$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: DZ/RI3Z4iWEYw5ZZjfYrm0l0tnGpDexiKkHSRfZSb2Y= Subject key identifier: 0F:3C:D3:61:1B:C8:3E:66:5B:B1:2C:F6:23:0B:07:93:72:4E:7C:35 Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: EF Signing time: Sat 09 Aug 2025 05:45:39 +0000 Manifest this update: Sat 09 Aug 2025 05:45:39 +0000 Manifest next update: Sat 16 Aug 2025 05:45:39 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: lq15i7xkW2MG1UhZItI4kkBhB8rbqJBjhOyArPSa63g=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: 5edOTZ9WpkItw4RWOBwB3WoAQbD4XzuXBzAkLSr3s8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Aug 9 05:45:39 2025 GMT Not After : Aug 16 05:45:39 2025 GMT Subject: CN=6896e083-9ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:b3:21:6a:49:a5:95:61:75:39:2e:d6:39: 35:af:8c:0a:64:0f:e8:47:e1:bb:42:f5:01:51:b8: 42:c2:6c:55:88:45:f6:6f:0a:40:45:d5:bc:16:4b: dc:29:42:40:bd:40:aa:17:ab:bc:07:96:32:48:0c: 96:96:e0:16:be:5d:4f:8b:2c:16:7b:e2:a6:36:41: 6e:c6:f9:c6:97:9d:01:45:37:4d:b6:5e:80:cc:86: d6:10:f5:c3:09:b5:cb:28:98:c0:c9:e9:1b:51:93: bb:d5:67:99:ba:1c:bd:40:ac:2e:f6:df:e5:f8:25: 23:80:15:c2:b9:1f:1c:15:66:4d:8c:fd:f0:ca:5e: 0d:11:94:5f:1d:9a:e8:7f:ba:7d:3c:fb:41:27:32: 23:2b:ae:11:f5:0c:fa:95:19:c7:f8:0f:73:98:0b: b4:ea:59:c9:7c:b9:4f:b2:cb:26:17:f7:fc:fd:82: 9c:db:7e:c0:88:ec:17:8b:b3:af:04:64:84:60:94: 34:b8:28:8a:59:60:d9:94:48:00:f0:21:3c:6b:69: 01:76:e5:9c:ee:81:99:d4:4f:73:14:c5:52:cb:6c: fa:f8:42:70:cc:85:5b:42:73:87:5c:20:f6:0f:87: 91:52:06:e0:21:e2:4d:97:8b:05:16:24:f4:8a:25: d5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3C:D3:61:1B:C8:3E:66:5B:B1:2C:F6:23:0B:07:93:72:4E:7C:35 X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f5:55:44:dc:2e:cd:99:4d:15:1f:f6:29:b4:d3:50:73:16: af:f9:b0:15:f3:a1:33:f6:42:28:ff:d6:ea:1c:20:c4:12:f0: a9:e4:57:86:5c:b2:5e:ae:05:1d:32:d2:ed:bd:ca:76:bb:f4: d4:33:2c:fc:1b:d9:da:7a:34:00:81:c5:1c:a5:82:51:21:f1: 33:64:4c:6f:62:a6:1f:03:59:07:2a:50:c6:a2:70:f8:78:f8: 0e:aa:1f:b4:40:03:17:11:02:3a:01:6e:69:c2:30:d7:b5:06: 92:69:3f:fd:30:79:e2:f8:db:76:ef:4f:f6:be:30:07:a9:03: ca:70:51:fd:54:4b:34:34:6a:71:44:df:30:20:4b:46:a2:61: 1d:97:2e:e9:27:34:ce:75:17:9a:a3:7b:10:f8:53:7c:19:fe: fa:2e:95:e8:17:3d:91:62:62:4f:78:b3:0d:eb:d7:b8:c5:7c: 46:dc:a5:be:b9:62:35:75:a6:d3:94:a6:94:8b:b6:22:57:f6: 59:6e:7e:6d:d8:15:06:06:74:a6:5d:83:38:19:e6:cc:e4:21: ab:3b:fe:7f:76:c9:ab:05:d3:8a:3b:9b:89:9f:e4:0c:c9:89: ca:b5:15:a8:ca:bf:e2:25:22:d1:b9:b5:55:73:99:4b:77:65: e6:99:f7:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwODA5MDU0NTM5WhcNMjUwODE2MDU0NTM5WjAYMRYwFAYD VQQDEw02ODk2ZTA4My05ZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3KzIWpJpZVhdTku1jk1r4wKZA/oR+G7QvUBUbhCwmxViEX2bwpARdW8Fkvc KUJAvUCqF6u8B5YySAyWluAWvl1PiywWe+KmNkFuxvnGl50BRTdNtl6AzIbWEPXD CbXLKJjAyekbUZO71WeZuhy9QKwu9t/l+CUjgBXCuR8cFWZNjP3wyl4NEZRfHZro f7p9PPtBJzIjK64R9Qz6lRnH+A9zmAu06lnJfLlPsssmF/f8/YKc237AiOwXi7Ov BGSEYJQ0uCiKWWDZlEgA8CE8a2kBduWc7oGZ1E9zFMVSy2z6+EJwzIVbQnOHXCD2 D4eRUgbgIeJNl4sFFiT0iiXVpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8802Eb yD5mW7Es9iMLB5NyTnw1MB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA49VVE3C7NmU0VH/YptNNQcxav+bAV86Ez9kIo/9bqHCDEEvCp5FeG XLJergUdMtLtvcp2u/TUMyz8G9naejQAgcUcpYJRIfEzZExvYqYfA1kHKlDGonD4 ePgOqh+0QAMXEQI6AW5pwjDXtQaSaT/9MHni+Nt270/2vjAHqQPKcFH9VEs0NGpx RN8wIEtGomEdly7pJzTOdReao3sQ+FN8Gf76LpXoFz2RYmJPeLMN69e4xXxG3KW+ uWI1dabTlKaUi7YiV/ZZbn5t2BUGBnSmXYM4GebM5CGrO/5/dsmrBdOKO5uJn+QM yYnKtRWoyr/iJSLRubVVc5lLd2Xmmfcc -----END CERTIFICATE-----Generated at Sun Aug 10 13:48:15 2025 by rpki-client