$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: nfRtQzo67epYQE0E5/pDXb93GHkOYYtZBrS52fITxAk= Subject key identifier: BC:C9:41:64:E3:7C:51:B2:9C:2C:43:BB:ED:84:D1:29:AF:87:97:18 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: F1 Signing time: Tue 05 Aug 2025 05:48:30 +0000 Manifest this update: Tue 05 Aug 2025 05:48:29 +0000 Manifest next update: Tue 12 Aug 2025 05:48:29 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: FZt3PvEedjSTysr0nHQ6kFjbDV/bAJx2Rl6cpXOgmjE=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: C3Ga1a9eb1Df3VllPQUKdb207TqBrmGNq5XYCS2u3O0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Aug 5 05:48:29 2025 GMT Not After : Aug 12 05:48:29 2025 GMT Subject: CN=68919b2e-e138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3e:3c:21:84:d2:c5:96:81:54:42:a5:54:b5: 8b:6f:8e:26:f7:ba:83:f4:3a:f3:74:85:de:1b:42: 52:d1:1e:a2:fa:2d:1a:ef:23:fd:16:1f:50:ed:09: 00:2c:2c:42:f8:10:ec:10:b2:34:ff:8e:45:79:72: 6d:09:6a:11:fb:ff:62:e6:e6:45:f0:b6:d7:63:af: 6b:f0:f2:83:04:b0:5d:fe:fc:32:21:6b:e0:82:61: 72:9a:99:76:18:dd:7a:7f:d2:59:af:1c:87:50:fa: f7:54:29:27:96:b3:55:f9:d5:d2:70:fe:20:3b:cb: d4:e8:4e:5e:f0:4d:81:8f:e1:16:15:ae:5f:e9:8d: 1d:c8:fc:ca:1c:99:4b:1e:eb:3a:6a:7b:29:86:0a: 5a:f0:ba:41:4a:3c:d1:55:c1:c0:dc:8f:60:62:1b: d9:0b:aa:c2:71:c1:a3:8f:76:42:c3:e0:0a:c0:e4: cb:82:42:98:cb:d5:65:b0:b0:bb:10:63:6b:28:00: 75:1c:78:40:b4:9a:51:52:91:19:58:f0:7a:cb:20: a8:a2:5a:d8:87:7d:4a:73:dc:22:17:4b:ac:2c:52: 50:5d:60:4c:1a:ec:4d:e3:38:cd:1a:89:ca:4a:e0: 3c:1b:cd:dc:0e:69:ea:e0:59:5f:4a:86:fa:6d:85: 5e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C9:41:64:E3:7C:51:B2:9C:2C:43:BB:ED:84:D1:29:AF:87:97:18 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:26:dd:0f:b6:72:60:e8:28:42:96:f2:76:2f:77:87:50:95: ac:16:f7:02:f5:6a:15:98:ec:ff:b3:c2:ec:ba:9b:c1:54:ba: 78:c8:c7:c9:04:5d:e8:ca:68:7d:92:0d:32:72:e8:76:bd:bf: 2b:c3:f1:0e:26:7f:65:e8:c7:16:98:41:4f:50:d0:b2:32:3c: 75:a4:68:61:52:58:c0:c9:c8:bf:f1:df:42:fa:d6:ef:41:54: e1:87:e3:92:98:4f:66:fa:af:61:ce:bf:62:1e:26:c8:62:47: 66:a5:19:bf:09:57:8f:c5:61:ec:65:1a:f6:cd:d6:b8:dd:f6: 94:d4:30:c1:4b:46:2f:e9:8b:1a:62:a1:c9:9a:b1:97:ab:5a: bb:00:e3:ad:27:6a:23:84:c1:db:fc:8a:9f:cc:cb:96:78:1b: 49:87:62:2e:e7:9a:06:ea:d1:2f:bb:3c:fd:78:e9:7a:df:80: 99:91:93:c4:bb:40:58:ae:16:a1:05:25:25:e8:bc:20:24:a4: 8b:ca:d3:be:1b:ab:61:8f:f5:a5:43:e4:09:70:b6:17:d8:3c: 10:29:03:2f:39:b4:d8:ae:93:4c:d6:b2:f6:7c:0a:36:0e:61: ed:20:62:ab:4a:c9:59:b5:44:51:82:e5:24:65:71:19:09:b1: 15:1a:9f:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwODA1MDU0ODI5WhcNMjUwODEyMDU0ODI5WjAYMRYwFAYD VQQDEw02ODkxOWIyZS1lMTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsD48IYTSxZaBVEKlVLWLb44m97qD9DrzdIXeG0JS0R6i+i0a7yP9Fh9Q7QkA LCxC+BDsELI0/45FeXJtCWoR+/9i5uZF8LbXY69r8PKDBLBd/vwyIWvggmFympl2 GN16f9JZrxyHUPr3VCknlrNV+dXScP4gO8vU6E5e8E2Bj+EWFa5f6Y0dyPzKHJlL Hus6ansphgpa8LpBSjzRVcHA3I9gYhvZC6rCccGjj3ZCw+AKwOTLgkKYy9VlsLC7 EGNrKAB1HHhAtJpRUpEZWPB6yyCoolrYh31Kc9wiF0usLFJQXWBMGuxN4zjNGonK SuA8G83cDmnq4FlfSob6bYVeVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzJQWTj fFGynCxDu+2E0Smvh5cYMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAJt0PtnJg6ChClvJ2L3eHUJWsFvcC9WoVmOz/s8LsupvBVLp4yMfJ BF3oymh9kg0ycuh2vb8rw/EOJn9l6McWmEFPUNCyMjx1pGhhUljAyci/8d9C+tbv QVThh+OSmE9m+q9hzr9iHibIYkdmpRm/CVePxWHsZRr2zda43faU1DDBS0Yv6Ysa YqHJmrGXq1q7AOOtJ2ojhMHb/IqfzMuWeBtJh2Iu55oG6tEvuzz9eOl634CZkZPE u0BYrhahBSUl6LwgJKSLytO+G6thj/WlQ+QJcLYX2DwQKQMvObTYrpNM1rL2fAo2 DmHtIGKrSslZtURRguUkZXEZCbEVGp+S -----END CERTIFICATE-----Generated at Wed Aug 6 13:06:17 2025 by rpki-client