$ rpki-client -vvf rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft File: 8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft (raw, json) Hash identifier: wlPa3ErhRoTIZEEFPSV4ozHo3JM2vxjx6t9UsbVwa/U= Subject key identifier: 6B:7A:6C:1F:AB:CA:55:DC:F1:D1:76:86:1F:E0:E3:67:CF:16:9A:21 Authority key identifier: F1:7B:53:21:A5:8D:79:E2:30:53:1C:5A:A0:F0:B2:4E:1D:81:21:A3 Certificate issuer: /CN=A915648D/serialNumber=F17B5321A58D79E230531C5AA0F0B24E1D8121A3 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft Manifest number: 01A7 Signing time: Sat 09 Aug 2025 03:36:30 +0000 Manifest this update: Sat 09 Aug 2025 03:36:29 +0000 Manifest next update: Sat 16 Aug 2025 03:36:29 +0000 Files and hashes: 1: 8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl (hash: mMWnoA8+/4js2I0m5iZefq4GKaG2F3bQHWPodH7veXM=) 2: C80572DEF70911ED9D4B561AC4F9AE02.roa (hash: f37dHVQCBKGAv6cZ++QH+hDhUU+kBGU4CSkotJ/zJb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915648D, serialNumber=F17B5321A58D79E230531C5AA0F0B24E1D8121A3 Validity Not Before: Aug 9 03:36:29 2025 GMT Not After : Aug 16 03:36:29 2025 GMT Subject: CN=6896c23e-cf92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:97:5f:a2:ae:8d:50:a8:9e:c3:88:e4:e4:35: 05:58:b6:56:bb:9d:f1:e3:99:b7:76:12:00:2b:04: 71:fa:42:bd:16:60:6e:c0:d0:9c:50:16:68:d5:96: cf:59:7e:75:d6:d4:81:06:55:04:2e:fd:bb:63:84: 4c:75:d2:b1:6c:24:ea:a9:c4:60:22:c9:c1:88:a5: 59:04:ba:a4:a1:f1:95:c4:7c:33:b5:65:bc:88:c8: 53:6f:d6:8e:a1:24:f9:2c:43:74:a5:0b:4d:c2:0a: 26:aa:7c:d1:2b:71:03:cb:18:da:c5:97:41:0b:97: 1d:2b:bf:11:3e:14:d4:9f:4c:84:c1:d6:85:cb:6f: ef:26:58:f6:b1:ca:ce:f0:40:3f:0a:06:c9:ab:f0: dd:2c:23:41:3b:14:65:12:cb:6a:d6:4a:92:34:4a: 06:3c:67:01:a8:e8:e4:3d:89:0a:ce:c6:2b:e8:e6: 9b:70:98:e7:86:25:9d:22:ba:44:b4:51:7e:f5:5b: 1b:b1:47:62:2c:7f:13:e2:1b:4f:24:38:dc:23:50: d9:14:c4:50:23:1d:de:0a:37:bd:40:cf:6f:6b:da: b8:14:b2:b6:06:c8:d5:fe:95:39:7b:06:31:cd:c4: 65:d7:5d:13:09:34:d8:79:09:d7:2e:bb:24:e3:9b: 0f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7A:6C:1F:AB:CA:55:DC:F1:D1:76:86:1F:E0:E3:67:CF:16:9A:21 X509v3 Authority Key Identifier: keyid:F1:7B:53:21:A5:8D:79:E2:30:53:1C:5A:A0:F0:B2:4E:1D:81:21:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XtTIaWNeeIwUxxaoPCyTh2BIaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915648D/C3EEE2A8EFE211EDA3C6C147C4F9AE02/8XtTIaWNeeIwUxxaoPCyTh2BIaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:52:1b:8c:bf:79:9c:42:34:93:10:6e:22:c9:d5:cb:bf:51: aa:78:de:ae:29:c8:d4:e8:56:78:7b:40:dc:fb:ff:bd:5e:12: c1:58:0d:97:c1:b2:e2:e8:29:47:3f:a3:54:c8:ef:b7:0c:64: 71:e5:3e:76:ca:d1:0c:99:58:62:b8:03:88:d6:2d:2e:1e:d4: b6:d1:02:f0:4c:1d:72:e9:52:68:6a:ee:70:b3:49:c3:3d:ad: f1:36:a6:29:39:61:c0:06:68:6a:36:97:f2:1f:09:bd:c1:3e: 45:26:e2:d8:eb:f9:db:da:7b:d1:cc:cc:04:cc:ba:dc:32:e4: 75:29:f6:59:c3:3b:3d:b1:c3:1b:02:75:49:a3:d1:4d:e5:e2: 70:cd:78:f7:a6:13:fa:95:76:41:5a:17:a9:1d:2d:d9:dd:a6: 80:e8:bf:67:27:6e:94:bc:64:3d:a1:f9:28:cf:20:23:97:36: 7a:e7:61:84:a1:ba:94:69:f6:e0:7b:05:c4:5b:3d:f0:34:f0: 8a:81:2a:79:e2:d1:1f:b7:3f:c4:0e:3f:31:c7:82:4e:6b:7d: cc:14:06:3b:e9:1e:4f:55:a7:6e:72:74:1e:fb:f5:cf:77:a1: 19:b3:4a:8b:83:16:98:b3:9e:11:b5:a8:42:41:60:32:89:16: 3c:b3:ca:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY0OEQxMTAvBgNVBAUTKEYxN0I1MzIxQTU4RDc5RTIzMDUzMUM1QUEwRjBCMjRF MUQ4MTIxQTMwHhcNMjUwODA5MDMzNjI5WhcNMjUwODE2MDMzNjI5WjAYMRYwFAYD VQQDEw02ODk2YzIzZS1jZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJdfoq6NUKiew4jk5DUFWLZWu53x45m3dhIAKwRx+kK9FmBuwNCcUBZo1ZbP WX511tSBBlUELv27Y4RMddKxbCTqqcRgIsnBiKVZBLqkofGVxHwztWW8iMhTb9aO oST5LEN0pQtNwgomqnzRK3EDyxjaxZdBC5cdK78RPhTUn0yEwdaFy2/vJlj2scrO 8EA/CgbJq/DdLCNBOxRlEstq1kqSNEoGPGcBqOjkPYkKzsYr6OabcJjnhiWdIrpE tFF+9VsbsUdiLH8T4htPJDjcI1DZFMRQIx3eCje9QM9va9q4FLK2BsjV/pU5ewYx zcRl110TCTTYeQnXLrsk45sPJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGt6bB+r ylXc8dF2hh/g42fPFpohMB8GA1UdIwQYMBaAFPF7UyGljXniMFMcWqDwsk4dgSGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjQ4RC9DM0VFRTJBOEVG RTIxMUVEQTNDNkMxNDdDNEY5QUUwMi84WHRUSWFXTmVlSXdVeHhhb1BDeVRoMkJJ YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYdFRJYVdOZWVJd1V4eGFvUEN5VGgyQklhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjQ4RC9DM0VFRTJBOEVGRTIxMUVEQTNDNkMxNDdDNEY5QUUwMi84WHRUSWFXTmVl SXdVeHhhb1BDeVRoMkJJYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2UhuMv3mcQjSTEG4iydXLv1GqeN6uKcjU6FZ4e0Dc+/+9XhLBWA2X wbLi6ClHP6NUyO+3DGRx5T52ytEMmVhiuAOI1i0uHtS20QLwTB1y6VJoau5ws0nD Pa3xNqYpOWHABmhqNpfyHwm9wT5FJuLY6/nb2nvRzMwEzLrcMuR1KfZZwzs9scMb AnVJo9FN5eJwzXj3phP6lXZBWhepHS3Z3aaA6L9nJ26UvGQ9ofkozyAjlzZ652GE obqUafbgewXEWz3wNPCKgSp54tEftz/EDj8xx4JOa33MFAY76R5PVaducnQe+/XP d6EZs0qLgxaYs54RtahCQWAyiRY8s8qR -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:07 2025 by rpki-client