$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: 0CMr8l6BDEM7nhMPkUTcxpYsrXYsoVVvSvulZIGYKzc= Subject key identifier: C2:E7:A1:32:30:23:18:30:F3:F1:27:33:41:27:C1:1A:20:F4:0D:05 Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 8B Signing time: Sat 23 Aug 2025 06:46:29 +0000 Manifest this update: Sat 23 Aug 2025 06:46:28 +0000 Manifest next update: Sat 30 Aug 2025 06:46:28 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: 9BZ89fZW88glp3rXsax3LymgKG1/cxOQXeGS7dR3kbI=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Aug 23 06:46:28 2025 GMT Not After : Aug 30 06:46:28 2025 GMT Subject: CN=68a963c5-14ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:40:75:ff:82:b8:15:71:a3:7a:53:82:4e:8e: d7:d8:a6:84:07:1d:44:cf:e0:f6:ee:bf:72:50:29: 15:73:6f:ad:4a:38:80:9c:b2:69:51:63:d2:ef:97: 07:7e:a0:5f:26:42:37:fb:0e:d9:95:2c:99:73:4d: dc:6a:c7:9a:e4:a0:37:da:29:4b:ef:c0:5c:4c:8a: 47:eb:85:da:01:1e:c5:12:a9:f1:0f:9d:28:4e:1e: 9e:aa:da:b1:1a:b3:64:aa:cc:74:20:e9:3a:78:3a: 5b:b5:1c:38:07:34:58:03:fa:20:79:ea:80:99:fb: 46:fb:69:74:41:fa:1d:e7:3b:67:08:88:10:08:4f: 81:c4:4c:a2:94:b6:b4:0d:70:0b:6c:58:25:5e:47: 0d:08:75:07:ed:7a:62:7d:ae:4a:5f:df:32:69:6b: 98:5f:b7:a0:6a:47:21:0c:fb:df:81:f8:b5:67:bb: 6b:b1:02:5b:83:b7:9f:de:b0:ad:71:53:fe:43:90: 43:c5:27:90:18:a3:5d:2a:1c:bd:45:e6:13:f0:fd: 19:a7:e1:4d:06:84:04:a5:62:14:64:d6:e6:81:58: 6b:05:55:e1:41:13:e2:44:76:26:d3:2b:33:4b:b8: cf:50:3c:97:d2:90:7d:d5:74:41:02:2e:6f:f3:53: eb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E7:A1:32:30:23:18:30:F3:F1:27:33:41:27:C1:1A:20:F4:0D:05 X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:96:71:20:90:9a:15:0e:ec:92:6c:74:dc:7f:e3:83:69:67: 37:09:fd:f3:01:fb:92:f8:b0:93:74:0b:2c:d6:ab:0a:7c:e5: aa:8e:92:2b:7b:e7:f6:8b:ce:31:d3:6f:fa:f1:67:63:8c:9f: 6a:34:92:12:98:08:fb:51:11:06:da:56:30:f3:b6:64:c1:2c: e3:a1:9e:47:5d:4e:fa:81:bd:a0:5d:48:f3:42:9b:7e:c3:9b: d7:b0:ba:74:22:c9:fc:8d:1c:43:e5:b7:b6:84:b4:58:d9:4f: 51:2d:8d:f8:cf:37:87:79:31:ee:1c:ae:71:4f:26:75:eb:21: f3:f7:16:80:b8:9e:28:af:9e:fc:e7:9e:7a:75:ff:54:98:c6: 42:5b:3f:a8:ef:8a:8b:30:e5:c8:7f:18:91:33:67:dc:1e:a5: fb:10:69:7d:2f:8d:20:9d:a5:ab:6f:a4:b9:23:72:89:16:25: 42:d9:52:f0:77:04:9d:98:3a:b4:3a:ff:56:d3:93:23:21:97: 78:ae:b2:38:cf:1d:c4:7a:c9:d6:60:15:c8:e2:e1:81:e6:76: 87:43:06:b1:cc:2a:a3:84:49:b8:23:eb:bf:0e:04:04:14:16: 3c:ae:cb:42:32:0f:ae:57:d9:70:0c:37:6f:b5:75:2f:0b:f5: 95:66:43:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKEQxNzQ0NTNFOTU2M0VCQUZDQkJCMzJBQ0M2Q0Y4NjZG QkQ4RTIyRjAwHhcNMjUwODIzMDY0NjI4WhcNMjUwODMwMDY0NjI4WjAYMRYwFAYD VQQDEw02OGE5NjNjNS0xNGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8kB1/4K4FXGjelOCTo7X2KaEBx1Ez+D27r9yUCkVc2+tSjiAnLJpUWPS75cH fqBfJkI3+w7ZlSyZc03casea5KA32ilL78BcTIpH64XaAR7FEqnxD50oTh6eqtqx GrNkqsx0IOk6eDpbtRw4BzRYA/ogeeqAmftG+2l0Qfod5ztnCIgQCE+BxEyilLa0 DXALbFglXkcNCHUH7Xpifa5KX98yaWuYX7egakchDPvfgfi1Z7trsQJbg7ef3rCt cVP+Q5BDxSeQGKNdKhy9ReYT8P0Zp+FNBoQEpWIUZNbmgVhrBVXhQRPiRHYm0ysz S7jPUDyX0pB91XRBAi5v81PrsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLnoTIw Ixgw8/EnM0EnwRog9A0FMB8GA1UdIwQYMBaAFNF0RT6VY+uvy7syrMbPhm+9jiLw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS83QjMzNEE0QUFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2X0x1ektzeHMtR2I3Mk9J dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS83QjMzNEE0QUFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2 X0x1ektzeHMtR2I3Mk9JdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmlnEgkJoVDuySbHTcf+ODaWc3Cf3zAfuS+LCTdAss1qsKfOWqjpIr e+f2i84x02/68WdjjJ9qNJISmAj7UREG2lYw87ZkwSzjoZ5HXU76gb2gXUjzQpt+ w5vXsLp0Isn8jRxD5be2hLRY2U9RLY34zzeHeTHuHK5xTyZ16yHz9xaAuJ4or578 5556df9UmMZCWz+o74qLMOXIfxiRM2fcHqX7EGl9L40gnaWrb6S5I3KJFiVC2VLw dwSdmDq0Ov9W05MjIZd4rrI4zx3EesnWYBXI4uGB5naHQwaxzCqjhEm4I+u/DgQE FBY8rstCMg+uV9lwDDdvtXUvC/WVZkPh -----END CERTIFICATE-----Generated at Sat Aug 23 10:45:55 2025 by rpki-client