$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft File: xVGHsAsaczdfhFaIX2oQfuHZNc8.mft (raw, json) Hash identifier: 8AzPHF+Rfv4droH1yOcHby6YlZmulZjpJSURo4vQY7Y= Subject key identifier: D0:7A:64:6A:52:FD:0F:32:36:A9:EB:1D:35:F0:5B:43:DA:8F:23:96 Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft Manifest number: 0107 Signing time: Mon 11 Aug 2025 05:15:41 +0000 Manifest this update: Mon 11 Aug 2025 05:15:40 +0000 Manifest next update: Mon 18 Aug 2025 05:15:40 +0000 Files and hashes: 1: xVGHsAsaczdfhFaIX2oQfuHZNc8.crl (hash: R0+XT25STY5Pzzij3e20dzNNuxWzaB0Bppspl6PiFw4=) 2: C9FDEC12E82411EE81065223C4F9AE02.roa (hash: w8SNcu2W86NVWJqOd27to5fWU6al9qmk5VnBP7mMOjs=) 3: EF1E7F70E82411EE9005BA2DC4F9AE02.roa (hash: q12pisfHJtoL9XkqG0on+CXyPl8Ax23nksmjhCAQXBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29, serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Aug 11 05:15:40 2025 GMT Not After : Aug 18 05:15:40 2025 GMT Subject: CN=68997c7c-eeac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:23:2f:7c:d1:63:62:f9:23:bf:dc:50:41: bc:49:06:b2:e4:69:85:d7:5a:f4:11:e1:f0:d0:9e: c0:5c:01:49:57:26:89:42:1a:b6:0b:92:37:70:53: 54:4f:d5:b2:55:b9:32:e9:c9:e2:49:18:2c:dd:6a: 53:ec:a1:20:9e:94:ff:0b:8a:7c:4f:9d:88:3f:98: 86:46:fa:b0:07:4f:e3:b9:c3:fd:f4:96:6f:f2:53: 7a:42:79:f1:32:99:12:e6:f4:02:83:5e:ed:d8:1d: 8e:d5:eb:49:df:25:e3:5a:b7:f8:6a:09:78:34:c9: 24:58:21:ba:0d:34:16:48:03:26:9c:2e:48:a0:76: 02:a3:9d:a1:36:5d:ce:92:6b:45:44:38:2c:46:44: 64:f9:7f:c9:51:43:0a:b8:15:f7:b8:d9:f0:06:fc: f3:82:a0:e0:ea:86:c5:f5:2b:a6:61:a7:dc:d1:7a: 6a:a7:48:ba:86:ee:8a:48:09:f6:f5:02:0e:ea:a6: 0e:d8:3c:8a:fd:69:90:b7:68:c6:80:f9:5f:77:5c: e8:40:65:85:90:a1:2a:c1:5c:bc:07:ad:ea:18:97: 38:8e:df:7a:f3:34:42:77:34:b8:b8:1e:b5:24:d9: 69:70:ac:db:4d:50:81:2f:4f:cd:22:b9:99:b2:6c: c0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7A:64:6A:52:FD:0F:32:36:A9:EB:1D:35:F0:5B:43:DA:8F:23:96 X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:69:eb:9f:8c:db:71:0a:7d:fb:bc:e0:7d:7e:59:d7:be:ff: ef:85:68:c4:e2:bf:43:5e:02:ca:08:84:32:f6:1f:27:5a:04: 33:bf:8f:85:8e:41:81:08:84:a6:10:0d:e8:18:a9:1d:3c:a0: f6:66:bb:07:cb:39:ff:7b:94:79:8c:44:0d:8f:a9:51:ba:ce: 5e:16:a3:6d:66:f4:60:84:a2:f9:50:92:34:fb:23:a9:43:9c: c4:96:b3:b5:b1:70:fc:44:6b:b1:fb:d4:3c:ad:f1:fd:24:50: e4:14:5b:1b:6a:21:75:9b:d6:58:93:9f:2d:2c:1b:d9:fe:84: f9:11:00:7d:cf:eb:4e:3b:9a:a6:a0:15:55:54:aa:02:e7:4c: 32:46:08:91:55:1e:83:ad:46:9f:b2:90:1c:b1:7e:67:76:2a: b0:ec:73:94:f7:ab:4b:e2:e4:b9:0e:e0:97:38:52:72:fe:84: 49:04:26:a2:fa:30:53:c8:7f:f0:22:54:d8:da:7b:58:8f:d5: bf:d1:6f:31:39:63:86:7c:b7:8e:83:fa:74:f0:fa:40:79:ac: 77:34:0b:a1:49:99:0b:ea:4e:01:2f:f1:03:99:63:53:d9:39: bf:e4:ed:e9:0e:62:c5:db:38:ea:4c:ca:2e:e2:31:dc:de:61: 4a:1a:6a:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCMjkxMTAvBgNVBAUTKEM1NTE4N0IwMEIxQTczMzc1Rjg0NTY4ODVGNkExMDdF RTFEOTM1Q0YwHhcNMjUwODExMDUxNTQwWhcNMjUwODE4MDUxNTQwWjAYMRYwFAYD VQQDEw02ODk5N2M3Yy1lZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaMjL3zRY2L5I7/cUEG8SQay5GmF11r0EeHw0J7AXAFJVyaJQhq2C5I3cFNU T9WyVbky6cniSRgs3WpT7KEgnpT/C4p8T52IP5iGRvqwB0/jucP99JZv8lN6Qnnx MpkS5vQCg17t2B2O1etJ3yXjWrf4agl4NMkkWCG6DTQWSAMmnC5IoHYCo52hNl3O kmtFRDgsRkRk+X/JUUMKuBX3uNnwBvzzgqDg6obF9SumYafc0Xpqp0i6hu6KSAn2 9QIO6qYO2DyK/WmQt2jGgPlfd1zoQGWFkKEqwVy8B63qGJc4jt968zRCdzS4uB61 JNlpcKzbTVCBL0/NIrmZsmzAbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNB6ZGpS /Q8yNqnrHTXwW0PajyOWMB8GA1UdIwQYMBaAFMVRh7ALGnM3X4RWiF9qEH7h2TXP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0IyOS82MTdFOTQ0OEU4 MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6ZGZoRmFJWDJvUWZ1SFpO YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5jOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6 ZGZoRmFJWDJvUWZ1SFpOYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6aeufjNtxCn37vOB9flnXvv/vhWjE4r9DXgLKCIQy9h8nWgQzv4+F jkGBCISmEA3oGKkdPKD2ZrsHyzn/e5R5jEQNj6lRus5eFqNtZvRghKL5UJI0+yOp Q5zElrO1sXD8RGux+9Q8rfH9JFDkFFsbaiF1m9ZYk58tLBvZ/oT5EQB9z+tOO5qm oBVVVKoC50wyRgiRVR6DrUafspAcsX5ndiqw7HOU96tL4uS5DuCXOFJy/oRJBCai +jBTyH/wIlTY2ntYj9W/0W8xOWOGfLeOg/p08PpAeax3NAuhSZkL6k4BL/EDmWNT 2Tm/5O3pDmLF2zjqTMou4jHc3mFKGmoL -----END CERTIFICATE-----Generated at Tue Aug 12 13:35:34 2025 by rpki-client