$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: 2nJzJ73mSbjrIKDQPSNC4O0ZkP9EvW9t2GMYyqY5mKA= Subject key identifier: 8D:54:FD:EF:9E:F9:C0:F5:F3:9E:99:3A:24:B2:93:BA:5F:54:0D:2D Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 065E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0658 Signing time: Wed 06 Aug 2025 22:58:35 +0000 Manifest this update: Wed 06 Aug 2025 22:58:34 +0000 Manifest next update: Wed 13 Aug 2025 22:58:34 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: xEKOqali+BaPpxP4HgwqwlKrAttjrjFwzx9O9WF7r7o=) 2: 6E1BCBC495BD11EB89199F37C4F9AE02.roa (hash: 6VtKNEIG9FeALH3s40nNCwARNeebdE67fF6D4UlnLsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Aug 6 22:58:34 2025 GMT Not After : Aug 13 22:58:34 2025 GMT Subject: CN=6893de1a-17a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:14:75:2b:78:69:4b:f4:36:08:fd:34:41: a6:94:dc:eb:5e:5a:05:1c:d8:28:64:a3:2d:07:dc: 8a:89:d0:9d:a1:31:2e:39:38:29:d9:c4:de:18:c2: a4:31:f0:e1:e4:ea:22:c4:8e:35:42:25:02:f7:0e: 87:65:16:8a:b5:e9:ce:b3:a4:d5:0a:9d:ad:cd:1a: 85:87:20:d4:3f:06:68:ae:1b:bf:71:8c:c7:34:af: 34:64:ee:09:6b:b2:b6:c7:c5:09:55:80:e1:10:6d: 29:f0:cb:33:ca:d8:92:4d:72:66:16:cf:74:52:44: a6:ba:f6:d5:e0:b1:dc:25:81:c7:9e:06:5e:ae:76: d3:cc:40:b7:6a:5f:0d:47:58:c6:8f:59:6f:12:3f: 7a:9c:b3:36:1d:f7:85:dc:88:14:38:4a:ec:39:ad: 58:26:44:9b:21:d0:38:3e:c5:a0:d1:b2:46:79:13: 69:76:27:a7:4f:cc:d5:5f:0e:83:f1:0c:24:0f:62: bb:44:b7:70:d5:4b:08:85:b4:2f:3e:64:43:e6:0c: 33:6a:0c:a5:61:a7:bf:30:b1:1a:44:70:25:e2:91: 72:14:99:7d:9f:70:60:57:a3:1a:80:36:dc:f7:f3: 50:1a:8f:c6:c0:8a:17:5e:b2:0d:67:f7:d8:d4:e1: b3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:54:FD:EF:9E:F9:C0:F5:F3:9E:99:3A:24:B2:93:BA:5F:54:0D:2D X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:27:57:6b:ae:bb:e1:ea:81:85:66:c0:8c:65:71:44:06:2f: c7:6a:59:83:cd:72:8f:a6:08:82:b6:f9:45:8e:b6:51:ee:4b: 1b:c4:7e:e6:c7:89:5a:72:f3:89:a4:48:b2:e3:e8:76:e1:4a: dd:7b:28:e1:5d:6a:89:71:f6:5e:80:ab:7f:08:8b:0b:3a:8b: 62:63:c0:16:a9:f7:b4:a5:cd:ac:ad:8e:53:08:2b:64:11:8d: c7:47:fa:28:72:30:62:25:63:aa:2b:9c:1d:79:ab:0a:3c:6a: 89:57:a3:35:07:34:74:9c:9f:fe:47:52:da:6d:64:e5:3a:26: 2a:b3:ae:ac:6e:cd:80:59:31:c1:66:ab:82:4b:e7:49:bc:3e: d5:8b:fc:c6:19:b8:5b:6d:b8:06:85:31:1e:56:31:71:79:a4: 93:27:b3:6d:b3:80:1c:33:e7:a4:ee:4e:08:36:d4:02:f8:23: 33:c1:b5:3e:d0:8d:df:22:93:87:79:cd:95:8a:7f:c7:cd:de: 68:7d:d1:80:b6:a9:55:a8:e1:6b:1b:97:55:45:ce:b7:39:cd: 04:a8:59:03:d5:ec:00:4e:ad:5f:c0:87:a1:ab:fe:06:a6:86: a0:95:cf:d1:b1:e3:ec:af:b4:48:ee:06:39:f9:65:6b:d0:d0: 44:55:5d:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUwODA2MjI1ODM0WhcNMjUwODEzMjI1ODM0WjAYMRYwFAYD VQQDEw02ODkzZGUxYS0xN2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBIUdSt4aUv0Ngj9NEGmlNzrXloFHNgoZKMtB9yKidCdoTEuOTgp2cTeGMKk MfDh5OoixI41QiUC9w6HZRaKtenOs6TVCp2tzRqFhyDUPwZorhu/cYzHNK80ZO4J a7K2x8UJVYDhEG0p8MszytiSTXJmFs90UkSmuvbV4LHcJYHHngZernbTzEC3al8N R1jGj1lvEj96nLM2HfeF3IgUOErsOa1YJkSbIdA4PsWg0bJGeRNpdienT8zVXw6D 8QwkD2K7RLdw1UsIhbQvPmRD5gwzagylYae/MLEaRHAl4pFyFJl9n3BgV6MagDbc 9/NQGo/GwIoXXrINZ/fY1OGz1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1U/e+e +cD1856ZOiSyk7pfVA0tMB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrJ1drrrvh6oGFZsCMZXFEBi/HalmDzXKPpgiCtvlFjrZR7ksbxH7m x4lacvOJpEiy4+h24UrdeyjhXWqJcfZegKt/CIsLOotiY8AWqfe0pc2srY5TCCtk EY3HR/oocjBiJWOqK5wdeasKPGqJV6M1BzR0nJ/+R1LabWTlOiYqs66sbs2AWTHB ZquCS+dJvD7Vi/zGGbhbbbgGhTEeVjFxeaSTJ7Nts4AcM+ek7k4INtQC+CMzwbU+ 0I3fIpOHec2Vin/Hzd5ofdGAtqlVqOFrG5dVRc63Oc0EqFkD1ewATq1fwIehq/4G poaglc/RsePsr7RI7gY5+WVr0NBEVV1Z -----END CERTIFICATE-----Generated at Fri Aug 8 20:49:32 2025 by rpki-client