$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: ndf7R2EUqStZinoSe9UgAKoCK3LjZvRuoEutL+HC5lE= Subject key identifier: EA:75:06:72:F9:9C:6E:EC:E2:26:C5:0F:0E:B6:6C:9F:83:6B:B3:0A Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 50 Signing time: Thu 07 Aug 2025 07:52:43 +0000 Manifest this update: Thu 07 Aug 2025 07:52:42 +0000 Manifest next update: Thu 14 Aug 2025 07:52:42 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: aEEYHyNoYfi2Yd5HDmSIor1DMjhXIZwOANkELUaMwWk=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Aug 7 07:52:42 2025 GMT Not After : Aug 14 07:52:42 2025 GMT Subject: CN=68945b4b-04bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:96:67:6c:4f:bb:a9:65:ec:a6:85:aa:af:2a: 4b:ff:40:22:49:82:53:f3:b7:50:da:b3:2d:d3:dd: 9e:c6:cd:27:9d:5e:5b:03:d1:98:c2:b8:92:21:e5: 41:97:ae:e9:41:60:99:bf:2d:61:9d:58:62:b0:12: 52:80:f2:b9:26:af:78:8b:44:f8:c4:a7:58:d4:2b: ce:16:15:ca:5a:88:ef:00:c0:7f:46:23:e4:ee:17: 49:14:e4:f4:c4:b2:e5:c4:98:80:a6:6f:40:fd:16: 7a:5e:eb:a3:b4:5d:d7:6b:6e:02:e2:a4:2b:a0:d0: 36:54:9e:49:37:a1:cb:23:48:2e:a3:cd:96:5a:07: f7:7f:8f:53:07:61:12:41:98:8a:a7:6e:00:9d:f5: 10:c6:90:5b:f3:b6:a0:dc:a8:af:4c:36:f6:b0:b9: 79:e7:5a:e7:41:23:26:52:d5:a4:80:55:03:10:59: cf:08:ce:e1:b7:6b:9e:41:0f:d3:a4:6e:ba:81:a8: 95:cf:39:e4:c2:d6:9c:1c:eb:28:92:f2:2e:d7:66: a0:03:d9:a2:62:cf:e4:5c:2d:ed:ce:14:63:d5:d7: d0:1a:93:9d:5c:2a:bb:64:4e:b0:19:1c:91:8f:3e: 41:f7:b5:c8:cb:fa:c2:01:7a:75:a0:a8:d9:98:c8: 07:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:75:06:72:F9:9C:6E:EC:E2:26:C5:0F:0E:B6:6C:9F:83:6B:B3:0A X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:ce:2a:4f:ca:a1:bb:fe:49:56:35:23:d3:d2:41:4c:42:34: 5c:b8:1b:f4:28:c4:f9:0b:00:3c:55:13:6d:b7:f1:f0:5d:b5: 45:36:d0:0c:4c:8a:df:72:95:49:5b:51:37:e9:64:2e:44:13: ad:e7:5a:d4:5a:e9:f5:f3:5c:36:02:4c:4c:20:4c:36:f6:66: 24:34:98:c9:ff:6a:db:27:b4:6d:09:e6:b4:5f:dc:b2:35:93: 7e:92:51:4a:cf:da:e6:39:39:2e:64:a4:06:f3:6c:a6:18:ff: a5:35:71:17:07:57:46:82:8b:11:b1:cf:78:e6:73:0b:31:e5: 7e:4a:36:1b:01:68:f9:17:84:6b:58:73:ff:8b:40:ac:f4:b5: d8:08:b6:27:db:f3:f8:70:cf:4f:42:4b:c4:34:ff:1a:65:0d: fc:ba:72:21:fa:6d:fb:10:43:74:bc:0a:9f:ea:64:58:81:e8: 99:f7:93:8f:00:78:fb:56:cf:4f:c6:43:fb:73:5c:6d:8b:28: 23:20:11:ce:8e:ae:d2:d1:7d:96:6b:0d:99:f6:1d:60:88:3a: 97:a8:c3:f7:f2:cc:4b:7b:30:49:83:e1:c2:7f:0f:7a:40:c2: b9:4b:cb:77:5a:7b:9c:bb:81:1c:c6:fe:e1:c4:29:7f:f7:ca: 3f:16:b8:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTA4MDcwNzUyNDJaFw0yNTA4MTQwNzUyNDJaMBgxFjAUBgNV BAMTDTY4OTQ1YjRiLTA0YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJlmdsT7upZeymhaqvKkv/QCJJglPzt1Dasy3T3Z7GzSedXlsD0ZjCuJIh5UGX rulBYJm/LWGdWGKwElKA8rkmr3iLRPjEp1jUK84WFcpaiO8AwH9GI+TuF0kU5PTE suXEmICmb0D9Fnpe66O0XddrbgLipCug0DZUnkk3ocsjSC6jzZZaB/d/j1MHYRJB mIqnbgCd9RDGkFvztqDcqK9MNvawuXnnWudBIyZS1aSAVQMQWc8IzuG3a55BD9Ok brqBqJXPOeTC1pwc6yiS8i7XZqAD2aJiz+RcLe3OFGPV19Aak51cKrtkTrAZHJGP PkH3tcjL+sIBenWgqNmYyAcdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6nUGcvmc buziJsUPDrZsn4NrswowHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANPOKk/Kobv+SVY1I9PSQUxCNFy4G/QoxPkLADxVE2238fBdtUU20AxM it9ylUlbUTfpZC5EE63nWtRa6fXzXDYCTEwgTDb2ZiQ0mMn/atsntG0J5rRf3LI1 k36SUUrP2uY5OS5kpAbzbKYY/6U1cRcHV0aCixGxz3jmcwsx5X5KNhsBaPkXhGtY c/+LQKz0tdgItifb8/hwz09CS8Q0/xplDfy6ciH6bfsQQ3S8Cp/qZFiB6Jn3k48A ePtWz0/GQ/tzXG2LKCMgEc6OrtLRfZZrDZn2HWCIOpeow/fyzEt7MEmD4cJ/D3pA wrlLy3dae5y7gRzG/uHEKX/3yj8WuEk= -----END CERTIFICATE-----Generated at Fri Aug 8 19:39:36 2025 by rpki-client