$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: gNUh+qlJNY10C2xMuiq9Ara3c2T84bfstTOuQ4PXc00= Subject key identifier: 5B:0E:15:1E:1D:0E:CE:24:93:4A:67:96:A9:67:5D:9F:0A:BE:F0:3F Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 34A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 34A7 Signing time: Wed 06 Aug 2025 14:38:39 +0000 Manifest this update: Wed 06 Aug 2025 14:38:39 +0000 Manifest next update: Wed 13 Aug 2025 14:38:39 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: GXJjbk9NITXFJhXnDRKT/3qP9gWIWloHu7MekMSUUiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13479 (0x34a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Aug 6 14:38:39 2025 GMT Not After : Aug 13 14:38:39 2025 GMT Subject: CN=689368ef-7cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:7a:ce:89:90:b7:b8:7b:e8:af:ec:f0:e2:ed: 11:ba:f6:ca:d2:b9:93:a1:a2:ed:6c:1a:25:32:eb: de:50:4e:81:4e:fd:bd:c1:67:ad:f1:c6:6f:74:8d: 87:35:b1:2d:15:95:09:16:c1:63:6b:61:04:21:e5: f0:b7:6b:c6:21:c3:b1:20:f1:91:b7:b4:40:ca:d6: a9:24:85:73:4d:47:79:ce:53:63:ce:e7:14:8d:4b: 24:a5:ee:10:7d:2a:07:d2:21:6d:48:37:2b:9a:6a: ad:e6:26:19:70:62:63:db:25:69:dd:29:b4:77:fc: b0:d0:23:99:47:60:65:7a:61:d8:f8:e1:6a:b3:37: 97:8b:d7:84:a4:51:c1:d9:43:fd:a6:e8:74:33:bb: 99:89:d6:75:07:51:ad:ec:0b:2e:62:31:c8:91:76: 92:9c:26:c3:98:de:3b:aa:70:9f:8a:75:dd:0b:d3: c3:e9:a4:f5:7a:69:eb:30:4d:c7:0e:e3:f3:c3:91: a1:22:09:4d:cb:99:36:9b:7f:b3:04:6b:08:c7:78: 96:a9:f0:db:3c:36:bc:43:03:0f:96:b1:72:da:a1: cb:3d:fe:48:5f:d9:f3:b0:fb:ac:0c:1b:f4:d7:b0: 2f:19:4c:a9:6c:de:01:c6:78:17:80:7a:5b:26:0a: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0E:15:1E:1D:0E:CE:24:93:4A:67:96:A9:67:5D:9F:0A:BE:F0:3F X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:59:53:72:ed:f6:50:5c:47:64:c5:d6:b3:a2:b9:92:27:db: 35:dc:1c:5a:8e:b7:17:f9:68:47:c4:48:e8:91:79:a6:0e:9a: 4a:5e:27:f5:86:d4:8a:6d:f6:1c:e7:a3:95:13:cd:42:cb:86: d8:61:8f:cc:11:36:0e:ab:09:73:94:6b:5e:17:46:db:f0:76: fa:95:fc:67:21:06:0b:83:ba:50:95:ba:53:59:20:ff:19:29: 9f:88:0d:d9:67:55:0b:27:f0:a8:6e:32:38:71:96:6e:c3:6f: 67:a9:18:af:7c:dd:a6:44:94:89:1c:d1:f1:0a:04:06:68:f7: 9c:fa:a4:91:92:44:45:43:27:9c:8e:e0:c4:dd:6b:cd:3d:7a: 99:25:e6:bd:8e:69:34:59:a2:28:95:24:fc:e1:0e:7d:c9:cc: e6:9d:81:18:6a:e5:3d:f9:f5:1b:90:2f:49:71:ef:b8:11:43: b9:30:43:41:23:57:59:b3:5b:16:95:47:d2:f0:45:c5:64:64: e7:7b:ed:e4:fe:49:25:e3:81:d1:91:23:ff:5b:06:d2:a2:a0: 04:ce:35:e4:40:fe:ee:48:d7:62:c6:9d:ca:df:48:a7:4d:f2: 7f:f8:4c:89:ae:0f:d5:58:aa:5a:2d:8c:bb:b1:e1:70:8b:2c: 26:f2:26:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwODA2MTQzODM5WhcNMjUwODEzMTQzODM5WjAYMRYwFAYD VQQDEw02ODkzNjhlZi03Y2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8nrOiZC3uHvor+zw4u0RuvbK0rmToaLtbBolMuveUE6BTv29wWet8cZvdI2H NbEtFZUJFsFja2EEIeXwt2vGIcOxIPGRt7RAytapJIVzTUd5zlNjzucUjUskpe4Q fSoH0iFtSDcrmmqt5iYZcGJj2yVp3Sm0d/yw0COZR2BlemHY+OFqszeXi9eEpFHB 2UP9puh0M7uZidZ1B1Gt7AsuYjHIkXaSnCbDmN47qnCfinXdC9PD6aT1emnrME3H DuPzw5GhIglNy5k2m3+zBGsIx3iWqfDbPDa8QwMPlrFy2qHLPf5IX9nzsPusDBv0 17AvGUypbN4BxngXgHpbJgrzhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsOFR4d Ds4kk0pnlqlnXZ8KvvA/MB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfWVNy7fZQXEdkxdazormSJ9s13BxajrcX+WhHxEjokXmmDppKXif1 htSKbfYc56OVE81Cy4bYYY/METYOqwlzlGteF0bb8Hb6lfxnIQYLg7pQlbpTWSD/ GSmfiA3ZZ1ULJ/CobjI4cZZuw29nqRivfN2mRJSJHNHxCgQGaPec+qSRkkRFQyec juDE3WvNPXqZJea9jmk0WaIolST84Q59yczmnYEYauU9+fUbkC9Jce+4EUO5MENB I1dZs1sWlUfS8EXFZGTne+3k/kkl44HRkSP/WwbSoqAEzjXkQP7uSNdixp3K30in TfJ/+EyJrg/VWKpaLYy7seFwiywm8iaT -----END CERTIFICATE-----Generated at Fri Aug 8 10:12:34 2025 by rpki-client