$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: kjFNAG5whQD1PqT12EMif8EGm2bS2dy4Ds5w3l1T97s= Subject key identifier: 95:CB:36:D2:23:F7:7F:C7:B8:00:59:B9:16:89:0E:31:A0:23:6C:86 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04A7 Signing time: Sat 23 Aug 2025 00:11:12 +0000 Manifest this update: Sat 23 Aug 2025 00:11:12 +0000 Manifest next update: Sat 30 Aug 2025 00:11:12 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: UQFG5BnfX+i229eXUw7JMacVat9JZTzdpvNz19cfssA=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Aug 23 00:11:12 2025 GMT Not After : Aug 30 00:11:12 2025 GMT Subject: CN=68a90720-b19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b6:c1:3b:da:a4:aa:09:b8:f4:31:da:7f:5e: 85:8a:b7:05:41:9f:82:d1:2d:3d:06:9e:63:59:2c: 0f:fe:1a:67:93:c4:d9:4f:cc:41:ef:ee:bb:4f:e1: e3:6c:16:32:33:db:fb:b1:95:ea:3d:e6:0b:e3:c3: 33:67:54:a0:4b:51:02:8a:74:d8:3b:2d:27:6d:f1: 96:a4:b9:6e:bc:b2:79:5f:a0:e7:7a:28:b2:38:08: 42:c0:6f:25:3c:28:e5:b2:f8:51:ad:3b:00:c6:e7: 48:6c:8c:0e:40:3b:c8:75:13:e8:8d:ed:3a:3f:97: 86:1d:fa:f9:75:e5:d2:5e:1b:0a:42:25:85:ba:57: 7d:c6:33:e0:16:eb:9d:c7:54:81:7f:ed:90:a8:0a: 3d:c1:cf:f7:2d:a0:b3:5b:d7:92:f5:7a:30:51:1d: 7d:53:55:78:15:aa:fd:21:7e:d5:4b:af:38:01:0c: 12:77:a7:bc:54:b0:5c:f3:af:f6:ae:53:7c:e2:a1: 12:8c:73:e7:37:8a:a1:ff:43:bf:b9:8e:d9:61:d2: 71:93:87:d1:a5:44:29:4e:14:68:6b:e6:66:88:c6: ca:6c:0b:fc:02:f0:82:34:d2:1c:0b:04:fa:07:4b: 6d:33:51:21:f3:68:c3:75:d3:b6:ad:f4:f7:66:50: 76:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CB:36:D2:23:F7:7F:C7:B8:00:59:B9:16:89:0E:31:A0:23:6C:86 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:88:5d:89:90:34:87:9c:93:81:7b:f4:96:37:f1:d8:ca:53: 0e:df:b9:c8:7a:8e:36:45:a9:d5:cd:94:57:7f:46:73:a9:9a: 0e:ca:a3:3f:ae:d0:04:ee:5f:9a:81:b1:0e:ca:a5:46:5d:69: d9:73:89:bf:00:7b:c3:e0:53:d1:e6:bd:9f:81:c0:bc:cb:ca: 37:e2:0a:fb:52:9e:43:f0:20:25:47:e5:f8:ec:4e:3d:4c:95: 83:d6:50:df:b2:8a:9c:1f:fa:61:5e:4d:69:b9:61:46:43:6c: de:13:d4:13:a2:19:54:51:a6:02:e9:9f:20:8c:10:b8:d2:5a: 6e:b8:f4:68:ba:55:c4:59:33:5c:da:9c:85:7b:dc:0a:f0:f2: c4:c7:c4:e9:61:60:fa:ef:ff:02:30:5e:87:73:b0:81:af:89: 09:3f:8e:2c:7a:20:68:70:52:3a:37:24:81:40:ab:a6:46:d2: ad:aa:bb:be:7b:b2:c6:0c:cb:b3:b2:a7:18:29:7c:a6:a0:31: 5c:8d:66:b1:2d:8b:4a:ec:80:05:ee:de:47:de:a2:7f:c9:db: 3d:0a:a0:5d:11:9c:0b:2d:f4:42:54:cc:bd:17:21:59:dd:36: 5f:45:d6:80:d4:52:ed:07:01:6f:d3:73:1d:43:1b:81:cb:ad: 76:09:46:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwODIzMDAxMTEyWhcNMjUwODMwMDAxMTEyWjAYMRYwFAYD VQQDEw02OGE5MDcyMC1iMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7bBO9qkqgm49DHaf16FircFQZ+C0S09Bp5jWSwP/hpnk8TZT8xB7+67T+Hj bBYyM9v7sZXqPeYL48MzZ1SgS1ECinTYOy0nbfGWpLluvLJ5X6DneiiyOAhCwG8l PCjlsvhRrTsAxudIbIwOQDvIdRPoje06P5eGHfr5deXSXhsKQiWFuld9xjPgFuud x1SBf+2QqAo9wc/3LaCzW9eS9XowUR19U1V4Far9IX7VS684AQwSd6e8VLBc86/2 rlN84qESjHPnN4qh/0O/uY7ZYdJxk4fRpUQpThRoa+ZmiMbKbAv8AvCCNNIcCwT6 B0ttM1Eh82jDddO2rfT3ZlB2XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXLNtIj 93/HuABZuRaJDjGgI2yGMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeiF2JkDSHnJOBe/SWN/HYylMO37nIeo42RanVzZRXf0ZzqZoOyqM/ rtAE7l+agbEOyqVGXWnZc4m/AHvD4FPR5r2fgcC8y8o34gr7Up5D8CAlR+X47E49 TJWD1lDfsoqcH/phXk1puWFGQ2zeE9QTohlUUaYC6Z8gjBC40lpuuPRoulXEWTNc 2pyFe9wK8PLEx8TpYWD67/8CMF6Hc7CBr4kJP44seiBocFI6NySBQKumRtKtqru+ e7LGDMuzsqcYKXymoDFcjWaxLYtK7IAF7t5H3qJ/yds9CqBdEZwLLfRCVMy9FyFZ 3TZfRdaA1FLtBwFv03MdQxuBy612CUZa -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:08 2025 by rpki-client