$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: NdtXOUbVulyDSEyak3e2/qyR4MnxC5xs5eZxfPajyOs= Subject key identifier: 8F:F6:F3:74:3F:23:67:E8:5B:70:80:D0:0C:67:32:2A:7D:6C:DB:97 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: ED Signing time: Mon 11 Aug 2025 05:31:46 +0000 Manifest this update: Mon 11 Aug 2025 05:31:46 +0000 Manifest next update: Mon 18 Aug 2025 05:31:46 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: OF5BHqGU6h16xNdkHMZShA5YMAHIZhqnNrWSJKjt9YY=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:31:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Aug 11 05:31:46 2025 GMT Not After : Aug 18 05:31:46 2025 GMT Subject: CN=68998042-7c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:15:6d:4c:12:48:3a:45:91:de:d3:3a:23:7e: 48:5a:61:ab:47:f1:94:72:35:59:9b:5d:fc:e0:a1: 4e:e0:38:30:4a:19:bd:e8:a9:a1:a3:6f:04:ab:bf: 96:6d:37:a3:60:4c:82:d4:17:19:ff:72:a9:22:90: 49:3e:c0:c4:b1:25:9e:98:62:4f:ff:77:64:12:cf: 58:b3:fb:1b:7f:b1:9d:af:00:92:a0:7e:b6:f8:19: 2a:2f:9a:28:09:81:64:7c:20:9f:9a:f0:4e:93:8b: 0a:bb:17:35:e2:98:10:be:eb:93:80:05:f7:c5:4f: 27:e6:92:44:70:78:f1:93:04:a4:c1:de:63:c8:b4: b2:27:c3:3e:b4:2e:9b:c1:90:e8:6c:ba:ec:23:3b: d9:03:e4:46:06:14:28:86:f7:6d:35:6f:ff:50:ca: 6e:ee:b7:1b:02:3a:7c:6a:50:44:72:99:66:49:42: bd:3d:6c:ca:37:7d:5b:f4:10:ad:70:a9:75:09:ac: 63:ca:73:c1:19:bc:88:d5:1c:28:c0:c2:f0:07:42: a3:ef:15:23:f3:07:f3:b6:11:ec:3b:ef:a4:72:62: 0d:ae:1e:c2:37:d1:2d:3e:51:a7:70:b2:83:22:87: 1a:fb:67:b8:75:59:cf:f0:14:58:39:9b:6c:f7:ef: a7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F6:F3:74:3F:23:67:E8:5B:70:80:D0:0C:67:32:2A:7D:6C:DB:97 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c7:85:41:62:8e:02:43:da:e1:f8:98:e7:0a:5f:d3:83:c0: 25:8d:ec:0a:40:11:82:e0:7b:34:42:23:97:d3:13:c0:97:47: 68:3e:12:a6:d7:b0:d4:34:21:e8:d5:08:e8:75:7d:e2:09:3e: e8:78:08:00:8a:cb:3a:7c:ab:ba:e9:14:47:91:94:d3:c6:b5: 8f:b9:98:d0:b8:59:78:35:4e:13:1d:65:1e:c9:3d:2f:d0:61: e5:25:a4:48:da:a9:f8:c7:a1:a8:44:05:3e:ec:0d:bf:e2:c8: a4:34:a0:8a:e9:53:51:0d:eb:b5:72:30:42:d2:05:ff:e2:c7: 21:d5:ad:4e:78:0a:4d:eb:d5:ef:76:9f:39:83:18:44:c4:0b: e7:47:1a:aa:86:45:ac:09:5b:ce:ec:60:91:14:40:5b:65:f5: 80:47:ef:ed:4b:00:a3:3f:44:0c:d6:23:19:a3:6d:0d:bd:2d: 1c:ed:45:a6:e5:9a:3f:41:aa:b5:3c:79:0a:8a:c4:fc:2d:85: 29:bb:7f:80:fb:59:f5:a8:11:4d:cd:e0:e1:5a:b2:58:a9:21: b6:cb:7a:b6:ec:53:e1:30:29:11:a0:53:51:85:bb:d7:06:c7: 90:cf:53:e4:b0:5f:32:83:9b:7b:bf:94:ef:24:d9:02:13:f5: d1:42:43:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUwODExMDUzMTQ2WhcNMjUwODE4MDUzMTQ2WjAYMRYwFAYD VQQDEw02ODk5ODA0Mi03YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+hVtTBJIOkWR3tM6I35IWmGrR/GUcjVZm1384KFO4DgwShm96Kmho28Eq7+W bTejYEyC1BcZ/3KpIpBJPsDEsSWemGJP/3dkEs9Ys/sbf7GdrwCSoH62+BkqL5oo CYFkfCCfmvBOk4sKuxc14pgQvuuTgAX3xU8n5pJEcHjxkwSkwd5jyLSyJ8M+tC6b wZDobLrsIzvZA+RGBhQohvdtNW//UMpu7rcbAjp8alBEcplmSUK9PWzKN31b9BCt cKl1CaxjynPBGbyI1RwowMLwB0Kj7xUj8wfzthHsO++kcmINrh7CN9EtPlGncLKD Ioca+2e4dVnP8BRYOZts9++n7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/283Q/ I2foW3CA0AxnMip9bNuXMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYx4VBYo4CQ9rh+JjnCl/Tg8AljewKQBGC4Hs0QiOX0xPAl0doPhKm 17DUNCHo1QjodX3iCT7oeAgAiss6fKu66RRHkZTTxrWPuZjQuFl4NU4THWUeyT0v 0GHlJaRI2qn4x6GoRAU+7A2/4sikNKCK6VNRDeu1cjBC0gX/4sch1a1OeApN69Xv dp85gxhExAvnRxqqhkWsCVvO7GCRFEBbZfWAR+/tSwCjP0QM1iMZo20NvS0c7UWm 5Zo/Qaq1PHkKisT8LYUpu3+A+1n1qBFNzeDhWrJYqSG2y3q27FPhMCkRoFNRhbvX BseQz1PksF8yg5t7v5TvJNkCE/XRQkO6 -----END CERTIFICATE-----Generated at Wed Aug 13 02:18:58 2025 by rpki-client