$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: Wd9logdMKTSSyTVj7BwWm/3IopHPoQWgtWHmdFhngGI= Subject key identifier: 57:68:97:35:A6:2F:A9:C6:F1:34:1A:44:53:3F:10:67:D0:6E:B1:81 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 09CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 09B7 Signing time: Fri 22 Aug 2025 20:10:57 +0000 Manifest this update: Fri 22 Aug 2025 20:10:57 +0000 Manifest next update: Fri 29 Aug 2025 20:10:57 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: 8xofk666ZLAVsGXCnDvSJ4ZUKo8E7+VugFUiFyzDSKg=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: ULVz6gtv7Lj17GsbY0DraIvlqeAo9m+ryNVdzpRY8/w=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: vTD8xn0iYmYF0FCpYg76YMcwnWDZovAXcFL69UbAO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2511 (0x9cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Aug 22 20:10:57 2025 GMT Not After : Aug 29 20:10:57 2025 GMT Subject: CN=68a8ced1-4fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e1:a0:01:df:ab:16:aa:84:21:2e:d3:e3:32: 68:91:8c:a6:7e:9a:2b:ac:78:3c:64:a9:35:e6:36: a7:1f:8d:0a:42:de:63:4f:32:19:23:18:99:f7:e8: 16:5e:27:be:8d:49:3f:8c:d9:00:45:79:2f:81:10: f0:f2:b3:23:84:da:6d:3c:cb:d0:67:30:55:f6:93: 15:eb:26:18:c7:4c:a1:df:89:09:84:15:37:e6:40: 23:1c:5c:b2:49:e0:b8:7b:4c:06:39:b6:52:06:88: 77:61:47:ef:2c:99:2e:07:da:34:48:cd:d6:66:bc: 8b:c5:0b:2d:f4:76:0b:b3:ea:28:4d:4a:10:ea:d0: 1e:a5:8a:43:04:8b:d5:d7:52:f0:b2:cc:35:db:3e: 31:4b:24:62:a9:dc:86:45:01:10:55:09:8a:22:52: dc:1d:b0:3d:d7:f7:01:07:84:5a:8b:fa:e3:06:74: cf:2d:0f:d5:2a:4a:36:4d:53:9a:bd:75:02:50:00: d8:79:6f:bb:65:16:e7:05:31:e1:b1:e3:c6:89:86: e6:51:67:05:54:c8:eb:be:17:b2:04:82:27:10:da: 8b:01:65:26:7b:de:cc:54:82:6f:de:3e:2c:16:82: 7a:3f:9d:5c:d7:91:2c:e9:53:d4:9e:5a:9b:bd:e6: fb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:68:97:35:A6:2F:A9:C6:F1:34:1A:44:53:3F:10:67:D0:6E:B1:81 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f2:ca:05:9d:0a:c2:fb:d2:9b:4d:d6:26:89:a7:21:b9:6c: 4c:da:9d:38:b3:50:86:41:34:7d:0e:ef:42:d6:17:5d:43:cb: 21:19:98:5a:b2:7e:93:33:c7:40:c3:32:a6:8f:d7:e8:84:98: b5:05:24:34:95:3f:29:f2:92:f9:fa:ae:d3:39:c8:8c:77:10: 88:5c:d9:91:f8:42:30:6c:a6:ec:96:3c:d8:1f:30:5c:72:d1: 39:aa:84:29:13:fa:92:8d:77:af:43:0d:3a:66:50:fc:ca:27: 05:ba:75:1c:95:ce:fd:b4:9f:9d:c6:86:97:9f:55:55:bf:85: 5d:8c:3f:5b:7a:6b:89:e2:6c:dc:1a:68:90:04:92:d3:50:80: c2:6e:bd:9a:97:7f:ce:14:3e:cf:6a:02:79:bf:7e:79:c1:9d: 71:20:3b:7c:10:61:e7:bd:6d:36:9a:6e:d9:a9:e9:cb:76:c3: 0a:8d:0d:cf:cc:2c:c8:a5:db:0b:70:d7:e6:ad:6b:7b:54:22: 15:b5:8e:2c:66:85:6f:f9:21:84:36:10:91:7f:46:e1:73:78: ff:ef:9e:fa:0e:d4:1c:24:a2:45:3a:c5:cc:50:eb:ee:56:13: d0:26:a7:95:08:af:e2:ff:a7:78:78:69:2f:47:4a:50:cf:3b: 9a:74:9d:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUwODIyMjAxMDU3WhcNMjUwODI5MjAxMDU3WjAYMRYwFAYD VQQDEw02OGE4Y2VkMS00ZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OGgAd+rFqqEIS7T4zJokYymfporrHg8ZKk15janH40KQt5jTzIZIxiZ9+gW Xie+jUk/jNkARXkvgRDw8rMjhNptPMvQZzBV9pMV6yYYx0yh34kJhBU35kAjHFyy SeC4e0wGObZSBoh3YUfvLJkuB9o0SM3WZryLxQst9HYLs+ooTUoQ6tAepYpDBIvV 11Lwssw12z4xSyRiqdyGRQEQVQmKIlLcHbA91/cBB4Rai/rjBnTPLQ/VKko2TVOa vXUCUADYeW+7ZRbnBTHhsePGiYbmUWcFVMjrvheyBIInENqLAWUme97MVIJv3j4s FoJ6P51c15Es6VPUnlqbveb7SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdolzWm L6nG8TQaRFM/EGfQbrGBMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX8soFnQrC+9KbTdYmiachuWxM2p04s1CGQTR9Du9C1hddQ8shGZha sn6TM8dAwzKmj9fohJi1BSQ0lT8p8pL5+q7TOciMdxCIXNmR+EIwbKbsljzYHzBc ctE5qoQpE/qSjXevQw06ZlD8yicFunUclc79tJ+dxoaXn1VVv4VdjD9bemuJ4mzc GmiQBJLTUIDCbr2al3/OFD7PagJ5v355wZ1xIDt8EGHnvW02mm7ZqenLdsMKjQ3P zCzIpdsLcNfmrWt7VCIVtY4sZoVv+SGENhCRf0bhc3j/7576DtQcJKJFOsXMUOvu VhPQJqeVCK/i/6d4eGkvR0pQzzuadJ1G -----END CERTIFICATE-----Generated at Sat Aug 23 19:36:30 2025 by rpki-client