$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: YqGThmuJGMcrRhWyQPC1hM0zZJPzENFSPBJKS3EuWC4= Subject key identifier: C9:50:F9:CA:0B:12:02:BE:04:90:00:8D:4F:52:60:9F:3C:0D:F8:EA Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 5C Signing time: Sat 23 Aug 2025 07:22:30 +0000 Manifest this update: Sat 23 Aug 2025 07:22:29 +0000 Manifest next update: Sat 30 Aug 2025 07:22:29 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: u/ZgF6U78NXCO8fY/PGcf4eOq9iUF00CRaPM/bljD3s=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: BO96CEY+h3kyCGROfLPYwk1rs1fVmSzj2xY5TwnQPlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Aug 23 07:22:29 2025 GMT Not After : Aug 30 07:22:29 2025 GMT Subject: CN=68a96c35-d989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3e:ad:ce:5a:07:86:c5:86:d9:dc:58:f9:b5: dc:f2:dd:89:64:b3:e6:71:4a:ae:3c:a6:52:28:db: 30:61:e3:fb:84:0a:33:65:57:50:46:42:4e:75:54: 40:3e:bc:40:bc:3c:2f:90:3a:69:85:e8:33:64:4d: 94:e7:ee:83:64:53:60:2d:9a:11:3d:70:8c:4b:15: 10:5e:e4:93:b0:d5:c1:16:af:cc:61:cf:3d:32:00: ff:7d:3f:28:06:f4:df:89:5d:df:1d:39:0b:43:18: 13:47:12:b5:36:1b:24:21:3c:39:9b:f8:23:36:13: 07:57:61:20:c9:66:38:cd:7d:5a:da:79:c2:c4:f6: 65:ee:98:32:27:26:e3:bd:6b:90:59:78:c8:57:e9: 85:62:bc:d4:07:c7:b1:64:8a:02:27:02:87:49:e5: 38:ef:71:28:08:01:11:79:b1:91:30:f1:db:e9:8f: ab:ca:dc:81:ba:41:ad:08:cb:0b:d9:a5:e0:07:22: c9:d6:c3:43:db:95:dd:e4:bc:ca:b8:ef:4f:81:b7: 43:08:2f:6d:a1:44:d1:c0:04:bf:81:6b:50:e1:62: fc:3a:f5:11:41:2b:20:e1:1b:f6:36:0b:2c:86:96: b0:5c:47:5d:4e:55:7b:29:0f:bf:b2:2c:33:42:77: 74:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:50:F9:CA:0B:12:02:BE:04:90:00:8D:4F:52:60:9F:3C:0D:F8:EA X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ee:23:e1:d3:12:32:3f:0a:44:88:aa:8d:97:79:74:77:be: 57:f6:a4:88:8c:ee:07:ac:3d:16:5a:f7:bb:d6:4b:e4:fd:ff: 92:40:be:fd:98:69:b0:ef:1d:ef:1a:a4:77:38:eb:65:91:8e: e4:8c:94:22:69:6b:31:64:f5:67:83:84:a2:81:93:ab:53:48: 64:f1:b9:61:06:e0:56:7c:43:64:12:86:dd:52:fb:87:3c:93: 28:cb:91:bb:3f:c8:fb:ef:1b:43:36:7c:7d:39:dc:fa:98:63: 0f:a6:76:76:10:74:df:56:ec:30:ab:a5:e4:16:ba:3f:ee:1a: 4c:8a:d6:e9:ca:ff:a3:12:f9:88:4e:ba:f7:93:0e:c7:92:37: 50:6a:0e:19:e5:0b:c9:90:a4:19:cd:b2:c1:4f:ce:0b:fb:71: e3:6c:d4:d7:7f:c9:94:14:de:a5:86:67:83:a3:8e:fe:8b:6a: 4e:7c:2a:df:e5:90:4c:f8:70:40:50:65:f0:3c:38:3b:52:cf: 02:1e:c5:40:58:6a:ed:fe:4b:fc:33:93:b8:f1:1d:94:27:75: 01:46:a7:ba:7d:78:b2:21:2a:df:a0:30:f1:b1:fe:39:a1:c9: b6:f3:f8:c7:e9:c0:3f:55:cb:40:12:a2:f1:ec:2f:38:d8:66: 90:b0:9e:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTA4MjMwNzIyMjlaFw0yNTA4MzAwNzIyMjlaMBgxFjAUBgNV BAMTDTY4YTk2YzM1LWQ5ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrPq3OWgeGxYbZ3Fj5tdzy3Ylks+ZxSq48plIo2zBh4/uECjNlV1BGQk51VEA+ vEC8PC+QOmmF6DNkTZTn7oNkU2AtmhE9cIxLFRBe5JOw1cEWr8xhzz0yAP99PygG 9N+JXd8dOQtDGBNHErU2GyQhPDmb+CM2EwdXYSDJZjjNfVraecLE9mXumDInJuO9 a5BZeMhX6YVivNQHx7FkigInAodJ5TjvcSgIARF5sZEw8dvpj6vK3IG6Qa0IywvZ peAHIsnWw0Pbld3kvMq470+Bt0MIL22hRNHABL+Ba1DhYvw69RFBKyDhG/Y2CyyG lrBcR11OVXspD7+yLDNCd3S5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyVD5ygsS Ar4EkACNT1JgnzwN+OowHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ7uI+HTEjI/CkSIqo2XeXR3vlf2pIiM7gesPRZa97vWS+T9/5JAvv2Y abDvHe8apHc462WRjuSMlCJpazFk9WeDhKKBk6tTSGTxuWEG4FZ8Q2QSht1S+4c8 kyjLkbs/yPvvG0M2fH053PqYYw+mdnYQdN9W7DCrpeQWuj/uGkyK1unK/6MS+YhO uveTDseSN1BqDhnlC8mQpBnNssFPzgv7ceNs1Nd/yZQU3qWGZ4Ojjv6Lak58Kt/l kEz4cEBQZfA8ODtSzwIexUBYau3+S/wzk7jxHZQndQFGp7p9eLIhKt+gMPGx/jmh ybbz+MfpwD9Vy0ASovHsLzjYZpCwnnQ= -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:09 2025 by rpki-client