$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: Jk7bh795yQqhmJu7SD0WsghLBTj3aUsGcKuT7pinXZ8= Subject key identifier: 90:2D:92:1C:6D:6A:4E:7A:D3:DE:89:E6:ED:F2:67:D7:9E:9A:C6:EC Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04A0 Signing time: Sat 09 Aug 2025 00:28:56 +0000 Manifest this update: Sat 09 Aug 2025 00:28:56 +0000 Manifest next update: Sat 16 Aug 2025 00:28:56 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: 4E18hXv6WzydrtR6R7ADgoljIbDG4h7YIE5o77u1B7M=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Aug 9 00:28:56 2025 GMT Not After : Aug 16 00:28:56 2025 GMT Subject: CN=68969648-b728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1b:27:79:7d:a9:20:1e:4b:3f:ee:ca:b3:45: e8:68:0f:95:f6:bf:0e:85:fd:4a:9b:55:a8:a7:dd: 78:f3:fb:26:1d:db:4f:96:14:b8:2e:be:d0:55:3b: 5c:86:a9:4e:fb:10:76:cb:6b:d2:d1:2c:5b:80:15: ea:b6:2a:6f:8d:b1:e4:03:7f:5d:9c:93:ad:75:02: 80:85:7e:62:9b:39:c0:01:85:8f:6e:db:08:6e:11: 85:d2:44:78:63:9a:54:7f:bd:b5:e2:76:24:de:c2: 60:87:71:f1:dd:65:ed:38:2e:75:36:ec:15:c0:a9: 22:ee:87:20:8e:e9:f3:cb:be:e4:2d:ac:1f:61:54: aa:67:22:6c:b3:57:ad:a2:84:55:e3:2e:b8:47:d2: 4b:4c:19:7f:07:ab:10:94:d0:ba:2b:27:54:91:c9: ec:26:91:64:c3:96:b3:3f:aa:88:28:e0:d5:24:38: b9:55:6e:60:b3:93:59:b6:fd:b4:93:52:1e:c3:a3: b2:13:74:5f:08:7e:5a:20:f5:89:13:53:68:71:0f: 8a:89:a0:9b:81:4e:5f:be:23:5d:23:ba:c9:5d:44: 41:2e:f0:9d:73:1a:25:19:84:60:30:c1:0c:19:bb: a3:3f:87:24:05:95:e1:be:ca:ec:ce:21:3f:76:16: 04:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2D:92:1C:6D:6A:4E:7A:D3:DE:89:E6:ED:F2:67:D7:9E:9A:C6:EC X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:33:6d:19:fd:67:38:93:c9:27:5e:c6:bf:0c:8b:b7:a8:ca: bd:90:12:6b:98:50:b9:4a:89:cf:74:d9:b2:d6:d9:4a:77:ba: 58:a8:1d:32:a0:f1:2c:3b:b9:86:79:cb:a4:78:af:75:5c:ab: 5e:12:6e:24:65:24:92:ce:a0:59:81:06:82:9f:f5:9f:75:10: 9c:03:88:bf:a5:da:66:fc:99:54:a0:bb:52:5f:d5:4f:5a:7c: aa:ab:16:e4:55:1a:f4:7b:40:4f:c3:73:f2:f4:58:53:8d:3b: dd:39:15:de:50:d0:c5:0d:da:9c:98:2f:9c:97:36:24:f0:4a: 94:94:08:98:f1:77:c1:dd:15:37:d5:bb:21:34:75:b4:a7:04: 3b:a9:ae:25:96:19:91:31:56:25:9c:52:eb:8a:dc:d7:81:64: fa:68:96:06:13:4c:b2:c1:12:1e:0c:8a:93:f1:75:27:b1:3a: 6c:e5:78:38:77:ef:db:22:eb:35:96:33:dd:04:cb:92:dc:c1: c8:88:ff:e0:3e:80:c8:38:bb:05:20:8d:c5:0b:bc:da:76:77: 37:0c:c7:87:bf:2f:c6:9a:89:86:0c:fc:77:2f:05:4a:37:b6: a1:46:6a:49:76:63:be:ce:9c:51:ff:27:5c:6a:da:76:6c:d8: f2:c0:c0:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwODA5MDAyODU2WhcNMjUwODE2MDAyODU2WjAYMRYwFAYD VQQDEw02ODk2OTY0OC1iNzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthsneX2pIB5LP+7Ks0XoaA+V9r8Ohf1Km1Wop9148/smHdtPlhS4Lr7QVTtc hqlO+xB2y2vS0SxbgBXqtipvjbHkA39dnJOtdQKAhX5imznAAYWPbtsIbhGF0kR4 Y5pUf7214nYk3sJgh3Hx3WXtOC51NuwVwKki7ocgjunzy77kLawfYVSqZyJss1et ooRV4y64R9JLTBl/B6sQlNC6KydUkcnsJpFkw5azP6qIKODVJDi5VW5gs5NZtv20 k1Iew6OyE3RfCH5aIPWJE1NocQ+KiaCbgU5fviNdI7rJXURBLvCdcxolGYRgMMEM GbujP4ckBZXhvsrsziE/dhYEdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAtkhxt ak56096J5u3yZ9eemsbsMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfM20Z/Wc4k8knXsa/DIu3qMq9kBJrmFC5SonPdNmy1tlKd7pYqB0y oPEsO7mGecukeK91XKteEm4kZSSSzqBZgQaCn/WfdRCcA4i/pdpm/JlUoLtSX9VP WnyqqxbkVRr0e0BPw3Py9FhTjTvdORXeUNDFDdqcmC+clzYk8EqUlAiY8XfB3RU3 1bshNHW0pwQ7qa4llhmRMVYlnFLritzXgWT6aJYGE0yywRIeDIqT8XUnsTps5Xg4 d+/bIus1ljPdBMuS3MHIiP/gPoDIOLsFII3FC7zadnc3DMeHvy/GmomGDPx3LwVK N7ahRmpJdmO+zpxR/ydcatp2bNjywMDy -----END CERTIFICATE-----Generated at Sat Aug 9 14:28:30 2025 by rpki-client