$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: L7ktMWdJETkgNaalBgfo3IxTctcr2xSES3n2IcXh1+I= Subject key identifier: 55:1F:AA:FA:62:4D:79:CA:A4:38:87:7D:75:67:77:F8:0B:4F:E1:C0 Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: 6B Signing time: Sat 09 Aug 2025 07:25:06 +0000 Manifest this update: Sat 09 Aug 2025 07:25:06 +0000 Manifest next update: Sat 16 Aug 2025 07:25:06 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: lAwl+Mc4qX+xcgpvi4SG/lCnkb5awinJW4cgvNxEuVU=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: 8Wzv5veel/E+M5qspAlwBsfA0pAvjm21LyceiyRo5cA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Aug 9 07:25:06 2025 GMT Not After : Aug 16 07:25:06 2025 GMT Subject: CN=6896f7d2-ef0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:34:3d:fc:d8:a2:13:d5:10:3d:22:7d:ec:72: 7c:fd:56:47:13:1b:11:54:85:b9:c5:be:d0:1e:d5: 5c:38:06:18:0e:aa:3d:da:4f:71:22:c3:0c:1c:64: 85:72:30:16:10:ce:4d:9d:fb:c0:7d:9c:4c:7d:d7: be:2a:b2:8e:4b:ad:3a:82:c5:0e:35:de:0f:83:0c: c1:e7:6c:1c:64:4e:ec:81:c9:0d:0d:f5:95:d9:83: 61:33:51:04:d9:c4:97:5b:2f:44:26:4a:d5:b3:f9: e1:90:3a:b3:a3:b1:34:4c:b9:dc:9e:e7:98:e7:72: f2:31:ac:dc:17:93:1a:7f:68:9d:2c:09:5b:28:fc: 2d:27:6f:85:56:a5:96:43:e4:37:fb:c3:90:40:b9: 14:ed:5e:8f:bd:1c:3f:d6:44:27:f6:59:e6:ca:23: 30:53:33:5c:cb:91:f3:00:13:fb:ff:6c:e5:e5:08: 93:08:ee:53:b2:c0:a4:f2:2d:4a:de:0d:e2:87:6e: a7:93:0d:79:9b:b8:bd:b0:3b:08:50:dd:1f:cb:71: 7f:15:d8:f7:d2:ec:fe:47:94:75:93:76:1d:52:b3: 9c:51:8d:2e:cd:7d:c9:7a:30:b0:18:d1:26:4d:21: 06:84:4c:a3:7c:12:ec:88:28:0f:7e:f4:81:70:37: dc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1F:AA:FA:62:4D:79:CA:A4:38:87:7D:75:67:77:F8:0B:4F:E1:C0 X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ce:18:35:d7:26:e6:31:1b:07:ff:76:60:08:85:68:14:ad: d9:d3:34:0d:83:36:f4:45:9d:fc:21:44:7d:ac:a9:7d:f5:1f: b6:48:22:74:09:b0:4c:55:2f:6a:f5:c1:e0:37:43:d8:df:3d: b6:6f:e8:dc:83:4f:1c:02:ee:24:b3:bd:d6:e6:6b:79:71:4d: d2:d5:b5:85:30:ad:31:f1:7a:14:0e:22:36:36:b2:95:ee:01: 3a:94:0b:57:62:24:0e:ff:9a:f2:f1:9b:6a:df:da:6a:02:8f: 8a:d2:6d:9f:b7:ec:b4:b8:68:59:12:77:34:03:93:8b:b6:91: a2:a6:b3:0e:3d:4c:2a:61:53:82:a5:4d:8c:10:7f:a8:e6:1c: c1:b2:5c:b4:7d:f3:ae:95:1e:0a:a6:92:c0:51:7b:68:ec:75: 90:4c:4b:59:81:84:27:9b:8e:89:46:ed:43:a9:b5:91:0e:2d: 5c:8f:de:14:68:56:d1:ab:1a:1b:43:8c:b8:96:6c:41:32:3e: 9f:f6:97:27:32:56:d4:a6:86:5b:d8:ae:7b:75:bc:03:ef:11: b8:3e:2b:07:94:77:9f:b3:38:55:2b:b2:b8:30:4a:f0:7a:e9: d3:e0:90:8c:6e:27:fb:b6:5a:1d:04:ac:07:92:62:66:b6:ac: b1:42:29:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoQzYyNjU4MzI5ODU3OEQxRDRBRjcyNzNFQkQ3OTFDNzIz MEEzNzQ0OTAeFw0yNTA4MDkwNzI1MDZaFw0yNTA4MTYwNzI1MDZaMBgxFjAUBgNV BAMTDTY4OTZmN2QyLWVmMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7ND382KIT1RA9In3scnz9VkcTGxFUhbnFvtAe1Vw4BhgOqj3aT3EiwwwcZIVy MBYQzk2d+8B9nEx9174qso5LrTqCxQ413g+DDMHnbBxkTuyByQ0N9ZXZg2EzUQTZ xJdbL0QmStWz+eGQOrOjsTRMudye55jncvIxrNwXkxp/aJ0sCVso/C0nb4VWpZZD 5Df7w5BAuRTtXo+9HD/WRCf2WebKIzBTM1zLkfMAE/v/bOXlCJMI7lOywKTyLUre DeKHbqeTDXmbuL2wOwhQ3R/LcX8V2PfS7P5HlHWTdh1Ss5xRjS7Nfcl6MLAY0SZN IQaETKN8EuyIKA9+9IFwN9yVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVR+q+mJN ecqkOId9dWd3+AtP4cAwHwYDVR0jBBgwFoAUxiZYMphXjR1K9yc+vXkccjCjdEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzFEMkYwNzI0RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGlaWU1waFhqUjFLOXljLXZYa2NjakNqZEVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NkMyLzFEMkYwNzI0RDE3RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIx Szl5Yy12WGtjY2pDamRFay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE/OGDXXJuYxGwf/dmAIhWgUrdnTNA2DNvRFnfwhRH2sqX31H7ZIInQJ sExVL2r1weA3Q9jfPbZv6NyDTxwC7iSzvdbma3lxTdLVtYUwrTHxehQOIjY2spXu ATqUC1diJA7/mvLxm2rf2moCj4rSbZ+37LS4aFkSdzQDk4u2kaKmsw49TCphU4Kl TYwQf6jmHMGyXLR9866VHgqmksBRe2jsdZBMS1mBhCebjolG7UOptZEOLVyP3hRo VtGrGhtDjLiWbEEyPp/2lycyVtSmhlvYrnt1vAPvEbg+KweUd5+zOFUrsrgwSvB6 6dPgkIxuJ/u2Wh0ErAeSYma2rLFCKQ0= -----END CERTIFICATE-----Generated at Sun Aug 10 03:53:47 2025 by rpki-client