$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: OkP6oucXnIPjWenQfj7+1ZfauaWK8wVDNsMb/G7/arA= Subject key identifier: 89:5B:ED:0A:E6:5C:61:4F:26:AC:02:41:73:37:AE:58:76:BE:93:0F Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 0663 Signing time: Tue 12 Aug 2025 22:52:59 +0000 Manifest this update: Tue 12 Aug 2025 22:52:58 +0000 Manifest next update: Tue 19 Aug 2025 22:52:58 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: eHvUynnLdIHvJfYV3OdFmjWPUPXa5pWyroCplDD4ggc=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: HcRkeL0L46StqN8XUYCiDhZBU5a1szFT/RluEKL79UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Aug 12 22:52:58 2025 GMT Not After : Aug 19 22:52:58 2025 GMT Subject: CN=689bc5ca-cfd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b9:43:ce:cf:bd:4e:1d:19:fa:b2:cc:bc:62: e6:d1:f3:f2:11:e4:91:ad:67:4b:c1:fb:da:be:cb: c8:ab:76:db:75:da:f0:6b:4f:c7:3a:8c:b4:6a:e0: 4f:a4:78:79:b6:12:b7:05:ce:85:69:c9:4f:4f:2b: 8b:b4:cc:f9:12:03:8e:bc:79:e7:11:c8:4d:ec:06: 2c:7a:d3:f0:f3:0e:b0:ad:23:4a:b4:cc:32:de:06: 7d:89:3a:f0:07:a5:eb:6f:bb:8c:fb:f1:29:e0:6c: 2c:85:3d:14:67:29:54:ea:a4:59:ab:ef:75:2e:a7: d8:25:1d:4e:df:c4:12:0e:22:21:c6:46:3a:f8:a3: 0b:d4:2e:bd:80:aa:e3:3d:2f:7f:be:c1:c3:98:9d: f8:7c:9b:26:b9:18:2c:94:c9:86:1c:f8:52:41:99: 9e:b2:47:47:2e:5b:06:8f:f1:f2:e6:bb:24:99:72: 86:b3:5a:bd:23:a5:d6:89:ad:8b:69:67:fd:53:eb: 93:b4:82:62:c1:dd:d2:a0:16:a4:1c:42:3c:4c:e3: e4:89:17:09:4a:88:c1:2d:6e:00:b3:73:45:2d:fc: e9:45:e8:ed:b0:e1:54:e7:17:c8:97:17:fd:14:7c: 6c:bb:90:63:a7:ba:fb:03:aa:2c:b8:f5:26:bc:84: e4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5B:ED:0A:E6:5C:61:4F:26:AC:02:41:73:37:AE:58:76:BE:93:0F X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:7b:46:70:13:4a:d8:e8:66:a2:c7:aa:4a:60:bf:bf:d3:a3: 82:b7:5b:f1:5c:62:0c:a3:3b:30:0c:ee:1a:82:53:ea:e7:62: ed:30:0d:1d:86:91:2e:4f:5d:ba:71:87:cd:1e:15:c3:f1:48: 26:15:85:d0:b7:d4:8a:44:8f:11:f0:d0:05:4c:5c:4c:e3:31: 82:04:3c:75:8f:1b:65:a4:bd:91:be:2f:ca:52:19:6b:60:24: 6c:5b:5f:4f:96:9f:94:a0:49:90:e1:38:65:a0:dd:89:66:d6: b8:db:cc:d3:a3:8a:70:47:a8:aa:b3:96:e2:da:12:af:1e:ef: b9:96:af:07:05:6d:89:f6:84:6d:fe:d7:2e:29:43:20:0f:ea: 09:94:e6:29:89:c8:f6:4d:e6:dd:83:b7:f1:a3:cf:b4:2c:b9: b2:f1:05:42:11:8c:cd:63:7b:86:49:9a:bd:35:4b:bb:74:11: 59:cb:84:93:01:01:4d:96:7c:16:49:e8:40:2a:c5:f5:ed:6c: b4:ce:3f:8a:b8:b4:bd:84:41:d7:93:ef:e0:99:b9:3a:df:02: 53:9f:30:48:97:0e:b0:db:ae:a7:99:19:eb:01:01:7a:e2:48: ba:64:73:1d:aa:0d:ac:e2:99:df:be:49:da:e7:5a:53:42:15: 6e:97:03:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjUwODEyMjI1MjU4WhcNMjUwODE5MjI1MjU4WjAYMRYwFAYD VQQDEw02ODliYzVjYS1jZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvblDzs+9Th0Z+rLMvGLm0fPyEeSRrWdLwfvavsvIq3bbddrwa0/HOoy0auBP pHh5thK3Bc6FaclPTyuLtMz5EgOOvHnnEchN7AYsetPw8w6wrSNKtMwy3gZ9iTrw B6Xrb7uM+/Ep4GwshT0UZylU6qRZq+91LqfYJR1O38QSDiIhxkY6+KML1C69gKrj PS9/vsHDmJ34fJsmuRgslMmGHPhSQZmeskdHLlsGj/Hy5rskmXKGs1q9I6XWia2L aWf9U+uTtIJiwd3SoBakHEI8TOPkiRcJSojBLW4As3NFLfzpRejtsOFU5xfIlxf9 FHxsu5Bjp7r7A6osuPUmvITkewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlb7Qrm XGFPJqwCQXM3rlh2vpMPMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAje0ZwE0rY6Gaix6pKYL+/06OCt1vxXGIMozswDO4aglPq52LtMA0d hpEuT126cYfNHhXD8UgmFYXQt9SKRI8R8NAFTFxM4zGCBDx1jxtlpL2Rvi/KUhlr YCRsW19Plp+UoEmQ4ThloN2JZta428zTo4pwR6iqs5bi2hKvHu+5lq8HBW2J9oRt /tcuKUMgD+oJlOYpicj2Tebdg7fxo8+0LLmy8QVCEYzNY3uGSZq9NUu7dBFZy4ST AQFNlnwWSehAKsX17Wy0zj+KuLS9hEHXk+/gmbk63wJTnzBIlw6w266nmRnrAQF6 4ki6ZHMdqg2s4pnfvkna51pTQhVulwP3 -----END CERTIFICATE-----Generated at Wed Aug 13 00:29:32 2025 by rpki-client