$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: DBuRJ58djzC/89h4kVoDumwb1gd6D1DPtCNtw6MvK64= Subject key identifier: D3:0F:A4:FE:B7:0B:1D:9D:82:CA:E9:50:14:FF:59:97:E5:44:D9:FB Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 85 Signing time: Mon 11 Aug 2025 06:51:55 +0000 Manifest this update: Mon 11 Aug 2025 06:51:54 +0000 Manifest next update: Mon 18 Aug 2025 06:51:54 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: snDKlfWK7SUmEBmwmkxTnLQDt0yYeaz8HKsjQq5B2y8=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Aug 11 06:51:54 2025 GMT Not After : Aug 18 06:51:54 2025 GMT Subject: CN=6899930b-bdf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:99:eb:79:78:b1:f6:7d:35:05:88:fb:c8:d6: dd:a9:34:21:2e:a0:b5:75:b0:c8:ba:98:66:65:b7: de:fa:b9:bc:f4:49:18:0f:ee:6e:a8:72:5c:80:95: 92:49:34:a0:f0:37:0a:ab:c2:e5:5e:40:a3:7b:99: 66:09:03:e9:ba:15:a3:4b:ad:01:64:f9:c6:cd:e1: f5:f9:f8:22:47:8f:93:bc:f0:75:35:82:1b:f1:12: 5f:ce:0f:8e:22:db:5b:e0:64:3f:cb:f2:a0:87:2a: da:86:39:63:23:a7:80:ec:0a:0f:cd:81:6c:44:50: 4d:d1:60:23:30:07:ab:b4:e0:52:fe:5b:1f:a4:aa: 00:97:bc:03:5b:58:5f:a2:3a:e0:3c:ee:72:6c:a0: be:a7:13:a5:a0:ee:8b:7d:f7:a1:39:ff:ec:11:ed: 4a:8c:81:21:c1:d4:4c:97:31:17:10:0a:62:eb:f4: 54:59:d6:63:af:20:90:e7:a3:1a:f4:6e:b9:39:6a: 31:c9:5f:eb:5c:71:c0:f2:63:04:e3:f4:2a:56:68: d1:5e:5f:55:d5:33:c2:a8:c2:d6:e5:d7:17:63:fa: 25:e9:62:71:5a:a0:00:70:6c:ae:b1:5c:de:b1:1d: 9b:b6:91:c6:2c:46:08:5a:2c:b5:c9:ee:dc:3f:00: 43:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0F:A4:FE:B7:0B:1D:9D:82:CA:E9:50:14:FF:59:97:E5:44:D9:FB X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:81:14:65:37:41:11:c0:64:11:cf:3a:1e:3a:e3:f7:27:08: aa:68:d7:42:82:a0:79:f7:3d:4c:d3:11:7e:29:39:a3:85:ae: 66:16:6f:c6:d3:9b:68:df:69:a6:d1:fd:31:d7:81:56:ba:c0: 64:90:a9:b5:16:ec:77:1d:23:fb:86:d3:83:f3:17:b0:06:f7: 43:be:2b:b1:e3:71:b3:9e:fe:d5:cc:4d:bc:38:9f:4a:d8:ed: f7:29:3e:60:c8:10:a5:54:75:77:c5:d3:f0:a0:8e:dd:c6:e3: c3:c6:6e:81:71:32:ee:ce:f6:9d:a4:fc:70:1f:21:6a:71:3e: af:df:93:9c:f6:69:cf:f0:68:8b:c2:cc:39:78:e4:e3:5d:cd: b8:f7:0e:6b:76:8a:e4:19:aa:05:23:7e:f0:34:fa:e8:b0:be: 90:46:bd:bb:65:19:d6:55:4f:21:7c:50:6b:93:ae:eb:b6:2a: f8:97:9d:cf:8c:ce:91:57:f4:27:2d:0a:7f:8b:f2:7c:ab:d3: e8:3c:45:77:af:38:1b:1a:89:e4:7b:b5:9a:b0:f5:71:3d:ef: b3:a8:4e:60:fd:59:8a:78:56:5c:3f:93:01:2c:46:85:0c:3b: e4:94:18:7f:c1:a5:05:60:18:bc:8d:38:73:bb:58:56:a5:ec: 5a:d6:19:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKEQxNzQ0NTNFOTU2M0VCQUZDQkJCMzJBQ0M2Q0Y4NjZG QkQ4RTIyRjAwHhcNMjUwODExMDY1MTU0WhcNMjUwODE4MDY1MTU0WjAYMRYwFAYD VQQDEw02ODk5OTMwYi1iZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5nreXix9n01BYj7yNbdqTQhLqC1dbDIuphmZbfe+rm89EkYD+5uqHJcgJWS STSg8DcKq8LlXkCje5lmCQPpuhWjS60BZPnGzeH1+fgiR4+TvPB1NYIb8RJfzg+O Ittb4GQ/y/KghyrahjljI6eA7AoPzYFsRFBN0WAjMAertOBS/lsfpKoAl7wDW1hf ojrgPO5ybKC+pxOloO6LffehOf/sEe1KjIEhwdRMlzEXEApi6/RUWdZjryCQ56Ma 9G65OWoxyV/rXHHA8mME4/QqVmjRXl9V1TPCqMLW5dcXY/ol6WJxWqAAcGyusVze sR2btpHGLEYIWiy1ye7cPwBDPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMPpP63 Cx2dgsrpUBT/WZflRNn7MB8GA1UdIwQYMBaAFNF0RT6VY+uvy7syrMbPhm+9jiLw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS83QjMzNEE0QUFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2X0x1ektzeHMtR2I3Mk9J dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS83QjMzNEE0QUFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2 X0x1ektzeHMtR2I3Mk9JdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDmgRRlN0ERwGQRzzoeOuP3JwiqaNdCgqB59z1M0xF+KTmjha5mFm/G 05to32mm0f0x14FWusBkkKm1Fux3HSP7htOD8xewBvdDviux43Gznv7VzE28OJ9K 2O33KT5gyBClVHV3xdPwoI7dxuPDxm6BcTLuzvadpPxwHyFqcT6v35Oc9mnP8GiL wsw5eOTjXc249w5rdorkGaoFI37wNProsL6QRr27ZRnWVU8hfFBrk67rtir4l53P jM6RV/QnLQp/i/J8q9PoPEV3rzgbGonke7WasPVxPe+zqE5g/VmKeFZcP5MBLEaF DDvklBh/waUFYBi8jThzu1hWpexa1hn9 -----END CERTIFICATE-----Generated at Mon Aug 11 13:15:58 2025 by rpki-client