$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: dqwcRyxG5PA6z+IZSKjWtfPp64l/zOJBHARpkSeew3k= Subject key identifier: 30:17:AD:DC:C6:55:2A:BD:A0:C6:18:8E:F6:46:3A:6F:4E:F6:4B:E7 Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: B9 Signing time: Sat 23 Aug 2025 02:14:39 +0000 Manifest this update: Sat 23 Aug 2025 02:14:38 +0000 Manifest next update: Sat 30 Aug 2025 02:14:38 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: a27/tStocRFEVDmIoEACcaimu8srgCRVRjMn9wZSbJI=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: DgEucoR97Y9+a6MdEE8/uaZNnvtkSjr5/qYttwnSpcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:14:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Aug 23 02:14:38 2025 GMT Not After : Aug 30 02:14:38 2025 GMT Subject: CN=68a9240f-f28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:9b:19:ee:9b:cd:d0:e7:8f:94:c0:ea:34: a8:14:9f:7b:fd:dd:36:80:58:26:2c:fa:dc:8f:58: 28:67:bf:3e:03:48:6a:ef:50:88:6e:e9:f3:f6:0d: 8b:05:db:97:9e:b1:a4:5a:52:22:4b:a4:45:21:bf: 07:9d:da:e0:b5:2e:b0:f8:f8:5e:23:5d:51:bb:d6: 18:f4:65:1c:55:f0:47:a0:c1:84:ed:b4:81:ab:de: cf:e8:e3:c7:87:47:e9:42:85:a4:a6:e9:5d:52:0c: 36:9d:dd:63:34:77:3b:8b:12:7d:48:71:4b:46:34: 81:6a:36:96:11:6c:b5:c8:69:3a:a2:cd:2d:35:96: 33:7c:eb:f9:a4:90:ea:9d:cc:49:58:da:d7:9c:c2: 5f:aa:49:4f:dd:d1:0a:54:e1:8b:a9:a7:6e:6a:55: 0e:59:c6:6c:c9:e3:fc:17:aa:6a:e9:e3:52:83:08: 55:bb:5e:5d:75:10:62:0b:0b:3e:f8:9c:84:d1:4c: 7b:5b:d1:bc:52:64:08:b5:f6:2f:8f:cd:f1:3d:3a: 50:03:9f:b4:80:96:29:20:99:ac:0f:7e:b3:19:3c: 49:54:32:f8:a4:d0:69:39:eb:cf:d4:bd:50:ec:86: 04:e6:2f:e7:f6:2f:40:4c:24:63:da:60:69:6c:6f: 6e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:17:AD:DC:C6:55:2A:BD:A0:C6:18:8E:F6:46:3A:6F:4E:F6:4B:E7 X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:97:3f:be:1a:98:46:f7:8a:b8:37:fc:8f:fb:c5:33:ec:42: 9b:06:bd:6f:3d:34:82:38:f3:5e:72:f8:ff:f3:aa:f9:ae:46: e5:0b:87:4c:37:98:f8:be:54:28:13:3f:2f:cd:4e:b9:07:49: 31:89:6a:b4:85:59:28:7c:99:ee:83:1a:56:c2:6c:7d:d4:66: 35:23:7a:32:3a:27:94:da:f6:3f:16:6a:c0:69:88:87:bf:a3: ab:c8:ce:f7:74:c3:28:06:51:2c:c2:95:8c:f9:4f:2d:a3:72: 81:5a:f3:ba:06:66:ee:7c:0d:6a:0d:56:12:2a:7d:98:b0:38: 60:b0:35:81:b6:d5:61:0b:71:be:43:3e:bf:a9:31:62:57:64: a4:81:86:14:d8:6b:0a:d8:f1:66:dc:33:77:fc:46:5d:46:05: b6:c4:09:83:41:a1:ab:b4:57:48:93:da:8c:af:2a:e9:8d:97: 6d:ff:e9:b1:e9:29:d0:5c:6a:49:86:cd:5f:ef:b7:bd:57:9e: 7a:82:7e:4b:b4:bc:8f:9f:df:f1:f3:33:cd:dd:30:34:e4:f3: 8b:86:7f:c0:1f:22:f5:51:5f:14:ff:1c:b8:33:a6:d1:c8:d2: b3:1e:a2:60:28:13:aa:56:79:5d:ec:b0:2a:15:ed:5c:53:b3: 72:40:74:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjUwODIzMDIxNDM4WhcNMjUwODMwMDIxNDM4WjAYMRYwFAYD VQQDEw02OGE5MjQwZi1mMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0ibGe6bzdDnj5TA6jSoFJ97/d02gFgmLPrcj1goZ78+A0hq71CIbunz9g2L BduXnrGkWlIiS6RFIb8HndrgtS6w+PheI11Ru9YY9GUcVfBHoMGE7bSBq97P6OPH h0fpQoWkpuldUgw2nd1jNHc7ixJ9SHFLRjSBajaWEWy1yGk6os0tNZYzfOv5pJDq ncxJWNrXnMJfqklP3dEKVOGLqadualUOWcZsyeP8F6pq6eNSgwhVu15ddRBiCws+ +JyE0Ux7W9G8UmQItfYvj83xPTpQA5+0gJYpIJmsD36zGTxJVDL4pNBpOevP1L1Q 7IYE5i/n9i9ATCRj2mBpbG9uhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAXrdzG VSq9oMYYjvZGOm9O9kvnMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7lz++GphG94q4N/yP+8Uz7EKbBr1vPTSCOPNecvj/86r5rkblC4dM N5j4vlQoEz8vzU65B0kxiWq0hVkofJnugxpWwmx91GY1I3oyOieU2vY/FmrAaYiH v6OryM73dMMoBlEswpWM+U8to3KBWvO6BmbufA1qDVYSKn2YsDhgsDWBttVhC3G+ Qz6/qTFiV2SkgYYU2GsK2PFm3DN3/EZdRgW2xAmDQaGrtFdIk9qMryrpjZdt/+mx 6SnQXGpJhs1f77e9V556gn5LtLyPn9/x8zPN3TA05POLhn/AHyL1UV8U/xy4M6bR yNKzHqJgKBOqVnld7LAqFe1cU7NyQHT1 -----END CERTIFICATE-----Generated at Sat Aug 23 10:56:54 2025 by rpki-client