$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: PsWErHT4OGgyvjsLsAcRb3wFf3ONNHlHf8mvy8qF/kY= Subject key identifier: 31:1A:D3:A2:A7:F7:0F:E2:DF:A0:0E:54:47:66:D2:E9:0A:E9:FC:E6 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 09C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 09B1 Signing time: Sun 10 Aug 2025 20:04:19 +0000 Manifest this update: Sun 10 Aug 2025 20:04:18 +0000 Manifest next update: Sun 17 Aug 2025 20:04:18 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: fPwWzwSPT8oxaBUMb976X3KV+z6M+Qq8+YvOhXxspug=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: ULVz6gtv7Lj17GsbY0DraIvlqeAo9m+ryNVdzpRY8/w=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: vTD8xn0iYmYF0FCpYg76YMcwnWDZovAXcFL69UbAO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Aug 10 20:04:18 2025 GMT Not After : Aug 17 20:04:18 2025 GMT Subject: CN=6898fb43-1aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b5:41:59:bf:3f:4f:71:fb:46:56:fd:33:f3: 56:26:73:f9:91:af:3c:6e:42:8b:f5:12:28:a4:e2: 7b:b4:be:02:7b:31:d4:1f:c0:3c:c8:c7:1c:53:18: 03:b7:cb:83:43:82:10:23:9c:94:e6:0c:aa:3f:55: 58:43:a1:91:d2:02:c8:22:94:52:8b:33:9c:ca:ee: 39:77:97:c4:46:c4:96:84:85:fa:ae:ac:1f:f9:67: 22:da:78:f1:36:12:37:00:88:7e:da:d5:54:84:9d: 81:49:3d:8f:03:17:19:1f:7c:b7:e6:63:a9:e3:e7: 99:aa:31:9a:1c:5d:a7:35:a4:ac:18:92:8b:a2:a6: d6:d3:a7:12:52:95:15:2e:d2:26:c2:64:77:a9:52: fa:cf:82:36:a0:a6:e0:31:d8:80:86:87:e9:c6:f1: 44:f6:66:68:ea:d1:15:bd:c7:19:37:3e:b1:56:c1: 33:b7:b3:f1:e0:2a:10:be:16:d2:0b:dc:f0:1f:59: ce:b0:65:7e:6b:aa:48:e6:a7:78:77:85:db:54:23: 76:a6:2c:de:7a:be:4b:e3:19:c2:9f:b7:fd:e9:52: 14:8f:e8:7b:9d:40:5f:f5:d5:33:d1:c2:6d:6a:25: 17:e3:c9:6f:d8:1b:0d:fc:6a:2c:71:5c:4d:b5:b7: 4d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:1A:D3:A2:A7:F7:0F:E2:DF:A0:0E:54:47:66:D2:E9:0A:E9:FC:E6 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b5:49:ef:fe:52:86:07:aa:ac:d5:0c:7c:a0:f1:42:42:1b: 34:06:eb:27:eb:40:00:4f:3a:81:22:1c:38:d1:b2:03:5f:2d: 2e:31:7d:c4:9b:d1:f4:97:20:68:c5:52:25:ce:99:d7:30:e4: 60:ac:ee:73:c2:18:c0:85:0e:5e:bc:d7:45:6d:86:8b:98:27: 87:c8:37:10:f6:04:8e:ab:49:c5:0c:56:f8:55:1a:27:eb:14: 61:5d:86:24:19:cc:5e:84:be:fd:b4:f2:9e:91:f9:56:00:ed: 81:ac:17:21:e5:9f:e6:66:74:32:43:38:8a:05:ea:e1:dd:12: 58:2e:fe:03:09:b2:10:9f:b7:9e:96:80:bf:aa:45:cc:d2:3c: ad:10:45:cf:9a:6f:e5:bc:80:bb:c3:7a:e8:73:2b:6c:e5:51: 63:6f:6a:03:3f:ef:af:8f:8b:af:8a:94:1c:75:4c:23:c2:0d: ce:6d:01:17:2b:c8:b4:bd:9d:16:2b:2d:ec:80:4b:5a:9f:8e: 1a:64:28:7a:a9:b8:fe:c1:76:fa:f8:bd:31:e5:c4:f6:24:33: f0:1b:19:85:aa:c5:e8:f1:89:57:38:7c:0c:ad:ef:4f:7d:79: 0b:0a:1f:11:64:e0:b1:e0:8c:0d:32:e7:d2:73:7c:c7:dd:63: c8:52:37:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUwODEwMjAwNDE4WhcNMjUwODE3MjAwNDE4WjAYMRYwFAYD VQQDEw02ODk4ZmI0My0xYWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbVBWb8/T3H7Rlb9M/NWJnP5ka88bkKL9RIopOJ7tL4CezHUH8A8yMccUxgD t8uDQ4IQI5yU5gyqP1VYQ6GR0gLIIpRSizOcyu45d5fERsSWhIX6rqwf+Wci2njx NhI3AIh+2tVUhJ2BST2PAxcZH3y35mOp4+eZqjGaHF2nNaSsGJKLoqbW06cSUpUV LtImwmR3qVL6z4I2oKbgMdiAhofpxvFE9mZo6tEVvccZNz6xVsEzt7Px4CoQvhbS C9zwH1nOsGV+a6pI5qd4d4XbVCN2pizeer5L4xnCn7f96VIUj+h7nUBf9dUz0cJt aiUX48lv2BsN/GoscVxNtbdNzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEa06Kn 9w/i36AOVEdm0ukK6fzmMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVtUnv/lKGB6qs1Qx8oPFCQhs0Busn60AATzqBIhw40bIDXy0uMX3E m9H0lyBoxVIlzpnXMORgrO5zwhjAhQ5evNdFbYaLmCeHyDcQ9gSOq0nFDFb4VRon 6xRhXYYkGcxehL79tPKekflWAO2BrBch5Z/mZnQyQziKBerh3RJYLv4DCbIQn7ee loC/qkXM0jytEEXPmm/lvIC7w3rocyts5VFjb2oDP++vj4uvipQcdUwjwg3ObQEX K8i0vZ0WKy3sgEtan44aZCh6qbj+wXb6+L0x5cT2JDPwGxmFqsXo8YlXOHwMre9P fXkLCh8RZOCx4IwNMufSc3zH3WPIUjcH -----END CERTIFICATE-----Generated at Mon Aug 11 07:25:31 2025 by rpki-client