$ rpki-client -vvf rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft File: XPuiiRbqwHsjWQlIVdieFqCBS6w.mft (raw, json) Hash identifier: 273UHtbdh6Q2pb1BQV4tY46/FkytOVzC+TpX70UcyUY= Subject key identifier: 88:68:A4:8F:5C:A2:AA:A1:CE:EF:4A:40:80:C8:61:5B:3F:82:62:37 Authority key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC Certificate issuer: /CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Certificate serial: 0B6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft Manifest number: 0B5D Signing time: Sun 10 Aug 2025 19:06:52 +0000 Manifest this update: Sun 10 Aug 2025 19:06:51 +0000 Manifest next update: Sun 17 Aug 2025 19:06:51 +0000 Files and hashes: 1: XPuiiRbqwHsjWQlIVdieFqCBS6w.crl (hash: LFOmE/r2BVcTk6GP8PAeEMTyrDYg2iMBrXEIbl+KaaU=) 2: 3EA26CE6396011EABC88BD55C4F9AE02.roa (hash: z+/TKQAcf6VE8NuqmnIeG+tuqaOl0QxpRj3ReMN+jL0=) 3: 01553E10396311EAB24C5A5FC4F9AE02.roa (hash: Jhq/OLItI0gDhEIBYho+XP9iO0Y/7Srvb27SpQGuffU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E843, serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Validity Not Before: Aug 10 19:06:51 2025 GMT Not After : Aug 17 19:06:51 2025 GMT Subject: CN=6898edcb-8622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:60:7e:16:7f:ec:31:6e:2f:7d:50:68:93:7e: 8b:3e:32:32:37:50:3f:d5:31:e5:84:1b:be:b3:22: e2:70:eb:e1:a7:8d:68:d9:d8:05:34:98:19:59:df: b5:78:d8:a6:10:e0:d3:15:d9:7e:e7:43:90:82:f2: 32:0b:7e:26:b1:c8:e1:7d:e6:0f:7b:c3:0f:60:57: ed:4f:98:7d:23:2a:0e:2d:93:e0:0d:61:d5:4d:cb: bc:03:a8:75:17:17:6c:e9:c3:85:76:53:2c:57:79: 0f:09:32:6f:a3:5d:9e:4a:60:bf:ff:04:83:8f:09: 31:e4:e6:bd:24:ea:52:be:ce:6c:53:7e:97:4c:ad: 11:4a:88:c6:72:fd:5a:c4:27:a2:00:82:56:96:d7: 44:9f:a3:64:65:99:77:8c:25:d0:2c:17:5c:d7:9f: 38:bd:fb:02:dc:cd:f7:c1:9a:f6:f0:4b:e7:73:94: 01:24:13:23:5c:63:dc:c4:e5:e9:ea:ca:cb:38:fe: 33:b0:e3:f5:eb:0f:5b:63:e0:bf:9f:a7:93:2b:cf: 08:0b:8d:49:93:9a:40:40:5b:08:23:7c:13:e4:94: 3c:e7:c4:30:d3:bf:ac:8f:e2:89:5f:99:ae:85:63: c6:b5:db:52:31:c5:09:17:21:d9:66:40:bf:ff:1f: 57:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:68:A4:8F:5C:A2:AA:A1:CE:EF:4A:40:80:C8:61:5B:3F:82:62:37 X509v3 Authority Key Identifier: keyid:5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:19:50:d1:08:d1:17:ac:60:b4:cd:f1:56:6f:d4:68:ad:e4: 67:09:99:83:a1:17:bf:bc:93:3c:89:34:81:18:81:30:cb:19: df:b7:e8:80:ed:e0:86:e0:0b:60:7c:83:f8:57:a3:1e:ee:49: 8d:3d:f6:f4:29:81:3b:96:3a:ea:2e:8b:ef:d2:ce:73:6b:08: 9f:ed:a6:c9:a3:0d:7e:a2:94:62:35:2f:17:3f:3f:98:7b:04: 4f:0b:4a:2a:47:b3:5e:3a:5c:d3:4a:fc:76:ae:b6:4d:1e:07: 2a:ca:51:9a:b8:84:ca:13:63:41:b3:15:97:97:2d:55:63:0f: 22:3c:f6:4b:16:00:20:58:9f:b8:8d:b1:20:b5:b6:20:f8:7c: f2:c3:a7:15:e3:f7:c1:b7:6f:aa:ad:08:0b:43:53:ff:b7:03: c4:84:29:08:6c:0c:24:74:71:6b:a2:8c:ae:57:0e:aa:e6:a7: 03:ad:12:b8:0f:01:96:cc:f8:ce:4b:0f:f0:08:2c:8a:69:a6: 2e:aa:63:c9:90:45:01:40:d0:f0:9f:db:f5:19:f3:c9:6c:27: 00:f0:ef:50:18:bb:3b:bd:ae:bd:49:ab:67:74:01:84:f3:7d: fc:2c:eb:c5:74:de:77:a3:55:12:47:a4:f6:23:3b:8e:32:f9: c4:d0:66:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NDMxMTAvBgNVBAUTKDVDRkJBMjg5MTZFQUMwN0IyMzU5MDk0ODU1RDg5RTE2 QTA4MTRCQUMwHhcNMjUwODEwMTkwNjUxWhcNMjUwODE3MTkwNjUxWjAYMRYwFAYD VQQDEw02ODk4ZWRjYi04NjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmB+Fn/sMW4vfVBok36LPjIyN1A/1THlhBu+syLicOvhp41o2dgFNJgZWd+1 eNimEODTFdl+50OQgvIyC34mscjhfeYPe8MPYFftT5h9IyoOLZPgDWHVTcu8A6h1 Fxds6cOFdlMsV3kPCTJvo12eSmC//wSDjwkx5Oa9JOpSvs5sU36XTK0RSojGcv1a xCeiAIJWltdEn6NkZZl3jCXQLBdc1584vfsC3M33wZr28Evnc5QBJBMjXGPcxOXp 6srLOP4zsOP16w9bY+C/n6eTK88IC41Jk5pAQFsII3wT5JQ858Qw07+sj+KJX5mu hWPGtdtSMcUJFyHZZkC//x9XswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhopI9c oqqhzu9KQIDIYVs/gmI3MB8GA1UdIwQYMBaAFFz7ookW6sB7I1kJSFXYnhaggUus MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg0My85NTdCQ0I0NDM5 NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdIc2pXUWxJVmRpZUZxQ0JT NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQdWlpUmJxd0hzaldRbElWZGllRnFDQlM2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg0My85NTdCQ0I0NDM5NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdI c2pXUWxJVmRpZUZxQ0JTNncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIGVDRCNEXrGC0zfFWb9RoreRnCZmDoRe/vJM8iTSBGIEwyxnft+iA 7eCG4AtgfIP4V6Me7kmNPfb0KYE7ljrqLovv0s5zawif7abJow1+opRiNS8XPz+Y ewRPC0oqR7NeOlzTSvx2rrZNHgcqylGauITKE2NBsxWXly1VYw8iPPZLFgAgWJ+4 jbEgtbYg+Hzyw6cV4/fBt2+qrQgLQ1P/twPEhCkIbAwkdHFrooyuVw6q5qcDrRK4 DwGWzPjOSw/wCCyKaaYuqmPJkEUBQNDwn9v1GfPJbCcA8O9QGLs7va69SatndAGE 8338LOvFdN53o1USR6T2IzuOMvnE0GaL -----END CERTIFICATE-----Generated at Mon Aug 11 04:26:06 2025 by rpki-client