$ rpki-client -vvf rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft File: PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft (raw, json) Hash identifier: hN/unEGTD0bVyb+ha1tdZuK8ZW6pRs2v3vfPHXIE0bE= Subject key identifier: 8E:B8:B1:51:95:9B:0E:8B:E6:7C:14:A8:61:23:79:D0:ED:98:1C:99 Authority key identifier: 3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 Certificate issuer: /CN=A915B880/serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Certificate serial: 0E60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft Manifest number: 0E58 Signing time: Sun 10 Aug 2025 17:45:54 +0000 Manifest this update: Sun 10 Aug 2025 17:45:53 +0000 Manifest next update: Sun 17 Aug 2025 17:45:53 +0000 Files and hashes: 1: PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl (hash: KxdjGwKTUVxaKMYtTJSeY7wOkpyS6jUM0V/GRInM9j0=) 2: 0853C13CA2F011E9B721795CC4F9AE02.roa (hash: PT85jOUkAj1X0WXEwRPCdUqy+wM3om5TOq/+D9IWTpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3680 (0xe60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B880, serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Validity Not Before: Aug 10 17:45:53 2025 GMT Not After : Aug 17 17:45:53 2025 GMT Subject: CN=6898dad2-ade5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:b3:a8:91:fc:da:c3:d2:0b:70:4e:1f:9e: 92:8f:0d:85:21:53:a5:40:a4:fd:3e:39:3a:9a:4c: 61:14:1a:8a:b2:67:0d:40:b5:ad:20:f6:04:9a:32: c2:7d:86:29:65:1e:33:10:a4:cf:13:26:37:44:f5: d3:94:d9:5e:da:3f:50:d3:25:b7:4b:33:42:11:e8: b0:da:ef:6d:05:44:e7:e2:f4:39:f9:57:27:a0:1b: b3:07:2e:ee:39:28:b0:8f:b4:e9:4a:ee:e4:b3:6a: af:3c:1b:74:79:4f:99:cc:c8:8c:71:a3:ad:7a:96: 0b:9e:50:9e:50:bb:d3:1e:b4:2f:7f:3c:28:5f:f0: 36:81:19:23:b0:44:42:15:b3:37:cc:a7:c2:78:ca: c6:92:7d:a5:9e:81:94:d8:6d:e7:97:d6:d8:f9:e7: 59:41:1e:6c:5f:e4:4f:a4:c5:3f:2d:7d:2b:6a:b3: 52:1d:be:d9:2a:4b:37:d8:bf:f7:04:7d:05:62:c3: 04:50:fc:28:2b:f5:2d:c8:55:2c:52:da:99:09:e5: 1f:b5:2b:00:7c:95:5f:22:16:f2:61:0f:77:93:17: 83:32:5e:09:a8:8c:86:3c:aa:49:ef:ab:64:38:37: 68:5c:aa:67:a8:e0:0e:51:c1:c4:e8:f6:24:b3:b3: 6c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B8:B1:51:95:9B:0E:8B:E6:7C:14:A8:61:23:79:D0:ED:98:1C:99 X509v3 Authority Key Identifier: keyid:3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:c4:41:b8:f7:92:fa:96:dd:d8:b9:33:a2:36:ec:a5:ee:b6: a7:86:87:14:59:53:38:44:91:e4:11:31:eb:9e:c9:fa:a0:26: 75:fb:27:36:95:60:70:7a:ae:8b:32:d7:1b:8d:49:07:6b:5a: 83:4e:e2:03:29:3e:54:79:4b:b5:42:d4:a1:31:83:f8:00:57: 6b:8e:2b:d0:d3:5d:18:9a:59:11:a6:bc:69:83:73:9a:2e:12: 29:d6:63:6d:d9:90:67:4e:78:15:40:ac:ee:aa:ca:c6:2a:0c: fd:62:2b:0d:90:71:39:3a:02:6d:f7:d3:3d:73:df:af:e3:e6: b9:0b:a6:d0:df:1d:5b:0d:93:f3:e7:24:d1:bb:81:b2:5f:3f: 4e:79:70:33:8c:b6:94:48:99:cf:31:b0:9b:bb:a8:30:50:d1: b9:6d:3f:e3:ee:ec:41:9c:64:7a:df:89:36:7d:3b:3f:04:c3: 26:d3:fb:df:23:dc:63:88:9a:c4:5d:67:1a:9c:5b:de:98:72: 4c:0c:a5:30:06:30:ff:32:c0:2a:74:15:b8:82:0f:af:10:98: 4d:b2:c0:26:94:26:5e:92:3f:c3:3a:0e:11:1c:7c:01:d2:b3: 85:d2:15:cf:13:e7:24:d2:38:69:05:1f:09:72:c8:d8:16:bd: ea:eb:6e:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI4ODAxMTAvBgNVBAUTKDNEN0E0RTBBOTlBRjE1RUYwQjM3OTBEMEU3OTYxRTg4 NzUyODE5ODMwHhcNMjUwODEwMTc0NTUzWhcNMjUwODE3MTc0NTUzWjAYMRYwFAYD VQQDEw02ODk4ZGFkMi1hZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygqzqJH82sPSC3BOH56Sjw2FIVOlQKT9Pjk6mkxhFBqKsmcNQLWtIPYEmjLC fYYpZR4zEKTPEyY3RPXTlNle2j9Q0yW3SzNCEeiw2u9tBUTn4vQ5+VcnoBuzBy7u OSiwj7TpSu7ks2qvPBt0eU+ZzMiMcaOtepYLnlCeULvTHrQvfzwoX/A2gRkjsERC FbM3zKfCeMrGkn2lnoGU2G3nl9bY+edZQR5sX+RPpMU/LX0rarNSHb7ZKks32L/3 BH0FYsMEUPwoK/UtyFUsUtqZCeUftSsAfJVfIhbyYQ93kxeDMl4JqIyGPKpJ76tk ODdoXKpnqOAOUcHE6PYks7Ns1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI64sVGV mw6L5nwUqGEjedDtmByZMB8GA1UdIwQYMBaAFD16TgqZrxXvCzeQ0OeWHoh1KBmD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjg4MC8xRjUxMThBNEEy RUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZlOExONURRNTVZZWlIVW9H WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYcE9DcG12RmU4TE41RFE1NVllaUhVb0dZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjg4MC8xRjUxMThBNEEyRUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZl OExONURRNTVZZWlIVW9HWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUxEG495L6lt3YuTOiNuyl7ranhocUWVM4RJHkETHrnsn6oCZ1+yc2 lWBweq6LMtcbjUkHa1qDTuIDKT5UeUu1QtShMYP4AFdrjivQ010YmlkRprxpg3Oa LhIp1mNt2ZBnTngVQKzuqsrGKgz9YisNkHE5OgJt99M9c9+v4+a5C6bQ3x1bDZPz 5yTRu4GyXz9OeXAzjLaUSJnPMbCbu6gwUNG5bT/j7uxBnGR634k2fTs/BMMm0/vf I9xjiJrEXWcanFvemHJMDKUwBjD/MsAqdBW4gg+vEJhNssAmlCZekj/DOg4RHHwB 0rOF0hXPE+ck0jhpBR8JcsjYFr3q626O -----END CERTIFICATE-----Generated at Mon Aug 11 04:25:13 2025 by rpki-client