$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: cpN1NuFcZwPF3qik34EbwF2VaVJSWM3iywHqnbZumeA= Subject key identifier: 62:69:5B:45:92:9C:0C:5F:8A:91:AF:CB:FF:F4:26:2B:B8:FC:F8:F5 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: D6 Signing time: Sat 23 Aug 2025 05:19:19 +0000 Manifest this update: Sat 23 Aug 2025 05:19:19 +0000 Manifest next update: Sat 30 Aug 2025 05:19:19 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: 2GiZeW7vFzUfzfjTalWbTQb3Xe42d6sgCbRNH8iP/do=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Aug 23 05:19:19 2025 GMT Not After : Aug 30 05:19:19 2025 GMT Subject: CN=68a94f57-8402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:28:eb:90:fa:24:1e:d2:ba:7a:61:8f:f4:e9: 5e:10:80:ac:5b:a3:d3:a4:71:d0:bc:ae:f5:79:eb: de:07:c4:1e:05:26:b4:a6:ec:68:09:67:90:f1:c3: 88:30:66:5d:c3:b5:08:88:54:0c:7d:33:25:cb:eb: af:f4:e5:2a:61:fb:ff:64:4b:82:f3:03:c4:1e:59: c1:4e:bd:dd:ff:91:27:4e:f5:8c:2b:ac:35:30:1f: fb:5c:4a:66:7e:34:1b:92:af:5c:27:8b:c2:b3:5d: bd:0d:28:a5:f8:96:3d:58:6c:1f:77:d3:8f:ab:27: 4b:5a:cd:43:f6:d0:a2:15:9c:a7:dd:f5:1b:8f:7d: 91:90:76:68:ba:60:fb:ae:72:e9:c8:28:7b:80:74: e3:c1:12:69:4f:5f:89:5b:d7:6d:a8:8f:db:4d:26: e4:63:7c:6a:b8:f8:bb:99:d2:8e:f0:c1:51:10:1f: f1:c7:43:06:c9:e1:a1:56:13:77:d5:54:52:0b:98: 40:96:18:fa:82:bb:9d:0c:f1:fc:8f:c2:cc:ee:7c: 92:e7:0e:93:a4:2e:9e:6f:a9:5d:e3:d6:35:21:22: 9e:52:98:b8:80:fc:18:10:cf:cc:7e:68:41:cc:92: a9:f7:0d:0f:7a:d8:6c:a5:01:2a:7c:7f:44:03:76: 4d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:69:5B:45:92:9C:0C:5F:8A:91:AF:CB:FF:F4:26:2B:B8:FC:F8:F5 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:04:67:db:d8:bd:93:7d:c7:0b:34:a3:4b:85:53:ab:48:88: 4c:ed:41:6a:6e:53:e4:7a:97:ad:6b:cd:55:a2:d7:ec:c7:e7: bf:4c:bf:7c:63:27:87:6a:df:48:6d:a6:2f:9c:90:26:d8:a3: 12:58:c8:ea:74:ce:44:cf:55:c0:b1:7f:db:33:65:3d:54:89: 9c:35:4e:15:7c:0a:d9:e7:a8:6a:62:ee:00:2e:1d:99:a6:d8: 07:8b:5b:0f:e5:3d:76:b0:3a:4d:41:3a:69:9a:d8:8d:db:d7: b3:53:ed:a4:6f:99:93:a6:58:d0:8d:24:7d:44:2b:40:60:45: 28:9f:cb:a0:f3:17:41:73:c1:bd:79:20:9e:67:fb:6f:e4:99: 5f:1f:46:d8:95:bd:66:c0:c0:dc:a5:1b:23:a8:47:61:28:bb: 0a:03:a6:b0:39:30:28:6f:ce:c9:e3:f3:3b:1e:72:2a:53:d7: 4f:9d:9a:c2:e7:49:63:56:a2:6e:06:18:13:63:a3:66:70:39: 48:96:01:f0:89:34:90:e5:d2:61:80:ba:26:07:47:1e:1f:32: ad:d4:37:99:68:d4:78:ea:a5:44:0c:41:76:c1:10:1c:7a:46: 18:0b:90:d2:0c:85:db:5e:84:1f:c7:7d:c8:5d:31:7e:67:42: 3f:b8:b7:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwODIzMDUxOTE5WhcNMjUwODMwMDUxOTE5WjAYMRYwFAYD VQQDEw02OGE5NGY1Ny04NDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7SjrkPokHtK6emGP9OleEICsW6PTpHHQvK71eeveB8QeBSa0puxoCWeQ8cOI MGZdw7UIiFQMfTMly+uv9OUqYfv/ZEuC8wPEHlnBTr3d/5EnTvWMK6w1MB/7XEpm fjQbkq9cJ4vCs129DSil+JY9WGwfd9OPqydLWs1D9tCiFZyn3fUbj32RkHZoumD7 rnLpyCh7gHTjwRJpT1+JW9dtqI/bTSbkY3xquPi7mdKO8MFREB/xx0MGyeGhVhN3 1VRSC5hAlhj6grudDPH8j8LM7nyS5w6TpC6eb6ld49Y1ISKeUpi4gPwYEM/MfmhB zJKp9w0PethspQEqfH9EA3ZNqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJpW0WS nAxfipGvy//0Jiu4/Pj1MB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVBGfb2L2TfccLNKNLhVOrSIhM7UFqblPkepeta81Votfsx+e/TL98 YyeHat9IbaYvnJAm2KMSWMjqdM5Ez1XAsX/bM2U9VImcNU4VfArZ56hqYu4ALh2Z ptgHi1sP5T12sDpNQTppmtiN29ezU+2kb5mTpljQjSR9RCtAYEUon8ug8xdBc8G9 eSCeZ/tv5JlfH0bYlb1mwMDcpRsjqEdhKLsKA6awOTAob87J4/M7HnIqU9dPnZrC 50ljVqJuBhgTY6NmcDlIlgHwiTSQ5dJhgLomB0ceHzKt1DeZaNR46qVEDEF2wRAc ekYYC5DSDIXbXoQfx33IXTF+Z0I/uLdg -----END CERTIFICATE-----Generated at Sat Aug 23 19:08:56 2025 by rpki-client