$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: PT5NcVqpz1PzjnKPkar6esnRWh2zCiLwxfdtbaNA23Y= Subject key identifier: 8F:E3:6F:28:15:B8:F5:BB:75:D5:7D:51:DE:39:87:4C:C8:96:25:8A Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 2F Signing time: Sat 23 Aug 2025 07:54:50 +0000 Manifest this update: Sat 23 Aug 2025 07:54:50 +0000 Manifest next update: Sat 30 Aug 2025 07:54:50 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: cvJj06ukGG0pWlJ/GUrzuPit4DzdIgIX1/MOchATSY0=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: uKfaLXcOCNJdE2XGkLLuO2/nisMUjVXsuFOacDhWkTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Aug 23 07:54:50 2025 GMT Not After : Aug 30 07:54:50 2025 GMT Subject: CN=68a973ca-f0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6d:66:b3:3f:26:d4:bb:30:98:43:01:e8:8d: 8d:b2:c0:4d:9c:f1:8d:d0:a9:a6:4e:29:81:cd:87: 60:9f:1c:b9:14:26:82:7b:99:fe:c2:f9:72:ba:8e: da:07:2a:cb:48:2d:6f:aa:b3:21:7a:21:d1:ca:a7: b7:85:f8:68:d4:12:86:a7:24:b4:5d:ce:45:bd:f6: 55:64:2c:1d:37:9d:c7:55:3e:50:0d:e5:a5:70:b1: a6:e2:9a:69:17:75:6b:24:21:69:b6:04:2c:70:89: 43:04:45:0b:4b:b1:23:a5:0f:5b:23:b8:53:d9:dc: c5:c4:92:98:52:7b:73:22:91:a0:69:78:c4:ac:e3: 52:67:d9:14:a9:9d:15:27:29:18:ba:53:dc:3e:fe: 08:4c:b1:db:e3:cd:86:4e:3e:43:a0:b6:c7:55:8e: a5:74:aa:23:e5:e2:bc:5d:9c:d6:56:c2:31:42:02: 12:27:00:7b:74:98:5c:7d:32:3b:36:d0:67:f7:70: 0c:f3:94:9f:8b:d7:d9:39:b5:ed:ac:0d:0d:16:bb: d5:1e:bd:df:f0:c1:81:5c:f5:be:ba:44:bf:3f:79: a9:2d:98:cb:0d:ff:1e:a2:4d:bc:9f:0c:24:0a:ff: 1f:6d:32:4c:aa:11:40:dc:36:c3:fe:ce:c6:5e:05: da:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E3:6F:28:15:B8:F5:BB:75:D5:7D:51:DE:39:87:4C:C8:96:25:8A X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:b4:97:79:ca:f9:26:87:91:27:0f:81:84:59:fe:59:3c:89: 6e:a2:e6:9b:ab:03:b6:eb:68:b5:47:1e:d3:4e:68:f0:ae:8c: 2a:fc:5b:79:a7:02:35:75:e4:94:f3:84:49:c0:ab:80:11:62: e0:b3:10:66:8e:58:21:a5:46:b6:13:12:19:c4:84:fc:c9:28: e4:16:c6:58:2e:90:ca:14:89:38:22:f2:e2:fe:b5:5b:85:ae: 14:a5:2d:ec:3f:cf:55:03:0a:59:99:3a:19:d6:99:b8:ea:b7: cb:0d:72:36:81:3e:24:0a:58:52:cf:22:55:65:3d:0d:2e:7e: 75:c7:76:d7:5b:1b:6e:7f:bc:4a:b9:f7:5b:30:eb:56:ed:d4: b9:d5:b6:86:d2:8f:d7:69:32:4a:d1:35:34:51:08:e4:df:e5: 06:3e:21:89:aa:fa:55:55:e8:eb:4d:5a:de:bd:88:62:55:40: 7e:7b:f9:95:99:7e:67:dc:f3:33:74:f7:e2:d6:ea:a1:57:13: 7b:b1:ab:50:18:86:82:83:dc:15:a9:93:87:e6:0d:63:95:77: a8:b6:4d:bf:37:28:54:80:a9:a1:34:1d:d0:76:59:96:4b:2c: 9c:c1:08:e2:f3:b0:d5:31:f3:34:bb:58:08:c2:c1:cb:ad:63: be:80:fd:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoNUVDNUZCMzM0RUU1MkI5MDA5Q0I5MjNDNjkzQkQyMEYw NDc4QTE0NDAeFw0yNTA4MjMwNzU0NTBaFw0yNTA4MzAwNzU0NTBaMBgxFjAUBgNV BAMTDTY4YTk3M2NhLWYwYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDebWazPybUuzCYQwHojY2ywE2c8Y3QqaZOKYHNh2CfHLkUJoJ7mf7C+XK6jtoH KstILW+qsyF6IdHKp7eF+GjUEoanJLRdzkW99lVkLB03ncdVPlAN5aVwsabimmkX dWskIWm2BCxwiUMERQtLsSOlD1sjuFPZ3MXEkphSe3MikaBpeMSs41Jn2RSpnRUn KRi6U9w+/ghMsdvjzYZOPkOgtsdVjqV0qiPl4rxdnNZWwjFCAhInAHt0mFx9Mjs2 0Gf3cAzzlJ+L19k5te2sDQ0Wu9Uevd/wwYFc9b66RL8/eaktmMsN/x6iTbyfDCQK /x9tMkyqEUDcNsP+zsZeBdqzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj+NvKBW4 9bt11X1R3jmHTMiWJYowHwYDVR0jBBgwFoAUXsX7M07lK5AJy5I8aTvSDwR4oUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzM0MDA4MDIyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9V US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHNYN00wN2xLNUFKeTVJOGFUdlNEd1I0b1VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF Rjg3LzM0MDA4MDIyMzhCMzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVB Snk1SThhVHZTRHdSNG9VUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE+0l3nK+SaHkScPgYRZ/lk8iW6i5purA7braLVHHtNOaPCujCr8W3mn AjV15JTzhEnAq4ARYuCzEGaOWCGlRrYTEhnEhPzJKOQWxlgukMoUiTgi8uL+tVuF rhSlLew/z1UDClmZOhnWmbjqt8sNcjaBPiQKWFLPIlVlPQ0ufnXHdtdbG25/vEq5 91sw61bt1LnVtobSj9dpMkrRNTRRCOTf5QY+IYmq+lVV6OtNWt69iGJVQH57+ZWZ fmfc8zN09+LW6qFXE3uxq1AYhoKD3BWpk4fmDWOVd6i2Tb83KFSAqaE0HdB2WZZL LJzBCOLzsNUx8zS7WAjCwcutY76A/Tc= -----END CERTIFICATE-----Generated at Sat Aug 23 12:41:52 2025 by rpki-client