$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: LxWYNBZ8l/dfJ11WpRK6UnVBkYxFZapTRcoOzKl2Yn8= Subject key identifier: 10:DD:98:78:9B:80:B0:46:DB:53:54:05:C1:D7:D2:56:91:CD:AC:DF Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E34 Signing time: Sun 10 Aug 2025 16:03:41 +0000 Manifest this update: Sun 10 Aug 2025 16:03:41 +0000 Manifest next update: Sun 17 Aug 2025 16:03:41 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: Vd+hLLfpcGzhThprABZ1k43vmAQic1u8PkKFe2ml8Hg=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7762 (0x1e52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Aug 10 16:03:41 2025 GMT Not After : Aug 17 16:03:41 2025 GMT Subject: CN=6898c2dd-2ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:89:77:a3:59:48:0b:a0:e2:ec:49:e6:94:78: 6a:18:7d:75:8d:01:92:21:b6:c9:f1:dc:6e:d1:d5: 76:6e:21:c4:95:f2:45:9e:f3:e1:15:5e:29:29:61: d2:ac:57:89:08:54:d7:e5:66:cd:70:08:21:a1:8f: 87:8d:b7:af:dd:f6:ed:86:ec:16:97:89:a5:e8:d1: ab:12:12:1b:0d:ef:ce:3a:96:79:fd:cd:28:cb:11: 43:90:8f:d1:04:81:47:80:e7:36:23:d7:4d:45:14: 6e:40:28:ae:23:47:16:a0:a2:2a:b5:47:c2:dd:dd: 79:56:0d:cd:23:12:64:80:e4:0c:76:cc:73:21:3f: e2:b4:97:77:05:83:7d:6e:ff:f8:02:6d:bb:22:58: b9:80:29:0f:a1:2c:c1:6f:82:1f:f4:8f:76:13:3e: 5a:48:f6:86:f0:58:a3:00:f6:b3:8a:fd:96:98:10: c9:5f:d9:83:dd:9e:8a:68:28:f4:8e:f9:bc:71:61: e5:0c:77:1f:95:00:8d:58:da:93:4d:c9:58:7a:ec: 4f:29:b2:1a:27:03:dc:ab:b6:30:f4:4c:d2:63:b2: d4:55:d7:a5:4d:0a:db:d1:1b:32:1f:2d:ae:55:66: d0:6a:3e:e0:31:b3:99:a4:4c:6d:58:89:b9:1a:1f: da:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DD:98:78:9B:80:B0:46:DB:53:54:05:C1:D7:D2:56:91:CD:AC:DF X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:09:bf:55:21:91:f4:24:b2:ba:02:df:87:41:f9:1c:d1:f8: 56:32:15:51:69:67:3e:7b:b1:48:c0:32:2c:2f:e0:b4:00:73: 11:d5:23:3e:a9:58:34:a3:b9:0b:c7:ce:13:6a:20:ec:ac:fd: 4e:f6:1c:91:24:f4:fe:5f:ea:aa:10:41:c6:c8:e1:15:39:dc: e9:36:e8:b3:4f:f7:ba:0e:4a:66:71:2d:b7:cb:03:1c:ec:79: 45:67:90:97:e0:a9:d2:6d:92:94:08:86:e1:09:30:78:46:72: a2:e2:b6:ec:27:f2:04:e5:8d:7e:45:13:7d:a6:a6:5f:4a:ed: e2:2b:57:a9:8e:7d:55:45:43:9f:60:34:62:82:b9:8b:e1:cc: 9b:09:b2:5e:77:9d:58:1b:1d:ce:9a:aa:75:5e:a7:f3:9e:0c: 8c:8e:c6:32:bf:55:60:cb:7a:38:40:54:08:b0:dd:1c:1c:06: e0:19:f9:73:53:bf:1a:fe:f6:60:8f:93:2c:b2:57:73:f2:d1: d4:94:3a:16:85:bb:50:4b:8b:78:90:b9:e5:26:e0:04:be:d8: e5:31:5a:92:02:39:b8:b7:41:f5:92:07:79:b9:a1:23:b3:89: 3b:62:32:a7:8c:da:3c:0a:02:17:ba:4b:3f:6d:8f:3a:6e:68: d0:d5:ef:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwODEwMTYwMzQxWhcNMjUwODE3MTYwMzQxWjAYMRYwFAYD VQQDEw02ODk4YzJkZC0yY2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYl3o1lIC6Di7EnmlHhqGH11jQGSIbbJ8dxu0dV2biHElfJFnvPhFV4pKWHS rFeJCFTX5WbNcAghoY+Hjbev3fbthuwWl4ml6NGrEhIbDe/OOpZ5/c0oyxFDkI/R BIFHgOc2I9dNRRRuQCiuI0cWoKIqtUfC3d15Vg3NIxJkgOQMdsxzIT/itJd3BYN9 bv/4Am27Ili5gCkPoSzBb4If9I92Ez5aSPaG8FijAPaziv2WmBDJX9mD3Z6KaCj0 jvm8cWHlDHcflQCNWNqTTclYeuxPKbIaJwPcq7Yw9EzSY7LUVdelTQrb0RsyHy2u VWbQaj7gMbOZpExtWIm5Gh/arwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDdmHib gLBG21NUBcHX0laRzazfMB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlCb9VIZH0JLK6At+HQfkc0fhWMhVRaWc+e7FIwDIsL+C0AHMR1SM+ qVg0o7kLx84TaiDsrP1O9hyRJPT+X+qqEEHGyOEVOdzpNuizT/e6DkpmcS23ywMc 7HlFZ5CX4KnSbZKUCIbhCTB4RnKi4rbsJ/IE5Y1+RRN9pqZfSu3iK1epjn1VRUOf YDRigrmL4cybCbJed51YGx3Omqp1XqfzngyMjsYyv1Vgy3o4QFQIsN0cHAbgGflz U78a/vZgj5Mssldz8tHUlDoWhbtQS4t4kLnlJuAEvtjlMVqSAjm4t0H1kgd5uaEj s4k7YjKnjNo8CgIXuks/bY86bmjQ1e+R -----END CERTIFICATE-----Generated at Mon Aug 11 04:13:49 2025 by rpki-client