$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json) Hash identifier: +hRuWIMNVswY2Z0jLow48Xm3D+gabffU/18abUYsKLs= Subject key identifier: 28:A1:4F:1A:8A:BC:47:2A:6A:08:F7:E3:CB:C3:CB:E0:1B:C9:3F:11 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft Manifest number: 01A2 Signing time: Mon 11 Aug 2025 03:24:56 +0000 Manifest this update: Mon 11 Aug 2025 03:24:55 +0000 Manifest next update: Mon 18 Aug 2025 03:24:55 +0000 Files and hashes: 1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: 2PGi41kmorL8/mPb2Z0lM7LdeG86r3n5vNLlWALkFwo=) 2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: Aug 11 03:24:55 2025 GMT Not After : Aug 18 03:24:55 2025 GMT Subject: CN=68996288-6513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:35:c2:8a:3f:69:79:6d:3f:d0:09:ec:6b:f0: b6:f7:06:13:c9:e4:c3:dc:67:ee:6c:3b:41:ee:4a: f8:2f:3f:ed:87:c8:1a:73:56:f3:e9:b9:fd:30:8d: d1:d0:53:07:39:f6:e2:d0:4a:dd:12:ef:c3:bc:40: 71:b6:68:7f:fc:c8:ad:08:f2:21:fc:3e:f4:a9:15: 5c:5f:82:a1:c2:d1:f7:65:2f:44:a2:b6:a4:b9:d0: 0b:2b:b6:d4:a5:d9:fb:5f:04:08:34:44:14:8d:a9: fd:87:a0:ba:ff:9a:0e:15:a5:1b:43:ce:08:82:ea: 0b:65:53:c5:3e:cf:cc:e6:f2:b2:70:6a:8f:e2:65: e1:4a:3a:be:a1:fd:87:b0:cd:38:40:d2:86:9e:84: 33:21:18:77:b6:7d:c1:ea:88:e4:a3:77:f6:78:d7: 61:d2:6a:da:b1:fa:ec:33:b5:9f:4d:f6:27:c3:6b: 99:b5:83:4e:c8:5e:90:b8:a9:f9:4c:b7:15:7b:e1: a4:2d:22:76:d6:46:66:5c:84:fb:8b:05:90:73:48: e8:b0:58:cd:39:3d:70:49:57:3e:e9:6c:93:68:e4: c8:1e:37:d6:71:18:5d:1a:d1:f7:06:55:59:fe:ea: f5:b1:99:d6:b0:06:76:13:a3:bb:9c:f5:a2:45:10: 95:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A1:4F:1A:8A:BC:47:2A:6A:08:F7:E3:CB:C3:CB:E0:1B:C9:3F:11 X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:7c:6c:64:c5:12:f0:fd:36:ac:53:4b:86:0c:bc:86:61:6f: c3:bf:74:ae:5e:84:a2:22:2f:36:9e:0a:8a:da:df:29:35:8e: 02:c6:cc:8a:26:4d:a6:d0:58:d8:51:6e:b0:4f:84:33:b9:8d: 77:f2:c1:14:54:ec:08:1a:31:47:00:05:4e:66:ab:5c:3a:c2: d6:d4:0a:22:4b:0c:ec:95:e4:e7:c7:60:b6:4e:c1:3f:24:5a: 99:3a:23:2b:d4:60:2f:1c:b7:16:ab:1c:0b:73:18:23:09:48: ea:3a:54:4f:3b:0e:f3:32:6f:ba:9c:89:76:cb:a9:c9:df:f5: 69:12:6d:2f:27:1e:1f:0c:d2:59:07:3d:49:46:2b:86:0e:6b: 2f:79:f6:35:71:44:5b:4b:c0:90:fe:17:21:bb:2e:29:3b:e2: 07:9b:b6:15:f3:18:4d:42:09:55:58:1c:d9:79:5b:f3:65:70: 25:c3:c7:e8:f7:6b:82:40:78:14:c8:86:c4:68:3d:65:d0:9e: 03:37:96:06:67:28:ad:74:57:1d:48:4f:f2:34:f6:3b:97:fd: de:00:3d:e9:43:c7:5c:58:2e:db:20:be:d9:28:1e:a6:05:58: a7:48:6e:e2:3b:c2:9e:fb:dc:7c:e2:7c:f0:fb:48:52:e0:b1: fe:13:34:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUwODExMDMyNDU1WhcNMjUwODE4MDMyNDU1WjAYMRYwFAYD VQQDEw02ODk5NjI4OC02NTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTXCij9peW0/0Ansa/C29wYTyeTD3GfubDtB7kr4Lz/th8gac1bz6bn9MI3R 0FMHOfbi0ErdEu/DvEBxtmh//MitCPIh/D70qRVcX4KhwtH3ZS9EorakudALK7bU pdn7XwQINEQUjan9h6C6/5oOFaUbQ84IguoLZVPFPs/M5vKycGqP4mXhSjq+of2H sM04QNKGnoQzIRh3tn3B6ojko3f2eNdh0mrasfrsM7WfTfYnw2uZtYNOyF6QuKn5 TLcVe+GkLSJ21kZmXIT7iwWQc0josFjNOT1wSVc+6WyTaOTIHjfWcRhdGtH3BlVZ /ur1sZnWsAZ2E6O7nPWiRRCVfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCihTxqK vEcqagj348vDy+AbyT8RMB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrfGxkxRLw/TasU0uGDLyGYW/Dv3SuXoSiIi82ngqK2t8pNY4CxsyK Jk2m0FjYUW6wT4QzuY138sEUVOwIGjFHAAVOZqtcOsLW1AoiSwzsleTnx2C2TsE/ JFqZOiMr1GAvHLcWqxwLcxgjCUjqOlRPOw7zMm+6nIl2y6nJ3/VpEm0vJx4fDNJZ Bz1JRiuGDmsvefY1cURbS8CQ/hchuy4pO+IHm7YV8xhNQglVWBzZeVvzZXAlw8fo 92uCQHgUyIbEaD1l0J4DN5YGZyitdFcdSE/yNPY7l/3eAD3pQ8dcWC7bIL7ZKB6m BVinSG7iO8Ke+9x84nzw+0hS4LH+EzQp -----END CERTIFICATE-----Generated at Wed Aug 13 04:27:39 2025 by rpki-client