$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: o2zOHAJyfZS2pNyG9crxu7qX/qDIlz5dSpnUMpGuMCg= Subject key identifier: 63:14:F0:6F:07:A1:37:BA:B3:2C:0D:7B:89:6B:0F:B6:FF:E0:5D:8A Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 06F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 06F6 Signing time: Sun 10 Aug 2025 21:57:09 +0000 Manifest this update: Sun 10 Aug 2025 21:57:08 +0000 Manifest next update: Sun 17 Aug 2025 21:57:08 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: fZ279SVdG0wEGLbreIcsaS+qpLtegt9uyUHg+cOaVqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1782 (0x6f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E, serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: Aug 10 21:57:08 2025 GMT Not After : Aug 17 21:57:08 2025 GMT Subject: CN=689915b5-13cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:70:69:d3:e6:df:57:1b:1b:3d:7f:01:86:42: 29:03:a7:e9:57:42:de:9b:26:a9:eb:c8:bd:01:1a: e1:4a:31:37:55:f4:9f:36:5d:91:b6:67:59:b4:e1: 04:ec:2c:54:8e:0e:91:13:18:00:71:a2:81:a1:a6: 8a:72:d6:63:7d:22:80:42:0c:cf:72:ae:6e:96:f0: 28:58:64:90:8a:95:08:b6:5a:6a:a2:eb:04:1f:15: 67:d9:a7:80:60:7f:09:84:78:09:3e:bc:d9:3b:2e: 53:bc:67:0c:25:b8:c8:14:1b:50:56:fa:b3:e1:e6: 3b:02:f1:9a:38:21:14:45:0e:e8:8f:de:23:45:a0: 3f:c1:ce:89:f5:3a:00:15:75:4f:91:dc:be:0e:66: f6:13:9c:28:bf:8f:71:57:0d:1c:ad:17:77:cb:c6: 73:ef:ef:21:67:58:4b:d4:d8:e9:d5:4d:c2:28:92: 82:3e:c0:eb:cd:ce:c1:e6:fe:85:cc:69:0c:99:2f: 1a:6c:38:23:17:97:eb:8a:43:1c:10:19:8f:7e:84: 4b:7f:90:46:8d:4c:09:8f:d3:14:cf:88:69:9d:15: fd:85:dc:70:0b:bc:6b:9e:88:fa:24:5d:ff:ec:04: 9d:c4:24:dd:ab:42:e1:9d:28:47:ea:04:7e:0e:76: f6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:14:F0:6F:07:A1:37:BA:B3:2C:0D:7B:89:6B:0F:B6:FF:E0:5D:8A X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:65:24:b2:23:d6:e6:a0:f8:3c:36:a9:96:ac:fc:5c:22:36: 88:00:0e:31:64:46:99:ca:82:73:c0:16:8d:24:4c:5f:2b:c7: 28:06:26:c9:8b:d8:b6:8d:7a:a9:4d:ed:a5:bb:e3:d5:f2:9a: 8d:61:37:00:17:a9:ba:61:9c:9b:e1:4f:50:40:d5:e0:d6:2f: 91:99:95:5f:0d:88:2b:d8:b4:a9:b4:97:e3:34:fd:76:52:2b: 46:4d:c2:36:b4:d2:d4:c1:c3:8a:11:8b:15:6c:97:60:d1:b7: 88:85:5d:2b:a1:c6:b1:65:76:13:26:53:54:6a:17:92:e9:bd: 12:cc:95:a4:73:40:b5:a2:c4:3a:87:37:a8:a2:6c:bb:f5:cf: 2c:72:35:13:05:63:e6:ec:39:54:b4:76:2e:09:a4:14:6e:ed: 16:a1:54:d8:d6:fa:b7:38:24:df:1f:52:1f:44:4c:3a:9a:ef: e7:57:54:fa:00:7d:7a:ba:86:1a:8c:c3:2a:82:1a:f2:2f:46: 12:02:4d:c1:d6:a9:cd:e8:bb:22:f2:bc:91:59:90:76:4c:ed: 7b:3b:c9:08:46:4e:18:ed:0b:54:dd:97:04:00:45:09:a6:3f: 73:15:f5:a1:55:e0:bb:cb:d4:3d:d2:45:86:38:76:65:42:ce: 0a:1d:db:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjUwODEwMjE1NzA4WhcNMjUwODE3MjE1NzA4WjAYMRYwFAYD VQQDEw02ODk5MTViNS0xM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nBp0+bfVxsbPX8BhkIpA6fpV0Lemyap68i9ARrhSjE3VfSfNl2RtmdZtOEE 7CxUjg6RExgAcaKBoaaKctZjfSKAQgzPcq5ulvAoWGSQipUItlpqousEHxVn2aeA YH8JhHgJPrzZOy5TvGcMJbjIFBtQVvqz4eY7AvGaOCEURQ7oj94jRaA/wc6J9ToA FXVPkdy+Dmb2E5wov49xVw0crRd3y8Zz7+8hZ1hL1Njp1U3CKJKCPsDrzc7B5v6F zGkMmS8abDgjF5frikMcEBmPfoRLf5BGjUwJj9MUz4hpnRX9hdxwC7xrnoj6JF3/ 7ASdxCTdq0LhnShH6gR+Dnb2OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMU8G8H oTe6sywNe4lrD7b/4F2KMB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARZSSyI9bmoPg8NqmWrPxcIjaIAA4xZEaZyoJzwBaNJExfK8coBibJ i9i2jXqpTe2lu+PV8pqNYTcAF6m6YZyb4U9QQNXg1i+RmZVfDYgr2LSptJfjNP12 UitGTcI2tNLUwcOKEYsVbJdg0beIhV0rocaxZXYTJlNUaheS6b0SzJWkc0C1osQ6 hzeoomy79c8scjUTBWPm7DlUtHYuCaQUbu0WoVTY1vq3OCTfH1IfREw6mu/nV1T6 AH16uoYajMMqghryL0YSAk3B1qnN6Lsi8ryRWZB2TO17O8kIRk4Y7QtU3ZcEAEUJ pj9zFfWhVeC7y9Q90kWGOHZlQs4KHdsM -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:33 2025 by rpki-client