$ rpki-client -vvf rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft File: xkM8SeY82SA1swfo95Y3YI_q2_U.mft (raw, json) Hash identifier: FxwGeVFWjOGe+Z1V60uIz8covMEu0FDR1PI63Yx/8iE= Subject key identifier: 1A:C2:2A:CE:EB:EF:91:24:FD:41:6D:FE:52:CA:7C:08:B3:EC:70:AF Authority key identifier: C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 Certificate issuer: /CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Certificate serial: 1CFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft Manifest number: 1CB9 Signing time: Fri 22 Aug 2025 16:14:58 +0000 Manifest this update: Fri 22 Aug 2025 16:14:58 +0000 Manifest next update: Fri 29 Aug 2025 16:14:58 +0000 Files and hashes: 1: xkM8SeY82SA1swfo95Y3YI_q2_U.crl (hash: ly1d33qmECNhnBMvRObAvQy3lJeo/7kAhy4Ez7GM0Tg=) 2: BA1F21AC731111F0BD7FF574C4F9AE02.roa (hash: 20AfF76B9+g4MK13JnUrRZPbIDu/TESDofczBLuYHu0=) 3: 35D40EDE9F8511ECBE806D30C4F9AE02.roa (hash: 6/nHCLLC7n4HaWWUGKVmTxdYoQkDB8jaG5K5D54SivA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7419 (0x1cfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164390, serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Validity Not Before: Aug 22 16:14:58 2025 GMT Not After : Aug 29 16:14:58 2025 GMT Subject: CN=68a89782-4528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9d:0a:b6:27:e7:7e:73:a5:6d:55:f8:fd:c2: d4:a2:a3:d6:d0:f9:ab:af:53:42:68:50:30:56:67: c0:99:b8:b0:0f:86:fb:7d:88:1e:d3:a9:e2:30:cf: 8d:e7:87:2f:cf:27:b0:f2:eb:c3:56:8e:83:f5:0a: 7e:29:cc:e8:83:75:e6:c2:a8:6b:85:49:02:d4:2a: 90:97:f0:93:18:af:b1:71:8c:99:b8:90:44:c6:e3: 04:e7:2a:a4:b3:5b:43:ca:a8:0e:ef:b8:5e:50:10: 63:69:f9:6b:67:c8:bd:12:cf:0d:5d:80:10:b4:ce: d3:91:94:c4:49:fe:2d:d2:9b:66:b8:d0:7c:41:2e: ca:ed:4d:a6:9b:44:6b:26:9d:21:1c:df:aa:34:4a: 99:4a:2a:e8:d0:ad:e4:60:ad:81:07:4b:4e:cb:02: e0:96:41:dd:4c:5a:81:e2:0b:bd:d0:e6:7e:e0:1e: 5e:c2:16:88:b2:c9:b8:76:4e:01:6a:6e:2f:b2:52: 89:b6:a7:6d:1f:c4:0f:f6:ab:41:a2:c7:74:c9:b7: 3b:af:85:a5:bc:a8:3c:e1:a7:c6:7c:23:6c:91:65: 2b:84:28:ca:1a:c2:bf:e2:0f:d9:75:d1:f2:3d:ed: 0b:8a:57:97:d3:35:99:ac:8c:6b:4e:9e:db:e0:8a: 0c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C2:2A:CE:EB:EF:91:24:FD:41:6D:FE:52:CA:7C:08:B3:EC:70:AF X509v3 Authority Key Identifier: keyid:C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:71:f4:66:ae:23:00:96:e6:42:ad:b6:28:20:7d:e0:74:8c: cc:e3:3c:ca:72:dc:bf:00:2d:dc:d8:4c:d6:9b:83:62:f6:e4: 9a:46:1f:39:50:ab:3e:57:a3:7b:6e:91:17:d5:d5:72:20:2b: 20:aa:64:ba:79:40:84:75:33:85:0a:80:32:29:37:f4:42:79: a0:59:32:20:0f:0d:c1:dc:23:90:34:a4:05:50:cc:27:59:dd: 06:42:94:77:9e:80:0e:20:08:8f:b6:5b:a7:73:c0:1f:43:17: d9:96:c5:d9:e2:fc:da:1a:8b:3f:e8:ce:54:d5:d7:d8:f3:e9: 43:4a:07:56:1c:ce:ae:66:e0:a7:f8:71:8b:86:87:3c:01:eb: 83:c1:0e:75:f2:86:d1:06:99:8f:ca:52:43:3c:08:1d:11:fb: 6a:c9:6f:b3:df:fd:53:ca:13:53:c1:65:73:a7:b0:e5:c6:86: 0b:52:72:1c:75:e1:aa:2b:85:ed:cb:60:bd:46:ef:b8:cf:8f: b8:75:88:33:5c:18:4f:56:8d:bc:2d:39:41:99:33:bd:8f:b9: 66:a4:56:f4:21:58:80:1e:be:3b:b9:88:82:31:22:99:b8:4f: f5:f0:02:dd:a0:40:62:57:bf:5b:96:6d:de:81:eb:65:38:07: 7d:08:99:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzOTAxMTAvBgNVBAUTKEM2NDMzQzQ5RTYzQ0Q5MjAzNUIzMDdFOEY3OTYzNzYw OEZFQURCRjUwHhcNMjUwODIyMTYxNDU4WhcNMjUwODI5MTYxNDU4WjAYMRYwFAYD VQQDEw02OGE4OTc4Mi00NTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1J0KtifnfnOlbVX4/cLUoqPW0Pmrr1NCaFAwVmfAmbiwD4b7fYge06niMM+N 54cvzyew8uvDVo6D9Qp+Kczog3XmwqhrhUkC1CqQl/CTGK+xcYyZuJBExuME5yqk s1tDyqgO77heUBBjaflrZ8i9Es8NXYAQtM7TkZTESf4t0ptmuNB8QS7K7U2mm0Rr Jp0hHN+qNEqZSiro0K3kYK2BB0tOywLglkHdTFqB4gu90OZ+4B5ewhaIssm4dk4B am4vslKJtqdtH8QP9qtBosd0ybc7r4WlvKg84afGfCNskWUrhCjKGsK/4g/ZddHy Pe0LileX0zWZrIxrTp7b4IoMNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrCKs7r 75Ek/UFt/lLKfAiz7HCvMB8GA1UdIwQYMBaAFMZDPEnmPNkgNbMH6PeWN2CP6tv1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDM5MC8wRTkzNTRGQ0RD NUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJTQTFzd2ZvOTVZM1lJX3Ey X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrTThTZVk4MlNBMXN3Zm85NVkzWUlfcTJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDM5MC8wRTkzNTRGQ0RDNUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJT QTFzd2ZvOTVZM1lJX3EyX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJcfRmriMAluZCrbYoIH3gdIzM4zzKcty/AC3c2EzWm4Ni9uSaRh85 UKs+V6N7bpEX1dVyICsgqmS6eUCEdTOFCoAyKTf0QnmgWTIgDw3B3COQNKQFUMwn Wd0GQpR3noAOIAiPtlunc8AfQxfZlsXZ4vzaGos/6M5U1dfY8+lDSgdWHM6uZuCn +HGLhoc8AeuDwQ518obRBpmPylJDPAgdEftqyW+z3/1TyhNTwWVzp7DlxoYLUnIc deGqK4Xty2C9Ru+4z4+4dYgzXBhPVo28LTlBmTO9j7lmpFb0IViAHr47uYiCMSKZ uE/18ALdoEBiV79blm3egetlOAd9CJkB -----END CERTIFICATE-----Generated at Sun Aug 24 00:20:20 2025 by rpki-client