$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: hS4Ndw8PzUBtBTIIOgfV/JNUHWVzK+RMeHa/EPvXviQ= Subject key identifier: A1:35:9F:AB:00:3C:BB:B9:48:1A:75:2F:70:36:08:F1:C1:9E:EE:2B Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: FA Signing time: Sat 23 Aug 2025 05:23:13 +0000 Manifest this update: Sat 23 Aug 2025 05:23:12 +0000 Manifest next update: Sat 30 Aug 2025 05:23:12 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: 7VwOw5v6bb7eX9KT6ZLAjj6rAgW4+h0Da+DXvpzEM+c=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Aug 23 05:23:12 2025 GMT Not After : Aug 30 05:23:12 2025 GMT Subject: CN=68a95041-e7e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:a1:4f:75:08:04:c8:0f:a2:2f:15:39:3b: 9b:d8:f5:22:fd:4d:b4:45:2b:85:24:b0:f8:ac:f7: a1:c1:86:f5:d0:83:c0:45:11:f8:4d:a2:38:33:76: 36:c3:74:80:cd:80:15:7e:74:53:ba:c0:fc:41:47: f7:05:87:68:0a:10:81:58:50:5a:1d:5c:a7:7e:f9: 6c:5b:46:e3:2b:47:b6:c0:50:b7:df:b5:ff:e6:21: 76:03:35:87:18:8c:f2:b3:2f:08:52:39:7a:b6:d4: 0f:30:af:f0:e3:89:e0:ef:6d:a7:51:81:5c:be:5a: 5c:22:a5:d9:b6:3f:c2:de:79:46:59:57:ba:69:aa: 51:b7:6f:21:88:8b:c2:03:f3:41:e1:2d:8e:46:09: 35:02:38:48:f2:5a:ca:c6:d0:c0:59:f8:6b:11:45: fd:d0:e3:7e:cd:4a:6e:62:1e:d9:b4:7e:77:09:23: d3:e5:4f:48:0d:d7:47:1e:72:54:05:18:cd:57:bf: a5:55:45:7d:65:54:af:fa:59:36:04:37:a6:c1:18: ab:c4:69:df:be:32:e6:78:11:82:6a:5f:ee:7a:ae: a9:75:33:c2:29:81:d2:35:b1:88:66:26:fb:21:82: 05:73:72:21:44:b4:c4:c9:e0:47:76:6c:a8:13:45: 8f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:35:9F:AB:00:3C:BB:B9:48:1A:75:2F:70:36:08:F1:C1:9E:EE:2B X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:bc:f8:b2:2c:eb:6e:1b:dc:44:7d:a3:c7:0c:d9:60:f2:c0: 6d:59:62:40:42:ab:65:f6:77:c5:b1:a5:ff:a7:29:38:4e:a8: 44:d3:31:cf:de:6c:08:d6:1f:75:0f:03:d1:bd:13:9f:5c:9a: a4:3e:ba:65:d4:1b:fc:c6:3d:cf:0e:b5:9e:a7:99:47:25:28: c2:cb:15:77:88:c8:dd:08:9f:f8:4b:06:99:b6:b9:15:74:60: 11:f9:64:69:68:1f:6c:58:dd:3f:94:15:30:96:90:58:9c:9f: 4f:b7:6f:85:c1:01:f9:65:24:5c:8a:ee:02:37:ed:bd:b3:cc: 78:f9:17:03:5a:86:b0:4b:d5:0c:db:72:b9:90:dc:c7:eb:40: 3f:c1:55:85:38:c1:b7:7d:52:43:ac:68:17:2e:d2:bb:45:91: 71:25:ce:77:e9:20:47:b0:b0:68:30:e9:50:9e:d1:35:48:9a: 18:0e:0c:17:a7:c9:f4:7e:1f:88:f6:34:53:fa:c2:bf:9c:43: 50:15:cc:9d:12:43:19:75:8b:1d:c5:34:0b:d3:a3:7c:9c:93: 28:59:e4:d2:f6:9a:c8:fc:65:5a:03:1c:fb:b0:28:1a:dd:3d: 2c:46:e6:36:f5:f2:f2:95:2c:bb:f8:e4:d0:23:ed:ef:da:a8: 6e:6d:ec:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwODIzMDUyMzEyWhcNMjUwODMwMDUyMzEyWjAYMRYwFAYD VQQDEw02OGE5NTA0MS1lN2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1KhT3UIBMgPoi8VOTub2PUi/U20RSuFJLD4rPehwYb10IPARRH4TaI4M3Y2 w3SAzYAVfnRTusD8QUf3BYdoChCBWFBaHVynfvlsW0bjK0e2wFC337X/5iF2AzWH GIzysy8IUjl6ttQPMK/w44ng722nUYFcvlpcIqXZtj/C3nlGWVe6aapRt28hiIvC A/NB4S2ORgk1AjhI8lrKxtDAWfhrEUX90ON+zUpuYh7ZtH53CSPT5U9IDddHHnJU BRjNV7+lVUV9ZVSv+lk2BDemwRirxGnfvjLmeBGCal/ueq6pdTPCKYHSNbGIZib7 IYIFc3IhRLTEyeBHdmyoE0WPxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE1n6sA PLu5SBp1L3A2CPHBnu4rMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuvPiyLOtuG9xEfaPHDNlg8sBtWWJAQqtl9nfFsaX/pyk4TqhE0zHP 3mwI1h91DwPRvROfXJqkPrpl1Bv8xj3PDrWep5lHJSjCyxV3iMjdCJ/4SwaZtrkV dGAR+WRpaB9sWN0/lBUwlpBYnJ9Pt2+FwQH5ZSRciu4CN+29s8x4+RcDWoawS9UM 23K5kNzH60A/wVWFOMG3fVJDrGgXLtK7RZFxJc536SBHsLBoMOlQntE1SJoYDgwX p8n0fh+I9jRT+sK/nENQFcydEkMZdYsdxTQL06N8nJMoWeTS9prI/GVaAxz7sCga 3T0sRuY29fLylSy7+OTQI+3v2qhubezP -----END CERTIFICATE-----Generated at Sat Aug 23 18:13:42 2025 by rpki-client