$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft File: 4XcstdOWUnbPTpjTdmtjDX4_gXg.mft (raw, json) Hash identifier: pvGQwmQdaRAx52ukk5BPjnnz0TEiVGGDDsRL6CUc0Zs= Subject key identifier: B2:5A:C1:02:A0:2A:56:F9:E3:BF:E0:65:47:58:D6:BE:10:43:61:1C Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Certificate serial: 07BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft Manifest number: 079A Signing time: Fri 22 Aug 2025 21:40:20 +0000 Manifest this update: Fri 22 Aug 2025 21:40:19 +0000 Manifest next update: Fri 29 Aug 2025 21:40:19 +0000 Files and hashes: 1: 4XcstdOWUnbPTpjTdmtjDX4_gXg.crl (hash: haPXeoHcDwZ8E9fs/o/auSe6k7ArzUW9oaIip9nKt1k=) 2: 12DBAD3CDAFF11ECA67DA10BC4F9AE02.roa (hash: hFRxkLpFxynkLA+bgk7ZWKTxrIef2z810IITJ3Z3KSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175027, serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Validity Not Before: Aug 22 21:40:19 2025 GMT Not After : Aug 29 21:40:19 2025 GMT Subject: CN=68a8e3c3-00a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bb:f4:f6:64:98:fa:5b:1b:c4:98:06:d3:0e: 7f:b0:95:eb:9f:bf:58:41:e7:70:b6:6b:ab:fe:15: 00:89:31:ed:c9:af:43:3f:ad:d8:5e:b3:ac:d9:30: b9:78:fd:8b:5c:94:ff:01:1e:b8:dc:21:9e:95:89: ba:97:61:5a:82:39:4c:bc:4d:64:b1:a4:9d:dc:b5: 6b:e9:87:07:c5:fe:11:f6:25:51:c8:c8:52:b4:59: f3:44:6e:9c:7f:0c:50:ff:32:04:6d:74:52:f8:75: 6b:92:53:81:91:ee:a4:4e:74:09:c0:78:f3:78:b0: 69:65:32:3c:25:6e:57:04:08:d8:98:c7:71:89:b2: 23:ee:22:9c:23:a1:f9:7f:0f:4b:76:46:93:3d:b5: a7:43:ef:52:71:6a:b1:76:9f:74:ee:87:f2:3c:d1: b9:c5:7f:ac:be:c1:be:50:c5:28:21:19:47:30:aa: 4b:e7:cc:4c:81:d6:33:5d:81:bb:fe:7f:13:a2:b1: dc:c8:4b:5c:ec:12:ec:50:a9:d4:81:0f:b7:b4:8b: b8:4c:e6:ed:d0:b1:2d:13:93:68:ff:94:bd:72:6f: 0d:df:f6:e2:59:bb:b7:56:66:b2:07:08:05:2a:70: 1a:76:26:ad:52:62:8a:2f:b1:51:54:f0:5f:70:f5: 10:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5A:C1:02:A0:2A:56:F9:E3:BF:E0:65:47:58:D6:BE:10:43:61:1C X509v3 Authority Key Identifier: keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0e:7a:f5:dc:0a:0a:ab:1b:98:07:a1:22:b9:75:08:a5:03: 15:0a:80:90:f8:ce:92:7e:7c:5d:de:c9:2f:cd:a7:ad:25:5a: 00:1f:30:2c:5f:96:37:3c:4b:81:11:46:a9:42:fe:39:06:b6: 41:6b:b6:a6:06:c9:63:e0:a7:38:ee:59:e5:19:62:38:0a:aa: 41:b5:fd:2e:79:23:14:b5:01:cd:8b:ea:2e:49:6f:97:58:4e: bd:94:23:92:85:ef:da:03:55:bf:d9:27:0f:9c:71:4c:c1:37: 13:b0:3c:cd:3a:6c:78:4e:2c:05:dd:fc:73:9b:23:06:88:20: b7:ac:b9:d5:60:c6:0c:ed:5a:bc:13:76:95:5c:23:7b:25:21: 86:ca:e7:ef:36:dd:b0:12:1f:dc:74:14:52:41:c5:f6:2c:58: ca:b6:1a:0c:32:6c:e1:af:ee:6b:8d:8b:88:3a:71:6d:a7:a8: 82:7b:55:d8:d9:16:ad:6e:b4:64:dc:fd:a2:69:a0:6c:f5:a3: ac:76:76:be:6f:24:23:4a:0f:3c:c9:1c:d4:0c:a6:0d:b4:bf: 98:be:5b:f1:93:5a:86:55:c0:4d:66:c2:02:20:17:6b:8a:fe: d1:d6:43:64:b6:30:8b:00:03:b6:0a:60:a9:48:65:37:e4:80: 6c:08:32:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUwMjcxMTAvBgNVBAUTKEUxNzcyQ0I1RDM5NjUyNzZDRjRFOThEMzc2NkI2MzBE N0UzRjgxNzgwHhcNMjUwODIyMjE0MDE5WhcNMjUwODI5MjE0MDE5WjAYMRYwFAYD VQQDEw02OGE4ZTNjMy0wMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLv09mSY+lsbxJgG0w5/sJXrn79YQedwtmur/hUAiTHtya9DP63YXrOs2TC5 eP2LXJT/AR643CGelYm6l2FagjlMvE1ksaSd3LVr6YcHxf4R9iVRyMhStFnzRG6c fwxQ/zIEbXRS+HVrklOBke6kTnQJwHjzeLBpZTI8JW5XBAjYmMdxibIj7iKcI6H5 fw9LdkaTPbWnQ+9ScWqxdp907ofyPNG5xX+svsG+UMUoIRlHMKpL58xMgdYzXYG7 /n8TorHcyEtc7BLsUKnUgQ+3tIu4TObt0LEtE5No/5S9cm8N3/biWbu3VmayBwgF KnAadiatUmKKL7FRVPBfcPUQGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJawQKg Klb547/gZUdY1r4QQ2EcMB8GA1UdIwQYMBaAFOF3LLXTllJ2z06Y03ZrYw1+P4F4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTAyNy8yNTA1Q0VEQzI1 NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1VuYlBUcGpUZG10akRYNF9n WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYY3N0ZE9XVW5iUFRwalRkbXRqRFg0X2dYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTAyNy8yNTA1Q0VEQzI1NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1Vu YlBUcGpUZG10akRYNF9nWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Dnr13AoKqxuYB6EiuXUIpQMVCoCQ+M6Sfnxd3skvzaetJVoAHzAs X5Y3PEuBEUapQv45BrZBa7amBslj4Kc47lnlGWI4CqpBtf0ueSMUtQHNi+ouSW+X WE69lCOShe/aA1W/2ScPnHFMwTcTsDzNOmx4TiwF3fxzmyMGiCC3rLnVYMYM7Vq8 E3aVXCN7JSGGyufvNt2wEh/cdBRSQcX2LFjKthoMMmzhr+5rjYuIOnFtp6iCe1XY 2RatbrRk3P2iaaBs9aOsdna+byQjSg88yRzUDKYNtL+Yvlvxk1qGVcBNZsICIBdr iv7R1kNktjCLAAO2CmCpSGU35IBsCDJ/ -----END CERTIFICATE-----Generated at Sat Aug 23 13:36:39 2025 by rpki-client