$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft File: cXLtDPRHBezrGWHROgV-z_MHyG8.mft (raw, json) Hash identifier: T5t3VW/MVOMRPuLs75AciAlyW3fSNb8y7y4J0UAeUfo= Subject key identifier: C2:A5:E6:0B:3D:BB:86:B0:47:B7:4D:33:20:D6:9F:A1:A1:D2:B1:64 Authority key identifier: 71:72:ED:0C:F4:47:05:EC:EB:19:61:D1:3A:05:7E:CF:F3:07:C8:6F Certificate issuer: /CN=A913B7C7/serialNumber=7172ED0CF44705ECEB1961D13A057ECFF307C86F Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft Manifest number: 8B Signing time: Tue 05 Aug 2025 07:05:24 +0000 Manifest this update: Tue 05 Aug 2025 07:05:23 +0000 Manifest next update: Tue 12 Aug 2025 07:05:23 +0000 Files and hashes: 1: cXLtDPRHBezrGWHROgV-z_MHyG8.crl (hash: /2Q95LWJVVq1tVH5KSXhsUiQ1bFmgpidpKDNKUOuwUw=) 2: 1A1C5AF89D9C11EFAAA9FA6AC4F9AE02.roa (hash: hV0+1IwRiq4hHk9yI+8OcLJdXek+Jfs+77Mer9xXqoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.crl rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7C7, serialNumber=7172ED0CF44705ECEB1961D13A057ECFF307C86F Validity Not Before: Aug 5 07:05:23 2025 GMT Not After : Aug 12 07:05:23 2025 GMT Subject: CN=6891ad33-b890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f6:c8:22:4c:83:94:80:e4:d0:7e:aa:fe:ce: 14:bb:d2:89:17:74:4b:e6:66:26:d9:08:f5:1a:da: ae:0f:0f:8a:c9:43:f8:93:82:f2:30:11:cc:86:34: a8:5f:66:f1:cd:2d:df:3b:87:dd:be:2a:59:3b:bc: 70:8d:ef:91:d7:c5:27:18:13:bc:74:33:e0:d7:f2: dc:f2:87:42:c6:e1:9c:59:7f:ac:cd:82:5b:d2:a0: 9c:4e:d6:b4:06:48:ef:29:ec:29:8d:7a:0f:72:cf: 6c:e2:ec:58:67:15:fe:1f:b5:d3:1f:ee:09:c8:82: c4:29:c2:02:f3:5d:00:28:86:4b:59:c3:e7:f6:89: 85:fe:99:37:59:b1:be:ce:75:08:20:9e:7e:78:79: e7:22:55:74:0f:58:e3:ec:7f:ac:97:80:64:86:a8: c8:d5:e4:45:91:4a:fa:2a:60:89:92:9d:e9:4b:c7: f8:0a:b0:6b:f7:5d:5b:51:d0:2f:2c:85:90:01:66: cc:c1:f1:12:a5:e2:01:22:a4:4c:a1:9f:06:9e:04: 0d:b3:cc:28:0d:06:6f:2e:8c:d4:c9:09:2e:ae:63: 22:79:a6:a9:08:4b:27:30:59:91:b9:6e:05:c0:d9: 8c:f2:6d:76:b9:31:33:9d:49:a8:a1:d7:50:2e:7c: 3b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A5:E6:0B:3D:BB:86:B0:47:B7:4D:33:20:D6:9F:A1:A1:D2:B1:64 X509v3 Authority Key Identifier: keyid:71:72:ED:0C:F4:47:05:EC:EB:19:61:D1:3A:05:7E:CF:F3:07:C8:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXLtDPRHBezrGWHROgV-z_MHyG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7C7/AA2A784C9D9B11EF86050469C4F9AE02/cXLtDPRHBezrGWHROgV-z_MHyG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ea:47:ca:bf:45:98:5a:04:c6:27:73:ab:24:a7:b8:92:b3: 75:81:c4:a9:1a:94:0c:dc:73:3e:a0:b2:de:7a:73:c5:4b:7f: 3d:ad:cf:32:2e:26:da:ba:6f:ba:25:b6:e9:a2:75:fb:5a:32: c5:6c:59:16:ed:d7:0f:ce:dc:2e:ea:74:40:48:d3:2f:67:6c: 27:ee:bd:50:fd:b5:0b:dd:55:98:07:ba:a4:42:25:ed:ef:ae: 2e:94:02:5d:e8:8e:be:6a:2b:2d:a3:7f:48:4a:ba:bf:b2:ba: fa:64:a0:ad:5e:e5:fd:30:d4:2d:fc:ba:98:e8:8e:88:30:b4: 78:3c:df:0c:4e:3c:7e:75:08:70:22:4f:75:60:6b:12:2a:04: 37:01:65:bf:85:c9:33:95:e7:e7:6b:56:58:79:18:c5:8f:16: 13:39:52:7c:78:b1:f7:ba:01:ee:30:ac:4f:fc:52:3c:1f:23: 99:88:1b:e7:24:06:83:93:b6:0b:a4:ed:fc:af:0d:58:74:9c: 14:e0:46:67:89:59:c9:21:f6:ce:ca:c2:46:b4:dc:3f:0e:b2: e5:f6:d5:43:83:af:e6:db:52:44:8b:a3:cb:b1:08:f8:d9:71: f2:33:97:35:01:e8:4f:45:65:8c:f0:08:f9:a8:60:47:f6:8e: 4e:72:af:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QzcxMTAvBgNVBAUTKDcxNzJFRDBDRjQ0NzA1RUNFQjE5NjFEMTNBMDU3RUNG RjMwN0M4NkYwHhcNMjUwODA1MDcwNTIzWhcNMjUwODEyMDcwNTIzWjAYMRYwFAYD VQQDEw02ODkxYWQzMy1iODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfbIIkyDlIDk0H6q/s4Uu9KJF3RL5mYm2Qj1GtquDw+KyUP4k4LyMBHMhjSo X2bxzS3fO4fdvipZO7xwje+R18UnGBO8dDPg1/Lc8odCxuGcWX+szYJb0qCcTta0 BkjvKewpjXoPcs9s4uxYZxX+H7XTH+4JyILEKcIC810AKIZLWcPn9omF/pk3WbG+ znUIIJ5+eHnnIlV0D1jj7H+sl4BkhqjI1eRFkUr6KmCJkp3pS8f4CrBr911bUdAv LIWQAWbMwfESpeIBIqRMoZ8GngQNs8woDQZvLozUyQkurmMieaapCEsnMFmRuW4F wNmM8m12uTEznUmooddQLnw7IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKl5gs9 u4awR7dNMyDWn6Gh0rFkMB8GA1UdIwQYMBaAFHFy7Qz0RwXs6xlh0ToFfs/zB8hv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdDNy9BQTJBNzg0QzlE OUIxMUVGODYwNTA0NjlDNEY5QUUwMi9jWEx0RFBSSEJlenJHV0hST2dWLXpfTUh5 RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYTHREUFJIQmV6ckdXSFJPZ1Ytel9NSHlHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdDNy9BQTJBNzg0QzlEOUIxMUVGODYwNTA0NjlDNEY5QUUwMi9jWEx0RFBSSEJl enJHV0hST2dWLXpfTUh5RzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz6kfKv0WYWgTGJ3OrJKe4krN1gcSpGpQM3HM+oLLeenPFS389rc8y Libaum+6JbbponX7WjLFbFkW7dcPztwu6nRASNMvZ2wn7r1Q/bUL3VWYB7qkQiXt 764ulAJd6I6+aisto39ISrq/srr6ZKCtXuX9MNQt/LqY6I6IMLR4PN8MTjx+dQhw Ik91YGsSKgQ3AWW/hckzlefna1ZYeRjFjxYTOVJ8eLH3ugHuMKxP/FI8HyOZiBvn JAaDk7YLpO38rw1YdJwU4EZniVnJIfbOysJGtNw/DrLl9tVDg6/m21JEi6PLsQj4 2XHyM5c1AehPRWWM8Aj5qGBH9o5Ocq9f -----END CERTIFICATE-----Generated at Thu Aug 7 04:36:16 2025 by rpki-client