$ rpki-client -vvf rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft File: XaSteg0ZJFUV5aLYSgxnRwCkP80.mft (raw, json) Hash identifier: Id61k/TbIhf9iKt1RAOvjICUK0duFznBvsISxWCaMAo= Subject key identifier: 5B:BA:80:70:F6:B8:36:CD:39:9B:49:75:6E:D1:ED:A9:65:F7:1E:B2 Authority key identifier: 5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD Certificate issuer: /CN=A9192BCF/serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft Manifest number: 0175 Signing time: Thu 07 Aug 2025 04:15:14 +0000 Manifest this update: Thu 07 Aug 2025 04:15:13 +0000 Manifest next update: Thu 14 Aug 2025 04:15:13 +0000 Files and hashes: 1: XaSteg0ZJFUV5aLYSgxnRwCkP80.crl (hash: QK+PwDLr077cv9yfQ7DQTkUNEXRrpRXgcBck1rvH8Og=) 2: 9062BB863C3F11EE8DA7781AC4F9AE02.roa (hash: 40lvaLr1gKHAad8xOy7yfS2hh56AhlCYkcilzIpf0Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192BCF, serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Validity Not Before: Aug 7 04:15:13 2025 GMT Not After : Aug 14 04:15:13 2025 GMT Subject: CN=68942852-c986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:d4:90:62:ce:18:ba:b0:a9:d2:b2:af:34: 61:df:0b:f6:51:11:1c:db:89:31:09:b5:b5:e7:fc: 16:8e:f3:8f:48:e6:2e:5e:a1:c7:95:7f:ac:e2:41: 55:50:4b:3e:cb:f3:27:8a:8f:c2:91:1b:e6:9f:26: 15:14:2d:31:bc:54:b7:d5:2c:25:42:ec:c1:34:95: f6:18:98:0b:5e:1e:6c:c7:2e:82:e5:72:e5:fe:e5: c4:b0:1a:3d:8e:d9:57:53:2d:9a:4b:53:e3:c5:f2: b8:16:10:57:e7:18:d3:2b:1e:5a:60:32:92:25:30: de:3e:2a:16:95:98:2a:8c:66:13:58:e1:5b:ad:aa: 7a:9d:d0:f5:f5:4e:b2:b6:12:01:ac:70:97:10:00: 3c:87:4f:5f:c2:aa:c7:29:ca:12:f9:14:87:ea:f5: 2d:a1:68:80:0f:26:bf:52:bb:e0:fc:25:45:96:4d: b5:8a:81:87:fe:fb:d1:76:e9:1b:c4:b6:24:c8:4b: 13:9d:8f:ac:b8:8e:33:a1:61:4d:e1:39:56:4b:c2: 07:32:f0:1d:4f:5c:dc:19:6e:2a:a4:8d:1b:eb:72: e1:5e:a9:9e:75:f5:7b:ad:65:11:22:42:80:35:24: c8:ec:3a:9e:a9:92:17:cd:38:cd:73:da:82:13:2f: 81:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BA:80:70:F6:B8:36:CD:39:9B:49:75:6E:D1:ED:A9:65:F7:1E:B2 X509v3 Authority Key Identifier: keyid:5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:49:78:b9:ab:5b:3e:4e:ae:cd:4f:8d:b1:11:40:c0:4b:e9: 4d:ef:96:d7:64:b0:e8:c4:1e:8d:28:a3:2b:a0:c0:c5:d4:b7: 1d:74:73:f0:4b:16:a6:78:59:b7:a5:9c:9e:ae:99:75:58:fd: 23:a9:ab:20:68:03:58:79:29:fa:e1:6b:91:54:b8:6f:95:a5: 62:fd:5d:18:f5:eb:ca:65:10:e7:f3:ee:09:3e:09:53:83:37: 42:ce:36:08:3e:72:75:32:b2:eb:a7:d4:29:5d:23:69:43:46: ef:b9:f8:8c:73:19:43:25:5f:68:82:07:04:68:8b:2d:da:b8: d8:ef:8d:af:f2:82:ca:4c:b7:bb:26:26:71:14:ec:9f:64:a8: 8f:85:ae:81:59:97:79:bc:f2:7d:35:67:74:3f:a9:0d:92:9a: f9:74:06:c3:cc:00:5c:39:aa:2f:9c:be:7f:ec:94:00:9c:6f: bc:8c:72:76:7f:e0:d1:af:a6:be:c8:ec:5b:ac:7b:7a:76:2a: 29:fb:54:a0:2b:4f:68:f2:b8:c7:81:7f:90:e1:2c:b3:ed:d6: cd:62:9c:68:28:58:5e:c5:c6:00:ca:19:af:b6:9c:7d:c1:7e: 74:a7:83:6e:48:5e:52:84:c8:9d:4a:87:df:9b:c8:6e:bb:30: 4d:e3:11:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCQ0YxMTAvBgNVBAUTKDVEQTRBRDdBMEQxOTI0NTUxNUU1QTJEODRBMEM2NzQ3 MDBBNDNGQ0QwHhcNMjUwODA3MDQxNTEzWhcNMjUwODE0MDQxNTEzWjAYMRYwFAYD VQQDEw02ODk0Mjg1Mi1jOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr/UkGLOGLqwqdKyrzRh3wv2UREc24kxCbW15/wWjvOPSOYuXqHHlX+s4kFV UEs+y/Mnio/CkRvmnyYVFC0xvFS31SwlQuzBNJX2GJgLXh5sxy6C5XLl/uXEsBo9 jtlXUy2aS1PjxfK4FhBX5xjTKx5aYDKSJTDePioWlZgqjGYTWOFbrap6ndD19U6y thIBrHCXEAA8h09fwqrHKcoS+RSH6vUtoWiADya/Urvg/CVFlk21ioGH/vvRdukb xLYkyEsTnY+suI4zoWFN4TlWS8IHMvAdT1zcGW4qpI0b63LhXqmedfV7rWURIkKA NSTI7DqeqZIXzTjNc9qCEy+BJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFu6gHD2 uDbNOZtJdW7R7all9x6yMB8GA1UdIwQYMBaAFF2krXoNGSRVFeWi2EoMZ0cApD/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkJDRi8zMDUyQ0NBNjNC NEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpGVVY1YUxZU2d4blJ3Q2tQ ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hhU3RlZzBaSkZVVjVhTFlTZ3huUndDa1A4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkJDRi8zMDUyQ0NBNjNCNEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpG VVY1YUxZU2d4blJ3Q2tQODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJSXi5q1s+Tq7NT42xEUDAS+lN75bXZLDoxB6NKKMroMDF1LcddHPw SxameFm3pZyerpl1WP0jqasgaANYeSn64WuRVLhvlaVi/V0Y9evKZRDn8+4JPglT gzdCzjYIPnJ1MrLrp9QpXSNpQ0bvufiMcxlDJV9oggcEaIst2rjY742v8oLKTLe7 JiZxFOyfZKiPha6BWZd5vPJ9NWd0P6kNkpr5dAbDzABcOaovnL5/7JQAnG+8jHJ2 f+DRr6a+yOxbrHt6diop+1SgK09o8rjHgX+Q4Syz7dbNYpxoKFhexcYAyhmvtpx9 wX50p4NuSF5ShMidSoffm8huuzBN4xGF -----END CERTIFICATE-----Generated at Fri Aug 8 20:49:28 2025 by rpki-client