$ rpki-client -vvf rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft File: _XxIEch8Vm71Xtqw50P_BmufqGY.mft (raw, json) Hash identifier: BA/VY4R4TyW5Xm0sdcTxOVMMWuGQy3872ypqNQm0bOA= Subject key identifier: 5B:65:27:75:62:AD:9F:BF:75:8E:C6:49:8F:53:AE:C4:82:BB:31:9C Authority key identifier: FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 Certificate issuer: /CN=A91935EA/serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Certificate serial: 16BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft Manifest number: 16B2 Signing time: Fri 08 Aug 2025 16:50:15 +0000 Manifest this update: Fri 08 Aug 2025 16:50:14 +0000 Manifest next update: Fri 15 Aug 2025 16:50:14 +0000 Files and hashes: 1: _XxIEch8Vm71Xtqw50P_BmufqGY.crl (hash: ryJfi31P6Wa+8wQs5jBkkGoO1kyeARUmxMRZ4Xdv5y0=) 2: 01B2AC1E064111E8A62EF586C4F9AE02.roa (hash: gDuc8ZWgCrliQXLxnNcUvIObZ9Jrt4XfymfNcicc4pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5823 (0x16bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91935EA, serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Validity Not Before: Aug 8 16:50:14 2025 GMT Not After : Aug 15 16:50:14 2025 GMT Subject: CN=68962ac7-0269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c5:12:c5:54:01:46:d6:79:37:e3:01:6a:80: f7:62:c6:15:0b:ec:ae:63:fb:21:c9:75:c5:5c:20: e4:ae:c8:8e:20:c5:a9:49:a9:4b:4a:0c:80:22:64: ec:60:66:bf:ea:65:10:02:d2:49:17:14:d9:54:78: 83:fe:eb:2f:61:93:48:56:c4:6c:f1:3e:60:15:3e: 54:d9:0f:37:e2:84:57:c6:6a:c0:87:f2:9f:30:a2: 8d:54:59:fd:c2:06:c4:3c:4a:52:be:da:3e:cd:a2: 1f:12:7b:aa:f1:27:ef:a2:6c:a2:42:4f:4c:77:31: 04:6f:03:0c:6e:f0:bf:14:6b:a6:b6:3e:cf:77:35: 2e:be:31:ea:72:fd:d7:3c:e2:ab:d9:cc:92:ce:49: f5:35:c4:a2:a4:bb:4f:05:2a:87:50:80:ab:d3:51: 42:f9:dd:cc:5e:48:3e:0a:a5:2f:f2:b2:9d:6f:bc: eb:c1:a7:5e:63:11:7f:8e:a4:34:a7:c5:81:3f:61: 3f:85:5e:bd:f2:d0:00:c3:74:5d:8c:23:6b:e8:48: 9d:f1:41:cf:fe:3f:6f:23:c0:19:58:6e:93:f0:fd: cc:18:8d:5c:5e:07:35:2d:50:fa:c8:49:23:c8:ce: 78:9d:c3:be:04:91:80:f6:c9:33:87:70:c5:1d:4a: 7e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:65:27:75:62:AD:9F:BF:75:8E:C6:49:8F:53:AE:C4:82:BB:31:9C X509v3 Authority Key Identifier: keyid:FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:2d:e1:6d:12:aa:28:de:f6:74:3f:66:22:64:4c:d9:0f:da: dc:01:b5:6c:7c:27:88:3f:43:93:9e:ea:72:4a:2c:53:d7:23: 66:ce:d4:90:86:c6:07:c3:33:20:dc:c3:af:5f:1e:dc:30:a5: cf:a1:79:9d:50:c0:f1:90:6a:52:fc:40:22:b8:1d:57:9e:f4: ef:64:d8:b6:50:3d:75:10:20:e8:6f:55:e5:02:c9:2a:d0:3e: 58:34:92:4e:f9:e1:f1:0a:a8:63:11:af:d4:7f:58:00:a6:c5: 96:cb:10:77:4b:c2:a2:c6:64:9d:3b:69:08:28:c3:19:f3:c5: c5:a0:6d:b5:ca:4f:3c:94:a2:1e:32:c0:d0:10:e3:df:af:4c: ee:96:fa:29:46:df:fa:e4:18:af:9a:69:cb:64:fc:d5:d9:6e: 5c:da:00:07:0a:b7:07:3b:12:ed:e7:a2:59:cd:4d:01:89:d6: 33:14:a5:36:3c:78:53:8d:49:c9:3b:ca:ff:7b:26:87:0f:f4: 93:b5:af:4f:c5:5a:fa:08:b6:87:dc:cf:f5:92:0e:64:fc:aa: 7e:5e:0f:7b:c0:1c:13:e8:1f:a9:33:8a:da:83:7c:46:7e:74: 9b:0b:1f:cf:8f:62:d8:52:a5:b3:b3:33:56:d3:ae:22:05:f4: 08:ec:8d:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM1RUExMTAvBgNVBAUTKEZEN0M0ODExQzg3QzU2NkVGNTVFREFCMEU3NDNGRjA2 NkI5RkE4NjYwHhcNMjUwODA4MTY1MDE0WhcNMjUwODE1MTY1MDE0WjAYMRYwFAYD VQQDEw02ODk2MmFjNy0wMjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cUSxVQBRtZ5N+MBaoD3YsYVC+yuY/shyXXFXCDkrsiOIMWpSalLSgyAImTs YGa/6mUQAtJJFxTZVHiD/usvYZNIVsRs8T5gFT5U2Q834oRXxmrAh/KfMKKNVFn9 wgbEPEpSvto+zaIfEnuq8SfvomyiQk9MdzEEbwMMbvC/FGumtj7PdzUuvjHqcv3X POKr2cySzkn1NcSipLtPBSqHUICr01FC+d3MXkg+CqUv8rKdb7zrwadeYxF/jqQ0 p8WBP2E/hV698tAAw3RdjCNr6Eid8UHP/j9vI8AZWG6T8P3MGI1cXgc1LVD6yEkj yM54ncO+BJGA9skzh3DFHUp+5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtlJ3Vi rZ+/dY7GSY9TrsSCuzGcMB8GA1UdIwQYMBaAFP18SBHIfFZu9V7asOdD/wZrn6hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzVFQS8xOURENDY3MDAw QUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZtNzFYdHF3NTBQX0JtdWZx R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YeElFY2g4Vm03MVh0cXc1MFBfQm11ZnFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzVFQS8xOURENDY3MDAwQUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZt NzFYdHF3NTBQX0JtdWZxR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsLeFtEqoo3vZ0P2YiZEzZD9rcAbVsfCeIP0OTnupySixT1yNmztSQ hsYHwzMg3MOvXx7cMKXPoXmdUMDxkGpS/EAiuB1XnvTvZNi2UD11ECDob1XlAskq 0D5YNJJO+eHxCqhjEa/Uf1gApsWWyxB3S8KixmSdO2kIKMMZ88XFoG21yk88lKIe MsDQEOPfr0zulvopRt/65BivmmnLZPzV2W5c2gAHCrcHOxLt56JZzU0BidYzFKU2 PHhTjUnJO8r/eyaHD/STta9PxVr6CLaH3M/1kg5k/Kp+Xg97wBwT6B+pM4rag3xG fnSbCx/Pj2LYUqWzszNW064iBfQI7I1E -----END CERTIFICATE-----Generated at Sat Aug 9 10:43:55 2025 by rpki-client