$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: 9OF/qRUyz2Nv5KJKL8u39OY4R6mADcf7ay+ys9GUhpk= Subject key identifier: E2:B4:86:84:DA:EE:CC:8E:F5:20:56:35:56:37:6A:B4:90:DC:DD:00 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 03B0 Signing time: Mon 11 Aug 2025 01:00:07 +0000 Manifest this update: Mon 11 Aug 2025 01:00:06 +0000 Manifest next update: Mon 18 Aug 2025 01:00:06 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: t9reQ+00Zs4I1CZKdicaUA8cBAKsZvV02QsKLl/7Szc=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 980 (0x3d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Aug 11 01:00:06 2025 GMT Not After : Aug 18 01:00:06 2025 GMT Subject: CN=68994096-ad9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:a5:da:6d:7c:e5:0a:86:b4:1a:d5:ec:4b: 38:c5:c5:15:a6:d8:1e:0f:ae:04:b7:71:05:31:a6: 23:46:36:0c:8b:58:bd:cf:2b:c4:e4:37:1c:57:de: 55:1d:a2:74:72:26:17:bd:6d:a7:e4:84:02:df:24: a7:07:83:69:d0:2c:06:f2:26:cf:fd:04:fa:65:a6: 97:c2:d5:70:9d:89:d8:f6:35:f5:72:18:44:b1:b8: 2d:89:88:7c:17:d0:23:d6:a6:45:e9:f0:e9:40:bf: eb:8c:d3:58:e1:09:d7:0c:9a:1d:9b:c5:b2:f4:cb: 88:f7:73:12:e9:05:43:55:54:35:38:dc:38:0a:58: 65:e8:c3:95:66:88:e0:b3:1c:8d:5c:4b:f3:a3:b9: 9b:c0:43:fc:e1:7c:ea:91:95:48:5e:e5:82:e7:a4: 2c:e0:78:84:1e:3a:39:b1:d7:25:c1:4c:5f:f2:8c: ed:19:d8:c4:c6:ce:c6:7c:ea:8b:bc:55:37:dd:d8: 10:21:77:4e:9a:dc:91:72:af:d7:2e:b0:58:ef:7a: 57:d7:c4:87:08:3c:c0:6f:3b:a7:67:00:62:a7:1c: c0:eb:d3:e2:2b:04:0b:74:89:44:3f:b5:7b:d3:2a: ce:9c:86:9c:53:c9:2e:f7:27:22:85:1b:4e:c0:7d: df:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B4:86:84:DA:EE:CC:8E:F5:20:56:35:56:37:6A:B4:90:DC:DD:00 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b3:8a:81:26:05:0b:cc:80:d4:f6:5e:97:33:89:6a:02:aa: 29:46:17:88:58:e8:dd:df:f6:75:ba:27:8a:55:5e:ef:af:93: 46:2a:f2:e2:b9:2b:60:13:8d:d3:20:ff:8b:a0:a8:0a:83:a7: 09:b1:fe:fa:02:18:91:72:d0:41:9b:94:fb:b4:dc:1f:7c:35: 7d:a3:d7:d6:ac:73:c2:78:ad:2e:21:47:7b:97:b5:cc:0a:19: a1:76:30:88:96:78:c8:97:ec:f8:22:a3:28:7b:43:60:a9:98: b2:f3:21:30:94:6a:0e:7e:f0:96:2b:f7:10:ba:97:95:9a:d7: 84:f1:88:c0:8e:9b:26:d9:c4:d2:39:3a:e3:49:e5:30:78:8d: ef:8c:85:dd:16:72:b8:fd:51:01:1b:71:42:b4:10:8d:b2:29: 56:b0:f3:87:43:12:08:5a:a5:10:f3:a2:94:7e:34:1a:1b:38: 5c:9a:8d:e2:b3:2b:d9:2f:82:9b:fd:0b:1d:f8:e2:6f:af:21: 1d:86:ab:28:6a:9b:9f:1e:ce:45:fa:59:a4:5b:cd:ba:de:4b: d1:c7:27:80:cd:ad:5c:4f:7f:6b:4c:d5:2a:e7:b8:20:1d:13: d0:17:a5:9c:d5:d2:b1:f0:96:64:ee:4d:55:68:d2:c4:06:fd: 18:e5:75:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUwODExMDEwMDA2WhcNMjUwODE4MDEwMDA2WjAYMRYwFAYD VQQDEw02ODk5NDA5Ni1hZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgGl2m185QqGtBrV7Es4xcUVptgeD64Et3EFMaYjRjYMi1i9zyvE5DccV95V HaJ0ciYXvW2n5IQC3ySnB4Np0CwG8ibP/QT6ZaaXwtVwnYnY9jX1chhEsbgtiYh8 F9Aj1qZF6fDpQL/rjNNY4QnXDJodm8Wy9MuI93MS6QVDVVQ1ONw4Clhl6MOVZojg sxyNXEvzo7mbwEP84XzqkZVIXuWC56Qs4HiEHjo5sdclwUxf8oztGdjExs7GfOqL vFU33dgQIXdOmtyRcq/XLrBY73pX18SHCDzAbzunZwBipxzA69PiKwQLdIlEP7V7 0yrOnIacU8ku9ycihRtOwH3fVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOK0hoTa 7syO9SBWNVY3arSQ3N0AMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKs4qBJgULzIDU9l6XM4lqAqopRheIWOjd3/Z1uieKVV7vr5NGKvLi uStgE43TIP+LoKgKg6cJsf76AhiRctBBm5T7tNwffDV9o9fWrHPCeK0uIUd7l7XM ChmhdjCIlnjIl+z4IqMoe0NgqZiy8yEwlGoOfvCWK/cQupeVmteE8YjAjpsm2cTS OTrjSeUweI3vjIXdFnK4/VEBG3FCtBCNsilWsPOHQxIIWqUQ86KUfjQaGzhcmo3i syvZL4Kb/Qsd+OJvryEdhqsoapufHs5F+lmkW8263kvRxyeAza1cT39rTNUq57gg HRPQF6Wc1dKx8JZk7k1VaNLEBv0Y5XUX -----END CERTIFICATE-----Generated at Mon Aug 11 04:29:26 2025 by rpki-client