$ rpki-client -vvf rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft File: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft (raw, json) Hash identifier: QkHNb9OvvjfElfEyeVeAbPQMFK6X2BdlCDIVfN+SV7Q= Subject key identifier: 92:3B:C2:2C:7F:09:1A:23:4F:FA:60:08:84:76:87:84:24:78:B9:96 Authority key identifier: 5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 Certificate issuer: /CN=A9178ACB/serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft Manifest number: 02A3 Signing time: Sat 09 Aug 2025 02:05:36 +0000 Manifest this update: Sat 09 Aug 2025 02:05:35 +0000 Manifest next update: Sat 16 Aug 2025 02:05:35 +0000 Files and hashes: 1: XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl (hash: nrV5qoh0N5RdkFdvC/2TeN5PzkmKQ2P5aLhAtj06JaI=) 2: F82824B4163311EDA7687F1CC4F9AE02.roa (hash: llGHaeZeNwyGtBSSkhkdbPBkxPf6MV+xeeQondsSA8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178ACB, serialNumber=5C27D53D0F23813C8EA1638AF06C8D34D8F2DFF1 Validity Not Before: Aug 9 02:05:35 2025 GMT Not After : Aug 16 02:05:35 2025 GMT Subject: CN=6896acf0-803f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:51:81:f2:d3:65:19:09:5b:5f:3f:38:f5:98: 69:01:96:66:c2:c8:9d:90:48:f1:49:86:98:c5:a5: f5:9f:73:b1:0e:dc:0e:38:ef:b0:05:8a:e2:95:af: d3:fd:e8:fd:53:00:87:02:6c:cb:ff:7a:6f:b7:e4: 1b:d5:4e:65:d4:90:b2:f1:b8:35:43:15:a0:e6:f2: db:e5:5f:d1:79:35:10:6f:a5:09:2d:d2:64:de:0a: 22:64:6a:02:81:24:bc:84:0f:83:f6:51:74:52:b5: d7:07:66:03:7e:a0:70:78:e9:d7:b3:d3:23:28:b5: 05:8e:96:ef:82:fc:85:39:c7:5b:b0:97:0e:15:77: d9:22:82:da:d3:7e:a3:50:0f:e2:19:aa:59:63:5d: 0d:14:86:5d:72:9b:29:10:34:78:72:7e:82:b8:f7: 3a:9c:e2:61:cf:a1:3e:e1:98:db:71:2a:21:87:66: ad:30:98:50:c5:30:1f:32:c1:24:c1:c4:a3:de:a3: 64:8b:e7:ea:99:ea:8f:09:f7:f8:ae:32:e4:6a:50: 42:15:a8:c2:b7:62:9c:2c:2a:43:f8:b0:b4:6a:87: 18:1c:32:f6:c5:be:67:00:99:6b:33:5f:77:d9:45: ca:e7:9c:c0:df:6b:cd:1e:97:db:98:55:60:fd:64: c4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3B:C2:2C:7F:09:1A:23:4F:FA:60:08:84:76:87:84:24:78:B9:96 X509v3 Authority Key Identifier: keyid:5C:27:D5:3D:0F:23:81:3C:8E:A1:63:8A:F0:6C:8D:34:D8:F2:DF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178ACB/523A8F560BA711ED8B0E4C43C4F9AE02/XCfVPQ8jgTyOoWOK8GyNNNjy3_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:1f:7c:23:0d:98:af:e7:95:15:6d:a2:9c:e1:10:23:88:a0: 5f:07:84:ff:b4:62:c9:1b:08:1f:97:32:2f:e4:eb:9a:49:ae: a9:31:14:ed:e7:2d:d7:3f:02:7c:99:b2:4c:b1:f1:1e:33:bb: 92:d1:25:d0:86:06:5c:ea:d6:02:2a:11:a2:71:ef:c2:56:6b: f3:6c:5e:f8:8d:b9:9e:51:71:e7:aa:86:0e:3d:ea:9e:43:c1: f9:05:cd:fd:48:3d:e5:91:f5:d8:cf:df:b2:32:2b:8d:e6:9d: 18:c2:d9:c6:e0:10:7e:74:98:dc:84:67:76:46:03:67:94:3c: 1b:cf:86:4f:4f:3f:da:88:3c:1d:da:6b:d3:61:92:66:83:7e: 07:d1:24:14:56:ed:c6:46:a9:b9:2d:0d:7a:b4:d5:f3:77:ce: 4d:c4:56:37:97:bb:c3:ea:2e:31:d7:22:0c:ca:0d:f7:b0:30: ec:a6:d1:8e:3d:ab:5f:ef:1a:3b:87:4e:28:f7:c7:99:0c:74: 44:15:94:6a:8f:6b:cb:23:65:f4:bf:e5:53:44:c6:38:13:24: cb:97:fe:9d:e2:28:31:89:c0:f1:f2:b1:15:3d:3d:f7:fc:61: af:62:7f:c0:58:8e:fa:11:2c:4d:5f:ee:d3:9e:fb:c7:af:24: 72:5d:3c:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBQ0IxMTAvBgNVBAUTKDVDMjdENTNEMEYyMzgxM0M4RUExNjM4QUYwNkM4RDM0 RDhGMkRGRjEwHhcNMjUwODA5MDIwNTM1WhcNMjUwODE2MDIwNTM1WjAYMRYwFAYD VQQDEw02ODk2YWNmMC04MDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVGB8tNlGQlbXz849ZhpAZZmwsidkEjxSYaYxaX1n3OxDtwOOO+wBYrila/T /ej9UwCHAmzL/3pvt+Qb1U5l1JCy8bg1QxWg5vLb5V/ReTUQb6UJLdJk3goiZGoC gSS8hA+D9lF0UrXXB2YDfqBweOnXs9MjKLUFjpbvgvyFOcdbsJcOFXfZIoLa036j UA/iGapZY10NFIZdcpspEDR4cn6CuPc6nOJhz6E+4ZjbcSohh2atMJhQxTAfMsEk wcSj3qNki+fqmeqPCff4rjLkalBCFajCt2KcLCpD+LC0aocYHDL2xb5nAJlrM193 2UXK55zA32vNHpfbmFVg/WTEwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJI7wix/ CRojT/pgCIR2h4QkeLmWMB8GA1UdIwQYMBaAFFwn1T0PI4E8jqFjivBsjTTY8t/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFDQi81MjNBOEY1NjBC QTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdUeU9vV09LOEd5Tk5Oankz X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDZlZQUThqZ1R5T29XT0s4R3lOTk5qeTNfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEFDQi81MjNBOEY1NjBCQTcxMUVEOEIwRTRDNDNDNEY5QUUwMi9YQ2ZWUFE4amdU eU9vV09LOEd5Tk5OankzX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8H3wjDZiv55UVbaKc4RAjiKBfB4T/tGLJGwgflzIv5OuaSa6pMRTt 5y3XPwJ8mbJMsfEeM7uS0SXQhgZc6tYCKhGice/CVmvzbF74jbmeUXHnqoYOPeqe Q8H5Bc39SD3lkfXYz9+yMiuN5p0YwtnG4BB+dJjchGd2RgNnlDwbz4ZPTz/aiDwd 2mvTYZJmg34H0SQUVu3GRqm5LQ16tNXzd85NxFY3l7vD6i4x1yIMyg33sDDsptGO Patf7xo7h04o98eZDHREFZRqj2vLI2X0v+VTRMY4EyTLl/6d4igxicDx8rEVPT33 /GGvYn/AWI76ESxNX+7TnvvHryRyXTzJ -----END CERTIFICATE-----Generated at Sun Aug 10 15:58:17 2025 by rpki-client