHyyKUCtaw0X2fKaLcTUA/AH/cek8a2c1Kfaan+1Ldp7OLPYWsf MeGDc7JqD0MKZNXI7ujk0AOhs3YpH9GF -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:31 2025 by rpki-client