$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: 9HYpUjvxFSoClp68r2UPvZK7NWZUpx4AkHmV6d0Bsvk= Subject key identifier: C9:6F:2D:90:E7:CB:32:5E:A9:46:78:8B:76:56:BC:11:A2:6C:82:E4 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 048F Signing time: Thu 07 Aug 2025 00:32:22 +0000 Manifest this update: Thu 07 Aug 2025 00:32:21 +0000 Manifest next update: Thu 14 Aug 2025 00:32:21 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: 64juEa2bk3J/g4olqcfJ/NbdFkDrPCv3j/4Ah0X9Wxw=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Aug 7 00:32:21 2025 GMT Not After : Aug 14 00:32:21 2025 GMT Subject: CN=6893f415-f7d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:8f:9f:ea:49:1c:ca:d8:8a:35:bb:6c:5f: 41:9f:95:e2:c1:21:7b:50:0a:d7:90:d8:5d:14:09: ed:af:5d:4a:54:7e:8a:fc:0f:c7:fa:63:f9:cf:04: 27:ce:4d:e4:47:ca:82:db:87:26:3d:84:a4:77:75: 91:e4:72:7f:1a:86:aa:26:5a:69:0f:c5:d2:fd:4f: 87:0e:0b:ee:ac:5e:f8:80:4b:3b:62:85:94:ad:e1: 14:14:9e:c2:95:74:ac:8d:8b:eb:e2:60:0f:68:9f: 21:40:cd:2e:27:b3:45:cf:d4:49:0d:f9:9b:70:f6: ba:92:8f:be:50:bc:78:b6:fc:94:0d:2a:cf:3b:f8: 39:ef:fd:1f:25:8e:7d:2c:7a:0c:c8:dd:de:8a:02: f8:cc:e8:40:78:2a:53:db:d0:5c:d2:ad:35:65:49: 65:4d:8b:43:4f:cc:6e:c0:27:a4:74:fd:62:f2:95: 87:1c:c0:52:32:94:c8:44:3a:c2:83:af:af:17:74: f9:1b:3b:26:0f:74:53:5c:73:8c:1a:78:c6:52:c4: 27:37:2d:ba:d5:6a:70:93:9b:fa:90:d8:0b:85:ac: 30:e9:74:70:61:8b:2e:97:e6:09:5a:13:4b:24:05: ed:f1:2d:60:60:ed:df:ca:48:10:e7:09:77:4e:ff: 15:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6F:2D:90:E7:CB:32:5E:A9:46:78:8B:76:56:BC:11:A2:6C:82:E4 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:08:2b:b9:c1:55:de:8a:67:9f:ea:01:e9:1c:8d:33:1f:00: c4:99:8c:0b:be:14:01:e3:ce:27:23:cc:0c:fb:a8:eb:26:53: 3a:ad:f6:1b:9f:f9:40:6d:13:99:08:01:b3:bd:46:72:52:56: 56:07:a7:5c:39:99:a4:6f:28:b4:e2:ed:ac:6b:b8:b0:b3:1d: d1:63:07:f0:ef:e0:55:a9:5e:3f:45:a5:12:d3:3c:f7:84:4e: 11:13:64:29:28:00:3f:73:1b:66:df:be:b3:c1:35:61:77:0b: 88:40:98:b5:7f:af:1f:e0:42:f5:e7:7e:5c:b8:28:be:2a:c8: c2:94:84:fa:ca:02:f3:90:8c:1b:2b:55:a5:38:42:85:72:0a: 2f:4b:7e:c7:a4:f8:de:ea:47:22:d2:0f:4c:2c:4b:e1:52:2d: fc:a5:89:5b:b4:69:ed:d6:00:c2:ef:39:0b:11:05:f1:bc:2a: 38:53:d8:a3:06:81:f9:fa:f7:e8:d8:2d:c5:22:ca:a4:29:b8: 1d:05:5c:f3:8b:ce:10:fc:1f:2e:0d:3d:65:54:94:52:dd:ee: 91:77:4c:f6:9e:8e:a6:51:93:ec:bc:01:82:64:74:d5:3e:b5: 73:25:4f:e2:f6:aa:e2:89:fc:01:c0:6a:62:0d:e8:4a:a4:19: d2:54:c1:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUwODA3MDAzMjIxWhcNMjUwODE0MDAzMjIxWjAYMRYwFAYD VQQDEw02ODkzZjQxNS1mN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJmPn+pJHMrYijW7bF9Bn5XiwSF7UArXkNhdFAntr11KVH6K/A/H+mP5zwQn zk3kR8qC24cmPYSkd3WR5HJ/GoaqJlppD8XS/U+HDgvurF74gEs7YoWUreEUFJ7C lXSsjYvr4mAPaJ8hQM0uJ7NFz9RJDfmbcPa6ko++ULx4tvyUDSrPO/g57/0fJY59 LHoMyN3eigL4zOhAeCpT29Bc0q01ZUllTYtDT8xuwCekdP1i8pWHHMBSMpTIRDrC g6+vF3T5GzsmD3RTXHOMGnjGUsQnNy261Wpwk5v6kNgLhaww6XRwYYsul+YJWhNL JAXt8S1gYO3fykgQ5wl3Tv8VqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlvLZDn yzJeqUZ4i3ZWvBGibILkMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBICCu5wVXeimef6gHpHI0zHwDEmYwLvhQB484nI8wM+6jrJlM6rfYb n/lAbROZCAGzvUZyUlZWB6dcOZmkbyi04u2sa7iwsx3RYwfw7+BVqV4/RaUS0zz3 hE4RE2QpKAA/cxtm376zwTVhdwuIQJi1f68f4EL1535cuCi+KsjClIT6ygLzkIwb K1WlOEKFcgovS37HpPje6kci0g9MLEvhUi38pYlbtGnt1gDC7zkLEQXxvCo4U9ij BoH5+vfo2C3FIsqkKbgdBVzzi84Q/B8uDT1lVJRS3e6Rd0z2no6mUZPsvAGCZHTV PrVzJU/i9qriifwBwGpiDehKpBnSVMGI -----END CERTIFICATE-----Generated at Thu Aug 7 05:10:01 2025 by rpki-client