$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: ifLJxkGknqUMms4cRXAZE1ZdeqjkZnRvDIGv0JkaT04= Subject key identifier: D9:A7:0B:7C:14:9C:76:00:81:18:E3:28:C7:33:0C:6A:E5:0F:8B:C8 Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 05D9 Signing time: Sun 10 Aug 2025 23:06:45 +0000 Manifest this update: Sun 10 Aug 2025 23:06:44 +0000 Manifest next update: Sun 17 Aug 2025 23:06:44 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: /S7VHBLMbmpvfvAagIGbgRxwgSX8BS+FaeNUlIIuHcE=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Aug 10 23:06:44 2025 GMT Not After : Aug 17 23:06:44 2025 GMT Subject: CN=68992604-0586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:96:7e:74:0d:9b:67:54:3d:ee:1f:c9:74:16: 07:78:f4:33:d2:c6:fe:8d:d8:bd:41:be:c2:a4:11: 9b:49:1c:d2:af:ba:46:e8:82:76:23:22:ed:f3:85: 2f:2e:5c:19:b9:a6:17:a0:7b:e7:8d:0c:eb:e8:d5: da:76:d5:dd:7d:ac:e8:89:fc:91:48:a4:65:17:f9: e8:35:36:4e:1e:7f:9c:05:36:84:cb:48:c4:68:6b: 60:b3:d5:bd:17:11:fb:69:47:62:f4:9b:b5:0f:78: e2:bf:b6:82:d7:2a:b4:7b:71:0a:32:13:31:b0:c5: f0:98:4f:7c:41:ad:ee:7f:4c:5e:a5:1f:af:21:76: 3b:55:cc:81:16:08:d3:48:3e:85:4d:b9:c6:30:9c: 47:b5:4f:7f:4f:fb:bb:4c:d5:89:91:e7:29:e2:a9: e8:81:11:66:82:f6:a8:7a:7f:29:c4:2d:16:10:ae: d0:fe:13:01:28:90:2a:88:7b:a9:79:e7:4c:6b:22: 90:e1:7d:10:d9:80:c0:68:64:b0:3d:04:fe:12:f5: 32:e3:aa:e5:3a:2d:a9:ef:6c:57:b5:93:1d:b3:18: 5e:f2:5a:21:8d:0d:3d:c5:f9:8d:b3:5e:eb:38:a7: 83:91:85:aa:57:23:08:dc:e0:03:f1:34:9a:f5:1b: b9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A7:0B:7C:14:9C:76:00:81:18:E3:28:C7:33:0C:6A:E5:0F:8B:C8 X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:19:c9:49:f4:f2:11:56:1a:cc:a0:58:a2:88:19:cc:41:e8: dd:92:78:a6:51:b2:70:72:20:f9:fc:ba:2e:81:15:a6:11:15: 79:14:ae:f6:b5:97:99:db:44:0d:e4:c2:f0:d8:87:59:a5:d7: 44:17:3f:e5:8b:55:5c:ef:c7:1f:d0:80:62:ba:5c:6d:54:06: 60:96:80:25:42:65:7a:47:8c:25:9b:66:e9:f6:5d:99:eb:8f: 12:e7:b1:86:bd:82:6a:95:28:53:79:4a:29:93:a9:9d:5a:2c: 66:55:a4:0b:23:84:0f:50:71:62:66:87:25:3d:f7:ba:fb:de: 94:36:3b:3b:c8:20:1f:62:00:3a:ac:f2:17:9d:0d:61:d3:7b: f0:76:88:dc:82:a8:10:f5:8e:bc:b9:fc:e5:5e:7b:bd:87:5e: b9:92:fb:d8:53:3a:4b:a8:63:bf:66:5c:d6:51:18:b7:37:45: 20:30:10:25:51:55:33:57:bb:d5:29:d5:83:e2:b6:e9:2b:cc: ec:d9:24:66:66:41:be:92:5f:b7:2a:29:05:37:04:34:93:2e: a2:14:a2:fa:c9:92:8c:93:31:24:8c:08:da:ca:09:de:c4:f7: 8c:99:b9:9f:b9:f9:01:47:0e:f1:5e:35:f6:ad:ed:a7:d3:c1: 3a:5c:81:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUwODEwMjMwNjQ0WhcNMjUwODE3MjMwNjQ0WjAYMRYwFAYD VQQDEw02ODk5MjYwNC0wNTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JZ+dA2bZ1Q97h/JdBYHePQz0sb+jdi9Qb7CpBGbSRzSr7pG6IJ2IyLt84Uv LlwZuaYXoHvnjQzr6NXadtXdfazoifyRSKRlF/noNTZOHn+cBTaEy0jEaGtgs9W9 FxH7aUdi9Ju1D3jiv7aC1yq0e3EKMhMxsMXwmE98Qa3uf0xepR+vIXY7VcyBFgjT SD6FTbnGMJxHtU9/T/u7TNWJkecp4qnogRFmgvaoen8pxC0WEK7Q/hMBKJAqiHup eedMayKQ4X0Q2YDAaGSwPQT+EvUy46rlOi2p72xXtZMdsxhe8lohjQ09xfmNs17r OKeDkYWqVyMI3OAD8TSa9Ru5owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmnC3wU nHYAgRjjKMczDGrlD4vIMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbGclJ9PIRVhrMoFiiiBnMQejdknimUbJwciD5/LougRWmERV5FK72 tZeZ20QN5MLw2IdZpddEFz/li1Vc78cf0IBiulxtVAZgloAlQmV6R4wlm2bp9l2Z 648S57GGvYJqlShTeUopk6mdWixmVaQLI4QPUHFiZoclPfe6+96UNjs7yCAfYgA6 rPIXnQ1h03vwdojcgqgQ9Y68ufzlXnu9h165kvvYUzpLqGO/ZlzWURi3N0UgMBAl UVUzV7vVKdWD4rbpK8zs2SRmZkG+kl+3KikFNwQ0ky6iFKL6yZKMkzEkjAjaygne xPeMmbmfufkBRw7xXjX2re2n08E6XIEx -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:28 2025 by rpki-client