$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft File: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft (raw, json) Hash identifier: IqU5RgSN0hDQATzeswQhxg+1VQOpgQXuTPGy4cHOX0A= Subject key identifier: C3:58:0D:0F:4A:EA:AD:CD:40:E6:04:A3:A9:F4:77:CB:06:DC:AA:FB Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 0344 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft Manifest number: 033F Signing time: Sat 23 Aug 2025 01:19:54 +0000 Manifest this update: Sat 23 Aug 2025 01:19:53 +0000 Manifest next update: Sat 30 Aug 2025 01:19:53 +0000 Files and hashes: 1: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl (hash: wQXhxlr/5oubzb+n/duy4EvsIw0hK1OJ27TlasslO3g=) 2: B6EB7E8ED14511EC89527642C4F9AE02.roa (hash: zOa4PF6DbTNRPznC3F2BR2cHewtdmnvs1jqCDBbkuO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 836 (0x344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5, serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Aug 23 01:19:53 2025 GMT Not After : Aug 30 01:19:53 2025 GMT Subject: CN=68a9173a-a27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ea:06:41:c6:ba:6f:7a:57:d0:b6:69:00:b2: b8:23:e7:ff:cb:0e:c7:1e:d5:7b:8c:0d:e4:a7:3f: eb:14:a8:ec:6c:f0:95:ec:c7:fd:33:cf:21:82:89: 9a:7d:a0:10:7c:b4:e8:6b:db:db:d4:81:55:9f:cd: 64:db:79:bc:64:6c:9a:31:80:0c:97:a0:ff:ea:93: b6:18:07:17:39:fc:1f:0c:a7:df:11:c6:af:96:65: 61:ec:01:a9:82:e8:21:55:ea:e8:f2:6c:8c:6a:f1: 78:62:3c:2b:3e:7c:09:fa:9b:71:0b:90:f9:30:36: 1c:1d:53:ec:86:84:a8:c8:e5:7c:9a:8a:d9:b8:13: 7e:d5:0a:be:02:10:85:db:ff:3e:f6:5d:7e:7a:53: 8e:2b:f3:e1:05:18:2c:42:b0:67:54:c3:46:19:1c: 0a:ad:23:46:07:4c:d0:42:bc:f7:94:7b:5e:7b:68: 47:7d:6f:34:4b:3c:34:41:8b:8d:0d:15:fc:7e:03: 6c:65:59:94:75:ea:42:9d:fd:3c:29:e6:9c:28:1b: c3:31:93:86:90:cd:e6:5d:c6:88:17:34:4a:20:39: 94:97:23:53:9f:81:b8:50:bc:da:45:63:de:89:4c: b4:13:99:c0:43:3a:31:f1:05:31:d2:e2:6e:ae:6a: db:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:58:0D:0F:4A:EA:AD:CD:40:E6:04:A3:A9:F4:77:CB:06:DC:AA:FB X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:02:db:0f:81:c6:58:36:10:55:e6:4b:e2:bb:5f:3c:73:52: 08:04:a6:d9:b8:64:f4:c7:6c:c9:66:94:05:52:7a:c3:68:07: a9:22:fd:78:9f:a0:d5:09:05:8c:54:ec:ce:f2:dd:7b:3e:fc: 20:2d:cb:c4:7d:c3:c7:60:0c:54:89:b8:d4:4a:42:05:03:33: ff:28:ec:a9:76:87:2b:18:28:5a:e7:9c:7f:8b:cc:6b:ff:84: 25:a1:21:6a:19:a7:97:a2:7f:be:55:fa:42:2a:c7:eb:8f:e9: 3a:fe:32:26:ea:db:04:b0:39:eb:a0:bb:02:5a:a4:ca:f0:b9: 82:dd:d7:b2:da:be:f6:9f:f1:b9:fc:2c:ff:9c:bb:33:e7:3a: 19:f8:e9:ad:d5:67:26:22:ce:0a:e7:8c:2d:d9:4c:95:10:ef: db:29:04:44:cc:49:b1:e4:05:d6:2c:da:be:98:32:68:3e:34: bf:d3:32:7a:eb:ca:f4:2d:b4:86:9a:b9:2f:28:ee:e0:10:f6: a1:4a:8c:00:f9:82:a9:4a:ee:2b:e0:c9:a2:e0:fa:79:62:f7: 23:94:14:10:fe:e3:f9:2f:cf:e2:1c:ed:96:85:bc:37:b2:dd: 03:36:43:6a:31:81:d1:67:ba:3b:c5:16:9a:e2:00:f0:bd:94: 1c:d9:f4:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjUwODIzMDExOTUzWhcNMjUwODMwMDExOTUzWjAYMRYwFAYD VQQDEw02OGE5MTczYS1hMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuoGQca6b3pX0LZpALK4I+f/yw7HHtV7jA3kpz/rFKjsbPCV7Mf9M88hgoma faAQfLToa9vb1IFVn81k23m8ZGyaMYAMl6D/6pO2GAcXOfwfDKffEcavlmVh7AGp gughVero8myMavF4YjwrPnwJ+ptxC5D5MDYcHVPshoSoyOV8morZuBN+1Qq+AhCF 2/8+9l1+elOOK/PhBRgsQrBnVMNGGRwKrSNGB0zQQrz3lHtee2hHfW80Szw0QYuN DRX8fgNsZVmUdepCnf08KeacKBvDMZOGkM3mXcaIFzRKIDmUlyNTn4G4ULzaRWPe iUy0E5nAQzox8QUx0uJurmrbEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNYDQ9K 6q3NQOYEo6n0d8sG3Kr7MB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURGNS9DMjQwQjc5NEQxNDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBD UlV4WC1EN3NQazlFcDZpM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrAtsPgcZYNhBV5kviu188c1IIBKbZuGT0x2zJZpQFUnrDaAepIv14 n6DVCQWMVOzO8t17PvwgLcvEfcPHYAxUibjUSkIFAzP/KOypdocrGCha55x/i8xr /4QloSFqGaeXon++VfpCKsfrj+k6/jIm6tsEsDnroLsCWqTK8LmC3dey2r72n/G5 /Cz/nLsz5zoZ+Omt1WcmIs4K54wt2UyVEO/bKQREzEmx5AXWLNq+mDJoPjS/0zJ6 68r0LbSGmrkvKO7gEPahSowA+YKpSu4r4Mmi4Pp5YvcjlBQQ/uP5L8/iHO2Whbw3 st0DNkNqMYHRZ7o7xRaa4gDwvZQc2fSc -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:06 2025 by rpki-client