$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: ps2VoyTrx3A4ccI6RAEfoLmxBhKEzsb1RugeZ+iyWNU= Subject key identifier: 71:C8:AF:B1:A8:E2:F4:45:A0:AE:F7:A6:C5:25:A6:FE:C3:DD:71:5F Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 020E Signing time: Mon 11 Aug 2025 02:18:43 +0000 Manifest this update: Mon 11 Aug 2025 02:18:42 +0000 Manifest next update: Mon 18 Aug 2025 02:18:42 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: oXqPklUKRP3UvgnCGZpP2lHre5fGTM1BbUU5iBeQtNw=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Aug 11 02:18:42 2025 GMT Not After : Aug 18 02:18:42 2025 GMT Subject: CN=68995303-5c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:50:60:0b:32:40:53:30:d6:66:e6:16:a8:6d: 46:16:48:fb:bf:cd:f3:fb:f5:fe:c9:a5:15:9f:6c: 50:c6:3c:69:96:b6:7d:db:6c:11:ad:4e:1b:e9:fc: eb:cb:7e:89:cb:f7:3c:42:84:50:52:ba:19:84:bc: 78:92:2e:fa:89:0a:c3:68:fd:10:41:a6:46:09:8b: c4:07:63:5b:51:69:e0:17:8a:dc:63:78:c6:b3:fe: a3:85:9a:90:3b:5f:f8:c0:67:9a:4f:86:a5:11:9f: 9b:71:fb:8d:6b:37:85:fe:86:66:93:6f:3e:2a:15: dd:76:8e:20:d5:e5:4a:a7:ef:2e:9a:f6:03:93:30: 84:00:63:ab:eb:19:e6:e9:54:64:2a:10:cf:e4:b3: ac:e7:50:1b:56:31:bf:f3:92:f7:ea:39:86:5e:a8: 16:43:c1:1c:d8:43:e5:42:7a:c9:ca:5f:f9:59:44: c4:c3:d1:8e:c1:d8:2f:09:d0:6d:ce:1e:8d:2b:e7: 78:8f:52:00:7d:4a:7b:ae:0e:f4:84:d4:05:db:52: 81:d0:4b:3e:99:e1:82:9e:c6:b9:ab:bb:91:27:77: ea:ff:85:f4:fa:5b:8c:12:d9:ef:86:cd:d7:e0:1b: a1:cc:d6:ba:bc:da:5e:0e:9d:c1:27:69:70:53:9b: 87:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C8:AF:B1:A8:E2:F4:45:A0:AE:F7:A6:C5:25:A6:FE:C3:DD:71:5F X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e1:ea:7c:ba:d6:80:5b:7c:cc:b3:7d:29:56:e0:ce:ea:a7: 20:eb:b5:c2:a4:f7:90:0c:46:cc:6a:ee:b5:22:26:a7:cc:19: f1:0c:6c:d2:17:5a:b2:a6:38:b5:b5:fe:ac:e8:e6:30:a9:8d: de:b7:19:06:71:19:f1:12:ee:c5:6c:12:e3:3a:24:04:d5:47: b7:11:53:d2:0d:ed:80:e5:1b:a5:70:e5:6d:16:03:0b:77:3e: ce:f0:44:38:27:4d:9a:d2:ed:cd:5a:78:c1:70:b9:27:b5:bc: 74:0c:02:05:fa:1b:13:48:54:af:2d:bc:6c:fa:d6:8a:9f:0b: 71:17:fc:85:a3:54:02:aa:4f:d3:83:36:73:57:62:12:a4:f4: 4d:a9:e0:66:74:eb:32:39:ce:97:05:7c:9c:ce:75:3f:01:09: 52:0e:e5:e9:a8:23:37:78:11:37:8f:66:ea:d3:07:d0:6d:09: eb:53:29:3e:c6:68:35:c5:0e:5b:30:61:0a:94:a6:f8:fd:48: 0c:62:6f:77:f3:bf:78:7c:d9:4a:9f:83:27:98:f8:b5:c1:b4: 6b:11:99:a5:dd:33:ce:03:f6:23:77:7b:3e:07:a3:43:5f:de: 28:39:bc:45:f9:5e:57:b0:5b:1c:6b:08:00:a7:67:12:ed:04: 38:d3:b6:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwODExMDIxODQyWhcNMjUwODE4MDIxODQyWjAYMRYwFAYD VQQDEw02ODk5NTMwMy01YzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlBgCzJAUzDWZuYWqG1GFkj7v83z+/X+yaUVn2xQxjxplrZ922wRrU4b6fzr y36Jy/c8QoRQUroZhLx4ki76iQrDaP0QQaZGCYvEB2NbUWngF4rcY3jGs/6jhZqQ O1/4wGeaT4alEZ+bcfuNazeF/oZmk28+KhXddo4g1eVKp+8umvYDkzCEAGOr6xnm 6VRkKhDP5LOs51AbVjG/85L36jmGXqgWQ8Ec2EPlQnrJyl/5WUTEw9GOwdgvCdBt zh6NK+d4j1IAfUp7rg70hNQF21KB0Es+meGCnsa5q7uRJ3fq/4X0+luMEtnvhs3X 4BuhzNa6vNpeDp3BJ2lwU5uHRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHIr7Go 4vRFoK73psUlpv7D3XFfMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw4ep8utaAW3zMs30pVuDO6qcg67XCpPeQDEbMau61IianzBnxDGzS F1qypji1tf6s6OYwqY3etxkGcRnxEu7FbBLjOiQE1Ue3EVPSDe2A5RulcOVtFgML dz7O8EQ4J02a0u3NWnjBcLkntbx0DAIF+hsTSFSvLbxs+taKnwtxF/yFo1QCqk/T gzZzV2ISpPRNqeBmdOsyOc6XBXycznU/AQlSDuXpqCM3eBE3j2bq0wfQbQnrUyk+ xmg1xQ5bMGEKlKb4/UgMYm938794fNlKn4MnmPi1wbRrEZml3TPOA/Yjd3s+B6ND X94oObxF+V5XsFscawgAp2cS7QQ407ZL -----END CERTIFICATE-----Generated at Mon Aug 11 04:23:02 2025 by rpki-client