$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: aXHkPYTW2IwsR+W2CyqdiPYGzkWpxKGDgDlkciwY3tY= Subject key identifier: 5D:A0:0B:FC:76:03:30:C4:A2:62:5C:1C:49:25:D6:C9:E7:78:BC:3D Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 09A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0992 Signing time: Sun 10 Aug 2025 20:07:23 +0000 Manifest this update: Sun 10 Aug 2025 20:07:22 +0000 Manifest next update: Sun 17 Aug 2025 20:07:22 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: KA3bqqz5QuwXuLNp5zs0kISQhxIwOaqcsn3WVa7PDlg=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Aug 10 20:07:22 2025 GMT Not After : Aug 17 20:07:22 2025 GMT Subject: CN=6898fbfa-d59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8f:1f:08:c6:b6:70:8a:bc:17:de:60:09:fe: 7d:87:7d:43:af:b0:66:c0:56:d2:4d:fa:ac:5c:43: 71:5d:0b:e3:52:30:e3:8c:86:00:7f:80:41:be:d7: c8:23:04:d3:13:20:e1:2c:44:74:1a:43:60:fc:5d: 50:57:57:d1:15:dc:c3:50:b2:fa:9f:42:e2:c7:18: da:ea:4d:fe:a0:ea:1f:48:ed:92:e4:e8:78:09:4b: 18:26:40:fc:df:cc:3f:cb:0c:e9:be:21:04:2f:96: 02:98:13:6f:62:0c:6f:9d:5f:4d:6a:93:b7:ee:f9: 52:47:39:9b:88:fd:49:c6:67:ab:ac:fa:b5:ad:f9: e0:a1:57:19:31:4a:97:e3:e7:01:4a:cc:88:b6:68: 01:7c:fc:46:35:31:19:18:39:50:f3:f0:34:c9:46: 36:ab:14:6c:8e:32:fb:8c:67:75:e0:15:d8:8f:e6: e1:df:f8:0a:33:21:ae:5c:28:46:79:33:59:31:9e: 92:6b:31:23:93:29:87:64:3e:4e:05:fd:e1:fe:dc: a7:af:64:3d:a7:1b:15:b5:74:8f:74:e6:25:df:95: d6:18:a2:7a:4f:ff:10:8d:17:ec:b5:a8:50:4a:49: 8c:60:78:93:1b:c2:46:4f:db:4e:7b:3b:61:41:e5: d3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A0:0B:FC:76:03:30:C4:A2:62:5C:1C:49:25:D6:C9:E7:78:BC:3D X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:7e:b0:4f:f1:ec:74:e2:0c:60:cb:4d:75:e1:ab:65:17:28: 98:29:ff:ec:1e:3f:55:5b:47:7f:6c:3b:74:d1:75:70:e8:3d: 8c:27:b0:4e:36:5b:1b:c0:50:40:67:62:6a:42:e4:ba:8e:58: 2b:09:a2:2d:5e:32:34:47:c0:9a:81:1d:c5:87:71:8a:2d:e3: f1:2a:09:82:cb:50:ba:32:8a:c0:b9:ef:2f:15:58:69:58:54: 62:02:b7:da:24:2b:29:a1:a9:26:5f:25:6b:ed:4c:b5:d5:73: 86:1b:de:45:c3:90:4d:3b:ef:f2:d5:7a:af:ec:91:f1:d0:dd: 5d:10:10:9d:0b:40:c1:f9:93:f9:6f:0b:63:41:cf:f7:25:53: 76:ad:9d:24:09:68:95:99:76:f5:93:5c:4e:80:42:cc:e3:ce: 50:25:b6:e9:88:ca:43:f0:3b:a1:52:2f:ae:54:bc:06:d4:c5: 44:d7:26:9d:e4:b3:d6:f5:58:39:a4:0d:c2:a6:ab:8e:87:ec: 16:14:8a:9d:b2:69:ce:6f:17:f8:77:d6:f4:8f:8f:d9:64:32: 15:46:74:50:b9:f7:7c:52:be:e7:c4:61:47:63:59:a6:75:7e: 08:81:ef:cb:40:67:35:97:1c:b3:39:eb:45:45:cd:57:df:a0: fa:38:16:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUwODEwMjAwNzIyWhcNMjUwODE3MjAwNzIyWjAYMRYwFAYD VQQDEw02ODk4ZmJmYS1kNTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI8fCMa2cIq8F95gCf59h31Dr7BmwFbSTfqsXENxXQvjUjDjjIYAf4BBvtfI IwTTEyDhLER0GkNg/F1QV1fRFdzDULL6n0Lixxja6k3+oOofSO2S5Oh4CUsYJkD8 38w/ywzpviEEL5YCmBNvYgxvnV9NapO37vlSRzmbiP1JxmerrPq1rfngoVcZMUqX 4+cBSsyItmgBfPxGNTEZGDlQ8/A0yUY2qxRsjjL7jGd14BXYj+bh3/gKMyGuXChG eTNZMZ6SazEjkymHZD5OBf3h/tynr2Q9pxsVtXSPdOYl35XWGKJ6T/8QjRfstahQ SkmMYHiTG8JGT9tOezthQeXToQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2gC/x2 AzDEomJcHEkl1snneLw9MB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEfrBP8ex04gxgy0114atlFyiYKf/sHj9VW0d/bDt00XVw6D2MJ7BO NlsbwFBAZ2JqQuS6jlgrCaItXjI0R8CagR3Fh3GKLePxKgmCy1C6MorAue8vFVhp WFRiArfaJCspoakmXyVr7Uy11XOGG95Fw5BNO+/y1Xqv7JHx0N1dEBCdC0DB+ZP5 bwtjQc/3JVN2rZ0kCWiVmXb1k1xOgELM485QJbbpiMpD8DuhUi+uVLwG1MVE1yad 5LPW9Vg5pA3CpquOh+wWFIqdsmnObxf4d9b0j4/ZZDIVRnRQufd8Ur7nxGFHY1mm dX4Ige/LQGc1lxyzOetFRc1X36D6OBYj -----END CERTIFICATE-----Generated at Mon Aug 11 07:25:38 2025 by rpki-client