$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: gVf/kCc4j5thi0TvBdwIIMwfrM8wKHburUZui22xorY= Subject key identifier: 26:D1:45:BF:7A:43:1B:C0:2C:75:7B:96:88:EB:F6:42:52:16:99:23 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 03B6 Signing time: Sat 23 Aug 2025 01:02:00 +0000 Manifest this update: Sat 23 Aug 2025 01:01:59 +0000 Manifest next update: Sat 30 Aug 2025 01:01:59 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: vIr1E7PXdDozbAiCXz8O9IRECcdB85pWIgcZTmbT+S0=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Aug 23 01:01:59 2025 GMT Not After : Aug 30 01:01:59 2025 GMT Subject: CN=68a91308-2f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:2c:66:b7:7b:14:94:79:c8:05:ca:02:a5:43: 5b:19:e6:6e:39:1f:20:b7:ad:24:cb:15:22:15:69: 74:a6:39:b1:a9:69:de:b7:17:19:34:a0:6c:00:6b: b5:7b:b2:5f:14:f0:da:4d:7a:2c:94:05:df:f4:c0: f8:b4:c1:ba:b4:61:b6:3d:8a:38:7b:9a:2d:65:3b: d7:a4:9b:e9:c2:81:65:b1:7b:20:99:95:6b:29:7b: 05:f6:f6:a8:63:1a:73:23:e8:9b:db:c9:a0:2b:75: f8:e5:de:79:53:37:20:f6:a1:d2:35:64:5e:f3:ee: 86:f6:31:b4:72:49:c2:49:40:20:8c:e5:c0:67:2e: 86:9b:02:72:90:8c:fd:ed:9e:4d:70:89:d4:46:eb: 6c:eb:9d:74:1c:4c:a5:02:16:34:d6:7b:2b:71:f6: e5:01:ee:2b:94:e1:a2:03:d5:38:38:65:7a:68:3f: 83:76:9f:d5:92:52:9f:3b:fa:d7:bd:78:6a:65:0d: c0:57:0e:98:ef:a6:66:81:4f:41:ae:ad:e1:1d:a9: b9:26:54:78:89:a7:71:32:da:d2:40:79:4e:32:0f: df:2a:1a:79:e5:7c:32:8e:0b:42:16:af:c4:f5:8f: 61:86:47:b6:ba:95:d0:b0:2f:05:a0:a0:a3:e3:f4: f3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D1:45:BF:7A:43:1B:C0:2C:75:7B:96:88:EB:F6:42:52:16:99:23 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:c7:d6:e8:6c:db:18:ff:fd:94:05:0e:6a:3e:f9:f3:a9:18: 07:51:08:d2:d9:13:4b:50:46:78:05:55:c2:7c:ce:59:e7:f1: a6:2a:e1:9a:e3:ba:91:2c:70:5f:cc:6e:a0:a3:96:e8:a5:93: fa:f3:cb:05:3f:2c:8e:3f:56:7e:24:c3:e3:47:92:dd:cb:c9: eb:8a:87:64:de:4a:b3:70:12:dc:c6:5d:15:79:53:2a:04:4b: 50:7c:11:f7:49:5d:1c:eb:e9:7f:42:a4:d0:a6:35:da:a7:ab: d1:c2:b0:f4:fe:22:88:ed:c0:15:97:c4:59:95:2e:61:c7:e5: 1b:57:88:c3:47:dd:6d:86:05:45:6a:34:87:fe:06:52:2a:36: 53:7a:e9:0c:ca:0e:25:62:51:70:f4:bc:f0:d5:10:7e:fd:8b: 9c:49:20:e5:42:a1:00:da:d2:80:b5:84:ab:0a:47:cd:f5:d0: e2:0f:88:e4:83:7f:bb:2b:69:04:09:11:9d:e9:fd:64:da:7f: 5b:97:14:6d:2a:8e:d9:3f:d1:1a:00:73:a4:13:5a:96:2d:21: 39:1e:6a:30:63:76:2b:ef:5b:15:d1:7f:29:9a:dd:a5:ba:c8: 9a:fb:eb:26:4a:ce:09:aa:3c:c0:b8:79:d1:18:89:16:03:f1: c4:5c:cf:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUwODIzMDEwMTU5WhcNMjUwODMwMDEwMTU5WjAYMRYwFAYD VQQDEw02OGE5MTMwOC0yZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9yxmt3sUlHnIBcoCpUNbGeZuOR8gt60kyxUiFWl0pjmxqWnetxcZNKBsAGu1 e7JfFPDaTXoslAXf9MD4tMG6tGG2PYo4e5otZTvXpJvpwoFlsXsgmZVrKXsF9vao YxpzI+ib28mgK3X45d55Uzcg9qHSNWRe8+6G9jG0cknCSUAgjOXAZy6GmwJykIz9 7Z5NcInURuts6510HEylAhY01nsrcfblAe4rlOGiA9U4OGV6aD+Ddp/VklKfO/rX vXhqZQ3AVw6Y76ZmgU9Brq3hHam5JlR4iadxMtrSQHlOMg/fKhp55XwyjgtCFq/E 9Y9hhke2upXQsC8FoKCj4/Tz0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbRRb96 QxvALHV7lojr9kJSFpkjMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrx9bobNsY//2UBQ5qPvnzqRgHUQjS2RNLUEZ4BVXCfM5Z5/GmKuGa 47qRLHBfzG6go5bopZP688sFPyyOP1Z+JMPjR5Ldy8nriodk3kqzcBLcxl0VeVMq BEtQfBH3SV0c6+l/QqTQpjXap6vRwrD0/iKI7cAVl8RZlS5hx+UbV4jDR91thgVF ajSH/gZSKjZTeukMyg4lYlFw9Lzw1RB+/YucSSDlQqEA2tKAtYSrCkfN9dDiD4jk g3+7K2kECRGd6f1k2n9blxRtKo7ZP9EaAHOkE1qWLSE5HmowY3Yr71sV0X8pmt2l usia++smSs4JqjzAuHnRGIkWA/HEXM8Z -----END CERTIFICATE-----Generated at Sat Aug 23 20:33:50 2025 by rpki-client