$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft File: MxlflsRtTShdW95LCwMOODFOj8s.mft (raw, json) Hash identifier: t50Nlf8ZtfkkHRW8VIYOkW65Aj3A2ZX1qRabuBf7TgQ= Subject key identifier: 26:A1:8D:28:6A:B5:F8:F7:84:9A:4D:F6:87:80:0D:E1:20:27:35:0A Authority key identifier: 33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB Certificate issuer: /CN=A9173CE6/serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Certificate serial: 06D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft Manifest number: 06B1 Signing time: Fri 08 Aug 2025 22:37:52 +0000 Manifest this update: Fri 08 Aug 2025 22:37:51 +0000 Manifest next update: Fri 15 Aug 2025 22:37:51 +0000 Files and hashes: 1: MxlflsRtTShdW95LCwMOODFOj8s.crl (hash: sUeneC6UL287n08cvqioovDVOeiUPZwGJvWlYbFAXpo=) 2: 7AC60C48CEB611ED8850A727C4F9AE02.roa (hash: Ng5tUT5XtWth/UeVCj9UP+U8A5SqwEGWBOOoygGvFMc=) 3: 7A180DFACEB611ED8850A727C4F9AE02.roa (hash: ecb64YVTHrU3z12q4OTbq4blJYoHWP6/Sh6BnZVtvcQ=) 4: 93AC2C18CF5811ED9DBB075DC4F9AE02.roa (hash: 8KuusaWdM7XE0SsLxUanmFi6arr5FObPV+arfCP9uGg=) 5: C4E57D9EE55A11ED98D38780C4F9AE02.roa (hash: FFJCcbR2xaawUKSL+usbkIr74Y7s8fy0PX5AM1LQSnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Validity Not Before: Aug 8 22:37:51 2025 GMT Not After : Aug 15 22:37:51 2025 GMT Subject: CN=68967c3f-7498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:e9:94:54:ba:a8:0c:be:d9:91:f1:75:85: 93:3c:1a:0b:dd:dd:a4:ba:a4:4e:75:ea:6d:7f:1a: ca:50:45:99:ab:66:90:8c:f8:c5:3d:d2:03:cd:52: 0c:b9:74:ca:2d:64:88:92:24:84:b0:03:06:b0:97: 2c:4e:94:3c:5d:07:2a:c7:97:39:41:89:3c:8c:7b: fe:a8:6e:d5:df:ae:f8:be:5b:85:3b:ec:1d:e7:40: 52:16:c4:fa:ee:f2:11:5a:8c:fa:be:a6:9f:c8:cd: 56:ba:cc:dd:28:9d:b1:a8:0d:a3:f1:9b:0b:81:48: fa:78:1b:df:16:f7:cd:83:de:d5:38:80:3d:45:1b: fb:76:56:b6:c3:c8:05:57:75:a1:ee:7d:45:25:a8: 51:09:c5:fd:4a:70:57:04:7f:da:47:88:37:89:e8: 55:3f:53:b2:9c:af:9a:ca:28:54:45:fc:88:31:7e: c5:14:88:13:e0:ea:d3:ee:df:29:2b:3d:3e:c2:07: 38:5e:cd:50:62:4c:79:d2:a3:c9:6b:b4:5a:11:c8: 00:f5:3e:c8:db:24:97:6f:f5:ea:94:4a:c1:5b:87: 60:60:4d:c0:55:ef:68:4c:fa:6e:43:6b:33:e8:32: 32:e6:32:09:52:79:3b:d2:58:05:2b:b9:42:0b:71: b8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A1:8D:28:6A:B5:F8:F7:84:9A:4D:F6:87:80:0D:E1:20:27:35:0A X509v3 Authority Key Identifier: keyid:33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8a:ce:b7:fe:6e:63:79:6c:29:65:42:cd:38:96:24:66:c8: 6b:70:d7:85:0d:dc:c9:ff:15:89:95:8a:3a:12:e1:f4:75:cf: 8f:7d:1f:83:23:5f:83:cc:4c:e7:8a:a5:d1:a9:bf:51:86:b5: b4:8e:88:26:96:fa:93:86:12:6b:b5:7e:43:27:a4:78:57:02: 29:76:f5:3e:5b:15:1a:b1:b8:66:1f:f2:55:62:36:a1:1d:1d: 7d:ae:1f:bc:f0:1e:65:e5:5b:f2:47:2a:bd:df:1a:83:e0:40: 34:8a:b4:31:06:64:66:b8:f4:7e:0a:78:12:c9:c1:3e:3c:1f: 61:d7:c0:ee:68:92:8c:2b:b3:5b:97:f2:c0:da:e1:b2:21:da: c5:79:e3:c0:8d:eb:78:41:e1:63:a9:8a:5d:b2:5d:71:35:ad: f7:b4:02:53:2d:30:70:13:8c:49:23:fc:39:dd:95:ca:36:1c: 89:3c:00:41:8b:65:66:f0:6e:fd:3f:63:d2:0e:d3:de:e6:41: b0:2d:3f:45:c8:c3:68:dd:e3:c8:94:62:01:ad:67:0b:fc:a3: 63:e7:14:b1:3c:9c:f4:b8:49:93:99:77:99:c6:a3:28:5f:5b: a4:5c:8d:56:2e:46:75:21:87:c8:bc:f5:93:7f:45:8b:71:f2: 65:89:64:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDMzMTk1Rjk2QzQ2RDREMjg1RDVCREU0QjBCMDMwRTM4 MzE0RThGQ0IwHhcNMjUwODA4MjIzNzUxWhcNMjUwODE1MjIzNzUxWjAYMRYwFAYD VQQDEw02ODk2N2MzZi03NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqLplFS6qAy+2ZHxdYWTPBoL3d2kuqROdeptfxrKUEWZq2aQjPjFPdIDzVIM uXTKLWSIkiSEsAMGsJcsTpQ8XQcqx5c5QYk8jHv+qG7V3674vluFO+wd50BSFsT6 7vIRWoz6vqafyM1WuszdKJ2xqA2j8ZsLgUj6eBvfFvfNg97VOIA9RRv7dla2w8gF V3Wh7n1FJahRCcX9SnBXBH/aR4g3iehVP1OynK+ayihURfyIMX7FFIgT4OrT7t8p Kz0+wgc4Xs1QYkx50qPJa7RaEcgA9T7I2ySXb/XqlErBW4dgYE3AVe9oTPpuQ2sz 6DIy5jIJUnk70lgFK7lCC3G4KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCahjShq tfj3hJpN9oeADeEgJzUKMB8GA1UdIwQYMBaAFDMZX5bEbU0oXVveSwsDDjgxTo/L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wRThFMjc4MDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRTaGRXOTVMQ3dNT09ERk9q OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014bGZsc1J0VFNoZFc5NUxDd01PT0RGT2o4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wRThFMjc4MDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRT aGRXOTVMQ3dNT09ERk9qOHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqis63/m5jeWwpZULNOJYkZshrcNeFDdzJ/xWJlYo6EuH0dc+PfR+D I1+DzEzniqXRqb9RhrW0jogmlvqThhJrtX5DJ6R4VwIpdvU+WxUasbhmH/JVYjah HR19rh+88B5l5VvyRyq93xqD4EA0irQxBmRmuPR+CngSycE+PB9h18DuaJKMK7Nb l/LA2uGyIdrFeePAjet4QeFjqYpdsl1xNa33tAJTLTBwE4xJI/w53ZXKNhyJPABB i2Vm8G79P2PSDtPe5kGwLT9FyMNo3ePIlGIBrWcL/KNj5xSxPJz0uEmTmXeZxqMo X1ukXI1WLkZ1IYfIvPWTf0WLcfJliWRx -----END CERTIFICATE-----Generated at Sun Aug 10 21:18:22 2025 by rpki-client