$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: wYVr+P7nHGc5DeuzuhkCVK2e4xNuuimOMm/2b3OQp20= Subject key identifier: D8:D2:5D:E4:89:5E:F5:1F:3A:05:CA:85:30:14:DB:D8:EE:47:96:BE Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 0812 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 080C Signing time: Fri 08 Aug 2025 21:15:26 +0000 Manifest this update: Fri 08 Aug 2025 21:15:26 +0000 Manifest next update: Fri 15 Aug 2025 21:15:26 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: yp0/39Un9Gl2kFTa1eS+brvvtoEGgUPEXSiSkXKq9JE=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: 8MctpWGtN4TB9CaLOxK2lVRFp6WdGzpjql1y9Hz4Ctk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Aug 8 21:15:26 2025 GMT Not After : Aug 15 21:15:26 2025 GMT Subject: CN=689668ee-13c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3b:97:de:78:0b:5d:96:12:77:0b:e6:c5:44: 14:90:a6:50:ed:ec:a8:8b:7b:74:f2:fa:d7:26:10: 7c:b5:2c:d0:27:c1:0e:72:09:48:ff:2e:4c:48:46: a7:78:ea:9d:40:23:92:e6:94:d6:1e:a2:4a:1f:52: 9b:15:d2:ec:88:bc:1b:0c:c5:1f:ef:a1:8c:16:89: ae:2e:a9:4d:5c:96:31:a4:8a:c9:47:fc:9b:74:32: b8:4f:ba:6e:4d:9b:48:51:ed:d7:e5:2a:00:45:df: 58:7d:ba:8e:74:79:99:2f:ff:42:50:a6:05:13:4d: 28:bd:d0:7f:d8:61:5f:a3:08:86:31:6c:78:b9:48: 66:c4:9a:21:a0:fd:d0:b0:1a:cb:05:22:ed:44:61: e5:e4:21:04:b2:4d:91:2f:7f:0c:c1:64:e9:0e:3b: d6:e5:95:8b:51:2b:04:ca:0a:8f:aa:ad:29:9c:b7: ee:2f:8e:d1:a4:39:03:04:34:d6:10:6f:6c:0f:f0: af:43:68:d6:e1:42:29:3e:03:41:82:9f:e0:4a:e1: f9:fc:1c:43:f6:b1:3c:64:94:3d:23:81:39:f5:30: 7d:0d:dc:c4:ab:f7:06:2b:aa:63:50:12:87:db:ac: 63:fd:b9:b9:01:89:73:41:0d:7f:cd:c8:d2:76:b0: b4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D2:5D:E4:89:5E:F5:1F:3A:05:CA:85:30:14:DB:D8:EE:47:96:BE X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:cb:56:57:01:c1:11:48:56:06:0b:c3:fb:0f:8c:44:7c:1b: 31:98:5c:44:a2:06:c5:36:0e:57:4d:5e:d0:60:96:6a:a9:bf: be:09:58:26:e8:33:24:a0:b5:b4:bd:57:bc:08:f1:e2:f4:41: 04:80:2e:7c:8e:2f:8e:5d:0f:87:45:d7:3d:60:b2:30:c9:f4: 38:b6:9d:41:1c:d8:ee:bd:40:b6:bc:5a:be:0e:c2:56:a3:6f: 29:b6:eb:1d:6c:36:5f:06:5b:a5:ae:59:39:ef:72:23:01:65: ac:44:9e:1d:96:f8:a6:57:38:cb:8f:26:1c:05:44:98:3a:8a: 23:c0:8b:49:b8:0c:e0:7a:5c:0c:62:4a:e7:b3:5a:73:6c:ff: 0b:12:83:1c:a5:ae:c0:20:f7:79:5f:3f:16:07:ef:2f:58:08: 56:fc:5f:aa:e0:a1:f4:33:da:a8:8f:47:e6:26:8b:98:36:81: 20:4c:1d:68:dd:6b:65:dc:05:92:70:7a:b6:b0:89:7e:d9:0d: fd:f6:23:fb:01:8d:7c:5d:b7:34:db:01:c8:18:a5:6c:de:26: 30:b9:0f:40:cb:9b:e2:03:66:19:d0:b4:24:b6:19:a5:00:10: 68:54:2d:11:2f:08:94:74:5d:30:13:df:5a:a4:f5:f5:ec:b7: ee:f8:9c:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUwODA4MjExNTI2WhcNMjUwODE1MjExNTI2WjAYMRYwFAYD VQQDEw02ODk2NjhlZS0xM2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zuX3ngLXZYSdwvmxUQUkKZQ7eyoi3t08vrXJhB8tSzQJ8EOcglI/y5MSEan eOqdQCOS5pTWHqJKH1KbFdLsiLwbDMUf76GMFomuLqlNXJYxpIrJR/ybdDK4T7pu TZtIUe3X5SoARd9YfbqOdHmZL/9CUKYFE00ovdB/2GFfowiGMWx4uUhmxJohoP3Q sBrLBSLtRGHl5CEEsk2RL38MwWTpDjvW5ZWLUSsEygqPqq0pnLfuL47RpDkDBDTW EG9sD/CvQ2jW4UIpPgNBgp/gSuH5/BxD9rE8ZJQ9I4E59TB9DdzEq/cGK6pjUBKH 26xj/bm5AYlzQQ1/zcjSdrC0awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjSXeSJ XvUfOgXKhTAU29juR5a+MB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWy1ZXAcERSFYGC8P7D4xEfBsxmFxEogbFNg5XTV7QYJZqqb++CVgm 6DMkoLW0vVe8CPHi9EEEgC58ji+OXQ+HRdc9YLIwyfQ4tp1BHNjuvUC2vFq+DsJW o28ptusdbDZfBlulrlk573IjAWWsRJ4dlvimVzjLjyYcBUSYOoojwItJuAzgelwM Ykrns1pzbP8LEoMcpa7AIPd5Xz8WB+8vWAhW/F+q4KH0M9qoj0fmJouYNoEgTB1o 3Wtl3AWScHq2sIl+2Q399iP7AY18Xbc02wHIGKVs3iYwuQ9Ay5viA2YZ0LQkthml ABBoVC0RLwiUdF0wE99apPX17Lfu+JyY -----END CERTIFICATE-----Generated at Sun Aug 10 21:10:35 2025 by rpki-client