$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: y/q1pMUl3Pp7UszCVgy/Qm+pHRul9GuWU9+nX9gTWbg= Subject key identifier: CD:41:C1:45:5F:79:CB:0A:89:1A:6E:FF:17:6A:AB:43:60:24:4E:D0 Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 58 Signing time: Sat 23 Aug 2025 07:24:23 +0000 Manifest this update: Sat 23 Aug 2025 07:24:22 +0000 Manifest next update: Sat 30 Aug 2025 07:24:22 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: 4ktvpYiOQAkKo1DdicwUyidF0EJCGdW1sfaobmOgzzk=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Aug 23 07:24:22 2025 GMT Not After : Aug 30 07:24:22 2025 GMT Subject: CN=68a96ca7-5bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ff:df:b9:96:6b:03:6e:93:23:8a:f1:20:7f: 07:d0:a0:a3:28:8a:21:8a:a3:5b:99:43:6d:a0:a7: df:26:bb:f7:02:9a:3b:d9:ed:b0:05:4d:08:32:78: 37:36:fb:b6:c4:6d:d5:28:2c:38:26:b5:be:c8:45: bb:b5:30:62:7f:1f:ba:b2:ae:40:af:21:41:f3:b4: 88:2a:a6:a8:25:86:9d:d3:b4:7b:de:2b:d1:32:47: ba:ac:c7:52:13:e1:7c:12:4d:ad:92:2c:e9:93:cf: 9e:c8:3a:b5:66:2b:e6:2d:6c:07:ca:96:75:8c:6f: 2d:3d:96:62:f1:90:7a:4a:d8:6d:bf:30:39:eb:d2: ee:a9:65:e5:df:60:7a:e6:d9:5f:08:df:45:fb:a2: 97:1a:43:e3:4f:39:89:d3:36:97:12:5b:6a:4d:f1: b3:11:73:00:97:51:28:26:55:bf:88:63:d6:fb:03: b7:d1:09:e7:14:b1:20:03:ff:f6:46:be:62:b4:3f: 88:0f:a9:e2:98:bb:40:1f:fe:08:c5:18:19:56:a8: 9a:fe:31:83:bd:2f:17:a9:65:11:49:71:af:f0:e9: 9e:09:62:f7:0b:a2:74:33:88:9d:e8:6a:aa:0e:cf: 90:95:9c:05:5c:ec:c4:92:93:92:6a:ee:12:14:37: b5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:41:C1:45:5F:79:CB:0A:89:1A:6E:FF:17:6A:AB:43:60:24:4E:D0 X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c5:0c:7e:65:fc:42:7e:4e:d3:fe:37:4b:8a:04:59:05:50: 4a:9f:75:d0:3a:f2:44:c2:1b:2f:28:66:e5:bc:d8:57:10:b0: bf:59:04:74:66:8a:97:c8:09:ef:e6:25:87:47:48:5a:5b:bc: 79:71:89:b4:0d:56:4b:96:10:49:f7:52:39:1e:87:24:ce:fd: 35:2e:e7:bd:0c:77:f1:6c:66:ca:c5:e4:92:22:8d:25:f8:46: b6:a3:e1:c4:ef:f0:d9:ff:22:a0:d2:98:0e:c9:ea:a3:58:e9: 34:ea:cb:81:c8:36:60:be:c7:d7:9e:c8:36:eb:dd:47:9d:11: 45:df:22:bc:19:e4:8c:b7:fa:22:c3:bb:7b:07:73:14:fa:11: a4:64:f4:b5:1b:45:33:96:a4:66:cc:41:fc:f7:b2:f5:34:c1: a0:69:aa:79:87:7c:72:de:f5:0a:2a:01:e9:e7:a0:e6:65:11: 86:19:c4:9c:36:be:b8:5a:4e:c6:58:12:31:b3:0b:43:93:ce: c0:ac:48:41:6b:af:6b:f1:f3:0e:61:c6:89:79:20:ee:91:d3: fc:c7:76:b5:58:f2:ad:00:21:f9:7a:d2:94:99:87:98:c8:54: 8e:07:5d:43:46:32:9f:0c:0f:0a:fc:02:07:2e:34:f8:75:ef: 40:53:3d:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTA4MjMwNzI0MjJaFw0yNTA4MzAwNzI0MjJaMBgxFjAUBgNV BAMTDTY4YTk2Y2E3LTViZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDq/9+5lmsDbpMjivEgfwfQoKMoiiGKo1uZQ22gp98mu/cCmjvZ7bAFTQgyeDc2 +7bEbdUoLDgmtb7IRbu1MGJ/H7qyrkCvIUHztIgqpqglhp3TtHveK9EyR7qsx1IT 4XwSTa2SLOmTz57IOrVmK+YtbAfKlnWMby09lmLxkHpK2G2/MDnr0u6pZeXfYHrm 2V8I30X7opcaQ+NPOYnTNpcSW2pN8bMRcwCXUSgmVb+IY9b7A7fRCecUsSAD//ZG vmK0P4gPqeKYu0Af/gjFGBlWqJr+MYO9LxepZRFJca/w6Z4JYvcLonQziJ3oaqoO z5CVnAVc7MSSk5Jq7hIUN7VZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzUHBRV95 ywqJGm7/F2qrQ2AkTtAwHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIbFDH5l/EJ+TtP+N0uKBFkFUEqfddA68kTCGy8oZuW82FcQsL9ZBHRm ipfICe/mJYdHSFpbvHlxibQNVkuWEEn3UjkehyTO/TUu570Md/FsZsrF5JIijSX4 Rraj4cTv8Nn/IqDSmA7J6qNY6TTqy4HINmC+x9eeyDbr3UedEUXfIrwZ5Iy3+iLD u3sHcxT6EaRk9LUbRTOWpGbMQfz3svU0waBpqnmHfHLe9QoqAennoOZlEYYZxJw2 vrhaTsZYEjGzC0OTzsCsSEFrr2vx8w5hxol5IO6R0/zHdrVY8q0AIfl60pSZh5jI VI4HXUNGMp8MDwr8AgcuNPh170BTPTs= -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:02 2025 by rpki-client