$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: dV10OohcxZeDZDhnmJh7QgUbu2kxLZm6s/ClxJ7npIo= Subject key identifier: 29:A3:FE:64:94:34:38:D5:1B:00:D5:57:18:D0:2B:6E:CD:DA:75:26 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 0311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 030D Signing time: Sat 09 Aug 2025 01:44:36 +0000 Manifest this update: Sat 09 Aug 2025 01:44:36 +0000 Manifest next update: Sat 16 Aug 2025 01:44:36 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: AGP8lfjJc5VOopHNDYM1LcjNvQBWFJu5NwfxhMS5NuA=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Aug 9 01:44:36 2025 GMT Not After : Aug 16 01:44:36 2025 GMT Subject: CN=6896a804-ef7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4c:7d:21:23:16:ab:18:6d:8e:bc:19:54:3f: 5c:a3:25:d4:5b:a3:00:b3:18:c1:3b:6d:d4:32:92: d4:4c:4a:3e:d3:76:71:1f:ad:1d:36:b7:90:14:a7: f0:fc:7d:94:dd:4d:6c:21:1a:c4:67:f4:2c:f3:68: b7:08:f6:ef:f1:0c:d0:ce:14:95:8b:48:bc:e7:c1: 83:61:b6:bd:9f:78:5a:c6:aa:24:16:c7:4d:00:d3: 56:e3:62:06:0e:6d:6a:47:99:d1:80:ee:49:0f:e0: 27:66:21:95:25:42:01:95:a1:c1:01:c7:05:57:d5: 11:bc:89:75:3f:9f:09:f4:46:6d:c2:76:ba:24:4e: a0:69:2c:77:e4:8f:23:38:26:36:c2:2b:91:a1:db: 9a:ed:8f:32:d4:ce:42:20:f7:c8:f2:7d:a0:2c:1d: bd:ec:54:16:90:38:37:04:5a:d2:1a:67:1d:91:ea: 1b:39:c2:30:b7:b1:54:91:c8:d1:37:6d:43:d1:27: f6:83:60:53:7c:86:b5:03:28:dc:b5:83:9d:3e:08: 98:49:82:3a:f0:2f:1d:8d:d1:74:6c:a5:6a:41:73: 5f:5d:29:e5:37:7d:44:73:6e:27:92:fd:ab:04:19: 8d:19:42:4b:3d:08:ea:fc:c5:f5:6d:1e:53:ac:4a: ec:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A3:FE:64:94:34:38:D5:1B:00:D5:57:18:D0:2B:6E:CD:DA:75:26 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:53:d2:7f:ad:bb:33:4f:7e:53:64:f8:b7:44:28:6f:f6:e4: e3:9f:e5:93:c0:cc:d9:d7:51:df:74:55:a6:5c:2c:ca:0b:f6: 44:fc:d2:ac:d1:ba:94:16:ad:c8:c6:ba:35:5b:b0:e6:e6:08: fb:a3:4f:ce:e5:a7:d2:da:5c:30:34:94:79:ee:fe:23:d4:09: 4e:6d:f7:28:8e:97:b3:8f:be:50:c2:d7:0b:90:1b:c7:14:2f: c2:ce:ee:99:7a:c0:a9:88:c8:04:97:08:eb:d5:2c:30:f4:8b: eb:19:56:27:76:fa:e9:e4:1d:bf:38:ee:1a:b8:b4:2a:0b:98: e4:52:db:55:e6:27:2e:3f:29:9e:05:b0:66:ec:8d:1a:6e:f1: 0d:5f:e4:d4:f8:87:83:36:7d:9e:98:67:8a:2e:7a:e6:ff:6c: 60:06:da:c1:53:8b:67:ee:37:70:8e:a5:12:2a:57:95:4e:6a: b5:e5:80:c6:62:ed:51:13:99:2e:d3:54:46:a2:49:05:64:f9: 04:d3:e1:9b:d6:b0:77:a2:e4:4a:d4:da:f1:69:36:7a:4a:a6: ca:ae:71:0b:32:57:31:7a:3e:1c:92:c0:a8:c1:80:0f:6b:df: 5e:8d:34:88:35:d2:36:31:15:6c:95:d0:ce:fd:fd:d4:6b:f5: 3d:f1:cb:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwODA5MDE0NDM2WhcNMjUwODE2MDE0NDM2WjAYMRYwFAYD VQQDEw02ODk2YTgwNC1lZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykx9ISMWqxhtjrwZVD9coyXUW6MAsxjBO23UMpLUTEo+03ZxH60dNreQFKfw /H2U3U1sIRrEZ/Qs82i3CPbv8QzQzhSVi0i858GDYba9n3haxqokFsdNANNW42IG Dm1qR5nRgO5JD+AnZiGVJUIBlaHBAccFV9URvIl1P58J9EZtwna6JE6gaSx35I8j OCY2wiuRodua7Y8y1M5CIPfI8n2gLB297FQWkDg3BFrSGmcdkeobOcIwt7FUkcjR N21D0Sf2g2BTfIa1AyjctYOdPgiYSYI68C8djdF0bKVqQXNfXSnlN31Ec24nkv2r BBmNGUJLPQjq/MX1bR5TrErsGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmj/mSU NDjVGwDVVxjQK27N2nUmMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdU9J/rbszT35TZPi3RChv9uTjn+WTwMzZ11HfdFWmXCzKC/ZE/NKs 0bqUFq3Ixro1W7Dm5gj7o0/O5afS2lwwNJR57v4j1AlObfcojpezj75QwtcLkBvH FC/Czu6ZesCpiMgElwjr1Sww9IvrGVYndvrp5B2/OO4auLQqC5jkUttV5icuPyme BbBm7I0abvENX+TU+IeDNn2emGeKLnrm/2xgBtrBU4tn7jdwjqUSKleVTmq15YDG Yu1RE5ku01RGokkFZPkE0+Gb1rB3ouRK1NrxaTZ6SqbKrnELMlcxej4cksCowYAP a99ejTSINdI2MRVsldDO/f3Ua/U98ctR -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:35 2025 by rpki-client