$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: gTetGalDzodlkcX6HkG+Etzet0YUAMHQZ0vh3yo0YRk= Subject key identifier: 34:47:8B:35:53:8B:ED:9B:03:B0:65:69:72:75:97:8B:92:5E:10:2F Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0496 Signing time: Thu 07 Aug 2025 00:36:23 +0000 Manifest this update: Thu 07 Aug 2025 00:36:22 +0000 Manifest next update: Thu 14 Aug 2025 00:36:22 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: qTiwwUF8pwxtkJgW5MvTFNl0xC+HK9pUAhqllAtgT0o=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Aug 7 00:36:22 2025 GMT Not After : Aug 14 00:36:22 2025 GMT Subject: CN=6893f506-d665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9f:1a:0f:a7:6b:1e:e2:ab:2f:07:cb:5b:9b: 05:e2:c8:9f:a0:1d:34:ae:ad:96:48:a2:1d:68:d9: 5a:a2:dc:99:60:4c:bb:75:a5:26:2e:7d:6f:ec:53: 26:b1:cc:a1:79:4a:28:a5:79:31:81:3b:0d:4d:26: 45:01:60:34:ad:15:c1:7e:86:ae:0d:e8:30:41:ce: df:6b:00:8f:9b:8a:6d:26:7a:2a:27:36:6d:52:ed: 5e:b5:74:86:a4:3d:9f:0e:31:5e:4e:ec:74:ef:09: a7:db:53:81:24:aa:8c:f2:28:da:f5:3b:c4:e2:67: 15:0a:9f:4d:03:9a:d8:b3:72:3e:53:02:36:98:6c: 5a:c2:6b:a5:d9:13:3a:e2:3d:3b:bf:c3:0c:2f:4b: db:3f:69:f8:33:94:09:5f:25:fb:80:69:be:16:11: d4:9a:00:f2:bb:5e:08:69:e2:4c:b6:da:bf:16:1e: 9a:69:b8:0d:15:f4:45:e0:a3:20:3c:66:f3:e1:55: 35:f2:e8:64:e9:38:41:ea:1e:e7:13:3a:af:cf:f0: a5:16:96:f0:90:e6:02:62:90:1c:a2:a1:e7:fe:79: 69:86:56:b6:c4:bb:07:60:62:3c:a0:02:2c:4d:c3: 36:53:eb:db:87:a5:f8:1e:06:2d:8b:6a:d5:d0:86: 32:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:47:8B:35:53:8B:ED:9B:03:B0:65:69:72:75:97:8B:92:5E:10:2F X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:03:d0:eb:f8:73:0e:09:35:ab:7f:7d:cf:d1:f3:1a:53:2f: cc:3b:d3:b1:09:73:23:fa:f8:e0:75:e6:5b:84:50:9f:08:3f: 27:28:3d:ec:77:dc:dd:c9:b0:5d:aa:f1:d6:4e:42:a9:08:53: a4:25:1e:97:9d:3e:a9:ea:73:2b:a1:b1:a3:88:93:62:21:83: b3:08:d3:50:92:59:bc:2a:13:bc:6e:45:42:fa:68:fe:2c:e5: 0a:21:ce:fa:3d:d1:97:48:f7:3f:a3:ca:cc:20:55:a6:b9:0e: 55:a5:4f:0a:77:97:3e:42:69:72:90:aa:23:d6:77:9b:86:b0: 9b:ca:3d:41:81:ff:0f:f7:82:db:ef:f1:81:f4:b5:0f:c4:88: cc:9e:10:12:0a:d2:36:41:2d:20:72:96:c8:73:28:20:91:98: 4c:2d:39:46:ec:6b:15:d2:b3:ab:27:bd:d4:d0:4b:ea:b4:35: ce:d6:5d:41:12:fe:f0:b5:71:1e:5f:15:09:4c:b7:da:12:f9: cb:73:b7:1f:48:ce:ca:2a:b2:81:95:ed:92:40:7e:cb:d2:c3: fb:19:c9:fd:66:81:3a:1a:95:f0:4b:ef:b6:c9:61:29:58:33: 6c:3b:4b:ac:45:17:07:b7:4d:e5:b3:ea:1c:7e:4d:a1:c2:af: 9a:16:10:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwODA3MDAzNjIyWhcNMjUwODE0MDAzNjIyWjAYMRYwFAYD VQQDEw02ODkzZjUwNi1kNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ8aD6drHuKrLwfLW5sF4sifoB00rq2WSKIdaNlaotyZYEy7daUmLn1v7FMm scyheUoopXkxgTsNTSZFAWA0rRXBfoauDegwQc7fawCPm4ptJnoqJzZtUu1etXSG pD2fDjFeTux07wmn21OBJKqM8ija9TvE4mcVCp9NA5rYs3I+UwI2mGxawmul2RM6 4j07v8MML0vbP2n4M5QJXyX7gGm+FhHUmgDyu14IaeJMttq/Fh6aabgNFfRF4KMg PGbz4VU18uhk6ThB6h7nEzqvz/ClFpbwkOYCYpAcoqHn/nlphla2xLsHYGI8oAIs TcM2U+vbh6X4HgYti2rV0IYyTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRHizVT i+2bA7BlaXJ1l4uSXhAvMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGA9Dr+HMOCTWrf33P0fMaUy/MO9OxCXMj+vjgdeZbhFCfCD8nKD3s d9zdybBdqvHWTkKpCFOkJR6XnT6p6nMrobGjiJNiIYOzCNNQklm8KhO8bkVC+mj+ LOUKIc76PdGXSPc/o8rMIFWmuQ5VpU8Kd5c+QmlykKoj1nebhrCbyj1Bgf8P94Lb 7/GB9LUPxIjMnhASCtI2QS0gcpbIcyggkZhMLTlG7GsV0rOrJ73U0EvqtDXO1l1B Ev7wtXEeXxUJTLfaEvnLc7cfSM7KKrKBle2SQH7L0sP7Gcn9ZoE6GpXwS++2yWEp WDNsO0usRRcHt03ls+ocfk2hwq+aFhCV -----END CERTIFICATE-----Generated at Fri Aug 8 19:25:55 2025 by rpki-client