$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft File: sXBCw3IXHA9BRv78RNHbqlIjhxs.mft (raw, json) Hash identifier: xyCFPxA5acgPnxuSEjp1AM+E/8URVqQ1dyuMWuQOTAA= Subject key identifier: 06:59:10:91:E2:1D:E7:DC:54:E1:39:71:38:E1:0C:40:10:C3:68:A6 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 075A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft Manifest number: 0755 Signing time: Fri 22 Aug 2025 21:48:38 +0000 Manifest this update: Fri 22 Aug 2025 21:48:37 +0000 Manifest next update: Fri 29 Aug 2025 21:48:37 +0000 Files and hashes: 1: sXBCw3IXHA9BRv78RNHbqlIjhxs.crl (hash: uvhyI1w4jrgvWiMOoO3CfaALXzkFxTev2YHk/IY4YOI=) 2: 3A9A3904330011EBA08B865DC4F9AE02.roa (hash: 3vNGkA3tCUjQbATswchBY3GI0Vd54z+gZRifmc/PxUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6, serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: Aug 22 21:48:37 2025 GMT Not After : Aug 29 21:48:37 2025 GMT Subject: CN=68a8e5b6-f7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b4:d2:fb:db:3a:03:17:50:91:de:81:da:59: 0d:d0:b4:22:20:38:a5:be:2f:75:d3:5f:6d:71:4c: b0:86:6e:0a:61:07:4a:88:85:16:98:e0:4e:4d:0c: a5:3e:92:78:cb:59:4b:f8:af:4d:5b:ce:ac:f7:5f: 71:ca:fd:22:da:8f:90:75:3a:f0:fe:67:40:67:e9: e3:59:dc:d6:01:05:1c:15:5c:96:14:b1:d3:ed:60: 32:34:30:64:d4:f8:b7:d5:4e:e7:54:76:1d:4b:8f: 03:c1:6e:c5:7c:8a:61:b7:8d:92:aa:27:63:35:80: 60:bd:1d:01:bd:73:9b:cb:29:e6:2c:f6:b7:af:c7: 1a:e5:90:46:48:7d:bb:7a:9e:db:cf:38:bb:ac:82: c1:55:f0:45:37:c3:db:0c:94:21:ce:13:26:4c:7c: 2a:94:00:b7:18:f5:50:73:71:5d:15:26:2a:fc:51: dc:9a:70:40:ff:27:85:99:21:27:94:89:74:eb:53: 4a:96:3c:7e:35:b8:e2:4c:c6:f0:b8:62:e8:8b:df: 8f:2e:af:fe:95:c7:0b:0d:2c:5c:e7:9e:52:0e:ad: cb:6c:46:23:f6:32:b2:84:47:92:82:18:d3:94:26: b4:4f:07:e0:9a:a6:b1:28:40:48:46:01:dc:ff:0c: ec:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:59:10:91:E2:1D:E7:DC:54:E1:39:71:38:E1:0C:40:10:C3:68:A6 X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:3c:fa:5c:45:8c:f1:2f:7a:84:7b:92:4c:b4:79:77:3a:80: 12:f8:89:77:ee:dd:71:02:19:19:dd:ea:03:5b:18:36:eb:4a: 8b:2f:eb:84:b7:82:e1:92:99:c4:c9:4e:ae:20:9d:f4:35:c8: 18:6d:ee:f5:c2:2b:4c:7a:a8:cd:69:18:f7:7e:aa:ea:45:09: 6f:0d:ea:bc:3c:61:55:eb:9e:c0:2e:c0:ee:db:59:24:84:57: ca:66:e8:98:cf:82:8c:0e:bb:bf:af:e9:71:df:f8:e4:c5:55: 28:22:e8:b8:f4:b9:d1:ea:63:04:06:6e:43:43:8b:70:64:0a: e1:27:4f:97:41:b1:8e:ab:e8:cb:c4:51:18:57:b1:f9:f2:28: be:f0:5b:4f:3e:97:b8:81:1d:ac:44:5c:ea:5c:48:5a:f9:26: 87:b8:3f:9b:72:46:6d:1a:3d:43:96:d5:ea:ae:1c:91:aa:67: 86:cd:6e:4d:da:5a:3e:8c:af:61:f4:01:c7:45:7b:e6:05:4f: 75:39:da:4e:42:f0:ef:e0:8e:e8:90:51:dd:20:20:c9:80:e2: 50:78:87:eb:83:8f:45:c1:7e:43:1b:13:47:91:2f:e9:b0:cd: 35:f1:71:49:a3:06:1b:ba:78:a5:db:bd:7d:42:a7:1b:a9:0f: 4c:78:fb:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjUwODIyMjE0ODM3WhcNMjUwODI5MjE0ODM3WjAYMRYwFAYD VQQDEw02OGE4ZTViNi1mN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLTS+9s6AxdQkd6B2lkN0LQiIDilvi91019tcUywhm4KYQdKiIUWmOBOTQyl PpJ4y1lL+K9NW86s919xyv0i2o+QdTrw/mdAZ+njWdzWAQUcFVyWFLHT7WAyNDBk 1Pi31U7nVHYdS48DwW7FfIpht42SqidjNYBgvR0BvXObyynmLPa3r8ca5ZBGSH27 ep7bzzi7rILBVfBFN8PbDJQhzhMmTHwqlAC3GPVQc3FdFSYq/FHcmnBA/yeFmSEn lIl061NKljx+NbjiTMbwuGLoi9+PLq/+lccLDSxc555SDq3LbEYj9jKyhEeSghjT lCa0TwfgmqaxKEBIRgHc/wzsrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZZEJHi HefcVOE5cTjhDEAQw2imMB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGNi8xOTg2QjlEODMyRkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhB OUJSdjc4Uk5IYnFsSWpoeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXPPpcRYzxL3qEe5JMtHl3OoAS+Il37t1xAhkZ3eoDWxg260qLL+uE t4LhkpnEyU6uIJ30NcgYbe71witMeqjNaRj3fqrqRQlvDeq8PGFV657ALsDu21kk hFfKZuiYz4KMDru/r+lx3/jkxVUoIui49LnR6mMEBm5DQ4twZArhJ0+XQbGOq+jL xFEYV7H58ii+8FtPPpe4gR2sRFzqXEha+SaHuD+bckZtGj1DltXqrhyRqmeGzW5N 2lo+jK9h9AHHRXvmBU91OdpOQvDv4I7okFHdICDJgOJQeIfrg49FwX5DGxNHkS/p sM018XFJowYbunil2719QqcbqQ9MePvU -----END CERTIFICATE-----Generated at Sun Aug 24 00:42:29 2025 by rpki-client