$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: qPMo8SEPL39qqR+u9vwYppBwOxksBl3ZXHNw+RAdagM= Subject key identifier: BE:FA:E8:7A:D0:4D:7F:E7:A6:51:D2:D4:77:D2:65:F1:F7:B2:20:E1 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 01DF Signing time: Sat 23 Aug 2025 02:47:57 +0000 Manifest this update: Sat 23 Aug 2025 02:47:57 +0000 Manifest next update: Sat 30 Aug 2025 02:47:57 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: HSbcebk+KL1l3jnR7f2QT1xkOF76NNFBIdup5zEH3/Y=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: 9FynllD8H+NI8HSEXg9Jjmq002CiTaGo7ZssucPUw/c=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: pf/aq5LQ2SyN9nQK//wVXk1HeFtnOQFOhE/br9mZqh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Aug 23 02:47:57 2025 GMT Not After : Aug 30 02:47:57 2025 GMT Subject: CN=68a92bdd-0420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:81:da:09:17:05:01:06:1c:15:fb:2c:f3:6c: 3b:28:82:dc:c5:29:d1:56:c8:91:d6:bf:80:c8:07: d5:cd:5d:94:5d:7f:dc:b1:b9:f8:59:aa:ac:2a:98: 10:bf:1c:28:85:16:dd:25:19:f5:03:8b:29:76:a4: fe:c0:95:10:c9:61:01:df:9b:74:68:1c:7b:01:a1: de:69:4b:46:37:7d:bd:4f:b5:9b:f1:99:40:ac:be: 3a:45:39:99:26:d7:3b:33:f3:d4:22:90:cd:26:9b: fe:e9:42:fc:d0:ee:b0:8c:31:3c:07:52:df:f5:ef: 48:a6:e4:27:24:5a:4d:a6:67:29:4d:57:4e:9d:7d: d2:f7:25:de:1a:9f:76:71:27:27:0b:eb:e2:87:84: 17:60:ea:c6:f2:6a:fc:17:bb:22:c4:2c:cb:28:6f: c2:82:ed:71:5f:97:64:94:fd:92:5e:b4:bd:3b:d1: 7c:77:40:18:bf:e8:6e:c9:ff:07:a8:8f:7f:23:b8: bf:b1:7c:03:d8:12:26:e1:09:1e:9c:2e:b3:28:46: 4f:08:86:7f:7b:b7:68:fc:70:67:56:51:a2:f5:f5: a5:ff:76:f3:4e:f1:53:7b:8f:79:2f:2f:c1:1c:07: 24:89:99:94:f3:c6:07:4e:0c:7e:82:c7:3e:f0:a2: a4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FA:E8:7A:D0:4D:7F:E7:A6:51:D2:D4:77:D2:65:F1:F7:B2:20:E1 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:67:dd:e7:79:eb:91:9e:af:23:11:59:0b:f9:e2:28:50:fd: f2:d7:d8:01:3e:bc:5b:e0:51:25:4e:a2:77:27:82:cc:dc:27: 7c:f7:37:a7:f8:1c:bb:2b:07:42:8f:56:34:6c:fa:ca:7f:71: c2:42:89:26:23:ac:de:d0:23:38:a7:cc:6b:8f:db:e7:90:ac: b7:2d:7b:b4:b7:a5:29:13:67:fb:97:a9:40:ca:d4:d5:e4:09: 25:3c:57:b1:0b:55:53:86:89:06:44:ca:23:fe:56:4c:47:8b: bc:22:c7:ce:10:ff:9e:01:1c:e0:f9:1c:60:38:50:16:51:80: 97:07:31:a9:b1:33:49:03:d2:12:07:ae:bc:7c:c2:a9:73:03: 6b:55:b3:38:c8:fa:79:92:e2:d5:5f:45:d7:84:62:eb:6d:90: d5:a5:c6:fe:e9:40:5e:8b:d1:24:4c:ec:78:12:c3:3b:d6:5f: 75:d1:30:31:0c:0a:35:fa:63:26:28:b0:d6:91:c2:61:89:b3: 9f:2a:fc:19:d5:c2:0a:a3:d7:f5:59:53:d7:69:e5:13:d1:aa: 1e:0f:cf:2f:fe:31:94:ff:95:f7:b4:c7:f0:af:40:43:f7:de: d7:cc:82:b1:4f:1c:9d:22:55:42:7a:cd:d6:76:73:95:ad:68: b8:f0:5c:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUwODIzMDI0NzU3WhcNMjUwODMwMDI0NzU3WjAYMRYwFAYD VQQDEw02OGE5MmJkZC0wNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oHaCRcFAQYcFfss82w7KILcxSnRVsiR1r+AyAfVzV2UXX/csbn4WaqsKpgQ vxwohRbdJRn1A4spdqT+wJUQyWEB35t0aBx7AaHeaUtGN329T7Wb8ZlArL46RTmZ Jtc7M/PUIpDNJpv+6UL80O6wjDE8B1Lf9e9IpuQnJFpNpmcpTVdOnX3S9yXeGp92 cScnC+vih4QXYOrG8mr8F7sixCzLKG/Cgu1xX5dklP2SXrS9O9F8d0AYv+huyf8H qI9/I7i/sXwD2BIm4QkenC6zKEZPCIZ/e7do/HBnVlGi9fWl/3bzTvFTe495Ly/B HAckiZmU88YHTgx+gsc+8KKk0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL766HrQ TX/nplHS1HfSZfH3siDhMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Z93neeuRnq8jEVkL+eIoUP3y19gBPrxb4FElTqJ3J4LM3Cd89zen +By7KwdCj1Y0bPrKf3HCQokmI6ze0CM4p8xrj9vnkKy3LXu0t6UpE2f7l6lAytTV 5AklPFexC1VThokGRMoj/lZMR4u8IsfOEP+eARzg+RxgOFAWUYCXBzGpsTNJA9IS B668fMKpcwNrVbM4yPp5kuLVX0XXhGLrbZDVpcb+6UBei9EkTOx4EsM71l910TAx DAo1+mMmKLDWkcJhibOfKvwZ1cIKo9f1WVPXaeUT0aoeD88v/jGU/5X3tMfwr0BD 997XzIKxTxydIlVCes3WdnOVrWi48Fxg -----END CERTIFICATE-----Generated at Sat Aug 23 19:32:53 2025 by rpki-client