$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: PGS/2ji/EatDddc7IcDiL39V74EryPf2yOstwLKBcmI= Subject key identifier: D1:1D:58:39:4F:CF:F3:E9:61:36:79:BA:FF:32:A7:F9:4B:23:09:4F Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 0682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 0677 Signing time: Fri 08 Aug 2025 22:50:22 +0000 Manifest this update: Fri 08 Aug 2025 22:50:22 +0000 Manifest next update: Fri 15 Aug 2025 22:50:22 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: iTBiXmyUv03I7scKMCsNQEKaQfpvzlgKDiV2v9umypk=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Aug 8 22:50:22 2025 GMT Not After : Aug 15 22:50:22 2025 GMT Subject: CN=68967f2e-d2a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b4:cf:a6:20:72:21:da:91:a1:a9:13:e1:0c: 38:ad:22:67:e1:3d:87:8b:99:71:69:d6:5b:92:08: 64:2b:c0:19:7a:19:82:e1:1e:24:b9:d0:3f:ec:96: 23:9c:b2:2d:18:37:16:4c:00:89:de:fb:0e:2e:26: 52:90:b9:53:5e:5c:44:50:be:f8:01:8d:a5:5c:86: be:26:ad:48:ba:e4:24:38:38:98:f5:41:83:25:8a: 14:61:ef:b7:f4:50:d4:a4:3a:93:9a:d1:47:6a:3b: 60:e4:f4:dc:ab:7f:0f:90:95:18:c7:34:4a:a4:79: 1f:01:da:db:fd:06:1b:f3:d1:79:fb:24:0c:91:e3: ba:e2:d8:73:fb:77:a1:95:28:56:af:89:1f:81:7b: d7:bb:46:47:58:00:90:ff:81:b3:85:d8:fe:a1:4b: a6:2f:78:67:8c:f0:a4:83:d3:0d:2d:16:9e:9c:dd: 83:04:57:86:d0:37:55:13:cc:2e:96:2b:b4:dd:8c: c3:76:72:ae:f7:4b:ec:1d:5a:e2:4f:fb:40:06:46: 2b:74:48:f5:53:49:6e:28:a4:fb:8b:74:3b:ff:f1: db:5c:8e:54:68:e3:c4:dd:81:51:b9:65:8f:09:fa: e8:ba:45:4d:b6:af:d8:dd:cc:17:ac:e9:c6:ff:ef: 9c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1D:58:39:4F:CF:F3:E9:61:36:79:BA:FF:32:A7:F9:4B:23:09:4F X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ad:cd:c2:1e:c3:c5:84:9c:e0:d2:39:5e:87:4e:72:f6:46: bf:dc:fc:d3:f7:4f:c4:e4:04:9d:11:cd:80:42:5a:ed:83:f9: 9a:fe:18:86:05:5d:b7:10:00:6d:55:5a:a9:77:fd:ec:d7:74: 1c:0a:8e:52:19:90:e9:b5:32:31:96:a8:1b:5d:70:80:d1:da: de:39:2a:b1:67:49:18:de:44:e1:1d:79:f8:ac:9b:29:6e:5a: e1:1f:0c:fc:5c:53:e0:25:76:89:2c:f9:5f:d2:24:da:b7:52: f9:b3:2a:1f:c8:62:a8:5a:15:17:04:ff:92:ff:2a:74:68:5b: 78:b9:6e:58:80:ba:94:1c:d0:26:d8:94:17:fa:e1:8d:29:ec: 17:8c:9b:69:38:eb:ec:bc:99:99:5c:c5:c4:71:20:d6:55:f2: 81:fe:8d:44:79:1c:3d:7c:33:5f:ed:07:74:a3:6e:88:59:0f: 0e:b3:50:b3:94:2f:ba:59:b1:de:6c:8a:c2:9f:ee:62:6c:d5: 2e:72:96:23:0b:a2:e1:f8:93:d6:1a:6b:48:38:f3:51:f0:62: fc:49:45:2a:2c:a8:c2:d7:a4:7d:f1:17:8d:8b:b8:12:9c:bc: be:5b:a6:3b:60:0e:8f:6b:b2:11:19:83:b6:70:4c:57:31:8b: c4:71:d8:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUwODA4MjI1MDIyWhcNMjUwODE1MjI1MDIyWjAYMRYwFAYD VQQDEw02ODk2N2YyZS1kMmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbTPpiByIdqRoakT4Qw4rSJn4T2Hi5lxadZbkghkK8AZehmC4R4kudA/7JYj nLItGDcWTACJ3vsOLiZSkLlTXlxEUL74AY2lXIa+Jq1IuuQkODiY9UGDJYoUYe+3 9FDUpDqTmtFHajtg5PTcq38PkJUYxzRKpHkfAdrb/QYb89F5+yQMkeO64thz+3eh lShWr4kfgXvXu0ZHWACQ/4Gzhdj+oUumL3hnjPCkg9MNLRaenN2DBFeG0DdVE8wu liu03YzDdnKu90vsHVriT/tABkYrdEj1U0luKKT7i3Q7//HbXI5UaOPE3YFRuWWP CfroukVNtq/Y3cwXrOnG/++cHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEdWDlP z/PpYTZ5uv8yp/lLIwlPMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVrc3CHsPFhJzg0jleh05y9ka/3PzT90/E5ASdEc2AQlrtg/ma/hiG BV23EABtVVqpd/3s13QcCo5SGZDptTIxlqgbXXCA0dreOSqxZ0kY3kThHXn4rJsp blrhHwz8XFPgJXaJLPlf0iTat1L5syofyGKoWhUXBP+S/yp0aFt4uW5YgLqUHNAm 2JQX+uGNKewXjJtpOOvsvJmZXMXEcSDWVfKB/o1EeRw9fDNf7Qd0o26IWQ8Os1Cz lC+6WbHebIrCn+5ibNUucpYjC6Lh+JPWGmtIOPNR8GL8SUUqLKjC16R98ReNi7gS nLy+W6Y7YA6Pa7IRGYO2cExXMYvEcdjq -----END CERTIFICATE-----Generated at Sun Aug 10 18:50:42 2025 by rpki-client