$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: 7x9WnKvGQ13Wu8qlGJlPmJHaCQsP7UXkGHiaSbCLN5g= Subject key identifier: 12:B1:15:0D:39:78:4A:FA:B5:C1:79:D2:65:76:FD:18:71:0C:99:E0 Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 05E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 05DF Signing time: Fri 22 Aug 2025 23:11:21 +0000 Manifest this update: Fri 22 Aug 2025 23:11:21 +0000 Manifest next update: Fri 29 Aug 2025 23:11:21 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: zm4DhFD0fHAuXVyZS8Z+Xf+Y6t0lhpjmmugvgFnUgUw=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1509 (0x5e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Aug 22 23:11:21 2025 GMT Not After : Aug 29 23:11:21 2025 GMT Subject: CN=68a8f919-26b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:68:76:16:a4:42:7b:b5:dd:ee:a0:2b:6e:8a: d1:a2:39:73:0d:9b:bd:84:bb:66:02:e9:4f:cd:82: 6e:33:91:23:8c:da:1c:69:3d:47:52:c2:c7:5c:95: b0:04:41:5f:ca:6b:57:19:20:57:9a:1a:a1:70:e6: ae:4c:f9:c3:18:33:50:cc:b7:d3:23:04:d3:ac:c5: 5e:31:0a:e7:57:f4:52:1d:1a:cf:e7:18:bc:e7:de: 8a:08:80:f5:2a:56:d1:51:fd:bb:02:1f:43:2d:05: 54:e2:7a:92:b4:bb:19:49:58:c2:46:93:af:59:1c: 9a:8c:5b:3c:47:b4:08:22:68:cf:db:b7:07:e4:a5: 94:75:b2:c3:e9:2d:54:1d:97:40:ca:a1:4e:99:28: 11:21:56:e9:7b:38:2e:31:ac:65:62:53:11:88:33: 4d:af:b1:a3:88:38:f6:4e:ee:5b:e8:10:ef:e1:80: 55:4c:8f:89:d9:48:7e:77:38:d6:55:b3:dd:1b:17: 21:95:c2:54:2d:4b:20:92:31:f6:b9:6c:03:8f:9b: 3e:82:a9:60:75:7d:c3:a0:66:1b:8c:75:63:41:58: bd:62:5a:d9:56:66:52:b9:b6:3e:d4:ca:84:8d:c3: 9a:da:68:67:a0:7e:62:8e:93:f2:b5:b3:85:e4:e9: 3f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B1:15:0D:39:78:4A:FA:B5:C1:79:D2:65:76:FD:18:71:0C:99:E0 X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:75:39:19:b3:4f:08:cc:d3:30:d1:ff:8e:2e:2e:9a:83:7e: 67:25:9d:31:d1:05:70:a4:3f:76:21:3e:eb:62:1e:39:d7:96: ac:50:e1:31:0b:35:d0:6e:6f:30:1d:25:06:8f:50:1a:10:50: a7:8f:42:d8:6c:1c:ff:aa:57:a6:c6:14:81:aa:78:7c:82:8a: 23:50:da:62:f9:82:01:da:ba:2e:c6:23:7a:7f:27:30:42:07: 66:b7:e0:17:c9:44:6a:0c:b6:ba:6c:e2:b2:ed:95:6c:42:d5: c1:7f:04:99:71:8a:43:26:b3:50:5a:4c:a6:30:4d:ad:f3:14: a8:8f:ea:05:45:1c:46:aa:73:13:93:87:e6:da:de:50:7f:27: 5b:1c:3b:85:19:3b:a6:a6:12:8d:7f:66:51:c8:34:2b:43:dc: 95:41:0e:c3:f6:e9:8a:48:5c:b4:de:cc:c9:ca:65:82:6a:43: 2e:97:6f:bc:29:81:b2:c4:3c:4a:0a:58:00:49:9a:9c:c5:74: 7c:7c:93:d9:62:67:25:60:fd:27:ef:36:14:f1:1d:69:eb:5e: a8:43:ba:ca:cb:40:27:cb:bd:a3:0c:d5:d8:1f:5c:06:06:75: 4e:40:dd:13:96:af:a0:5f:7b:ba:bd:5d:a4:8f:f6:fe:95:ad: 00:b8:e6:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUwODIyMjMxMTIxWhcNMjUwODI5MjMxMTIxWjAYMRYwFAYD VQQDEw02OGE4ZjkxOS0yNmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWh2FqRCe7Xd7qArborRojlzDZu9hLtmAulPzYJuM5EjjNocaT1HUsLHXJWw BEFfymtXGSBXmhqhcOauTPnDGDNQzLfTIwTTrMVeMQrnV/RSHRrP5xi8596KCID1 KlbRUf27Ah9DLQVU4nqStLsZSVjCRpOvWRyajFs8R7QIImjP27cH5KWUdbLD6S1U HZdAyqFOmSgRIVbpezguMaxlYlMRiDNNr7GjiDj2Tu5b6BDv4YBVTI+J2Uh+dzjW VbPdGxchlcJULUsgkjH2uWwDj5s+gqlgdX3DoGYbjHVjQVi9YlrZVmZSubY+1MqE jcOa2mhnoH5ijpPytbOF5Ok/OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKxFQ05 eEr6tcF50mV2/RhxDJngMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkdTkZs08IzNMw0f+OLi6ag35nJZ0x0QVwpD92IT7rYh4515asUOEx CzXQbm8wHSUGj1AaEFCnj0LYbBz/qlemxhSBqnh8goojUNpi+YIB2rouxiN6fycw Qgdmt+AXyURqDLa6bOKy7ZVsQtXBfwSZcYpDJrNQWkymME2t8xSoj+oFRRxGqnMT k4fm2t5QfydbHDuFGTumphKNf2ZRyDQrQ9yVQQ7D9umKSFy03szJymWCakMul2+8 KYGyxDxKClgASZqcxXR8fJPZYmclYP0n7zYU8R1p616oQ7rKy0Any72jDNXYH1wG BnVOQN0Tlq+gX3u6vV2kj/b+la0AuOYq -----END CERTIFICATE-----Generated at Sun Aug 24 09:01:38 2025 by rpki-client