$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: 8JUWA3+nSYswlsLl74l4AdAMtgCw2v1TLrR3NBZyIxo= Subject key identifier: DF:53:E7:C9:3E:37:4F:8B:D6:19:C7:CB:7A:55:F0:D1:79:A0:B5:E1 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0B06 Signing time: Fri 08 Aug 2025 19:37:31 +0000 Manifest this update: Fri 08 Aug 2025 19:37:30 +0000 Manifest next update: Fri 15 Aug 2025 19:37:30 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: VI3XOcYQP8V2tgbHqVfBt1kuQF6kbTUnLmX+BIO3qIc=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2829 (0xb0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Aug 8 19:37:30 2025 GMT Not After : Aug 15 19:37:30 2025 GMT Subject: CN=689651fb-f48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8b:ca:9b:d0:37:d4:45:b2:99:fb:83:03:41: d7:52:9e:b4:e0:66:80:d7:f7:56:a2:85:8a:dc:45: 1e:29:c5:33:d2:f2:82:c4:9c:9b:1a:61:83:23:c1: cb:e9:4d:4a:58:9f:59:0d:6f:f3:ae:76:64:b3:48: f0:7b:d3:36:f1:1e:79:17:7d:65:de:0c:9f:04:e1: 07:7a:94:05:26:f3:70:1f:76:cd:47:a6:11:01:05: 01:9d:7d:38:7b:8d:a1:c4:82:25:56:ad:c0:90:ce: 69:c7:75:cc:86:dc:78:c8:06:76:1f:56:cc:fe:bb: c9:51:b7:44:96:5e:42:6b:44:92:91:3d:47:af:71: 11:90:e6:02:96:4b:3c:22:d1:90:fc:45:e7:42:13: 3d:df:61:49:c3:4a:b5:78:e4:37:43:69:49:37:95: 24:fd:5d:cf:aa:89:af:b3:72:e4:a3:40:e0:4c:cd: 25:d9:ab:32:2d:58:ed:75:9b:10:91:6d:2f:de:73: e8:cf:1e:75:ef:f4:11:16:18:2f:af:df:9f:21:0c: ad:96:01:7a:15:0d:d9:5f:cf:60:9d:16:a1:9a:71: 9d:34:f2:67:48:4b:cc:2b:54:e1:6b:06:ef:bb:1c: 21:31:3f:3f:a7:3a:7c:66:41:18:d2:6e:65:60:42: a2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:53:E7:C9:3E:37:4F:8B:D6:19:C7:CB:7A:55:F0:D1:79:A0:B5:E1 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:a3:10:1f:e9:7e:91:cf:4a:8d:88:d0:9d:32:50:08:2a:9c: dc:03:50:37:7a:a2:69:3f:0c:c9:c6:26:c7:19:1f:72:3d:89: aa:e5:96:74:28:52:d1:1b:bb:aa:fd:56:4a:f4:b1:7f:17:c1: 46:ea:53:fb:3e:b9:6d:70:9e:af:d4:81:3e:bd:da:a1:72:7d: b4:5e:1f:9d:48:49:03:20:94:8d:8f:22:3b:5c:b2:c2:91:75: f5:93:d0:68:b3:b3:a6:ec:42:a6:b9:d3:11:43:67:3f:3e:39: 0b:a5:e2:17:35:6b:58:d4:24:29:76:03:02:79:89:36:9f:dd: e3:74:c9:5c:82:59:4b:2c:5b:36:04:41:1b:ec:1f:5b:14:9f: bb:17:e5:a9:e3:d0:19:eb:31:72:ee:a1:d1:f1:3b:98:01:21: e8:ad:51:f2:34:ab:fd:69:bf:b7:c2:51:39:62:0e:94:dc:65: 2f:08:fb:82:ce:2e:97:6c:cc:4f:dd:7a:c2:2e:c0:d2:4c:28: 26:f4:28:e2:44:8d:1e:d4:e4:61:47:3a:00:95:09:8c:2b:36: d5:fb:3d:41:17:02:7a:d0:d7:f4:66:4b:41:27:b6:0f:99:46: 44:22:f6:79:57:0c:34:3b:a4:fc:c0:14:a9:57:fa:94:30:0c: 5f:43:58:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwODA4MTkzNzMwWhcNMjUwODE1MTkzNzMwWjAYMRYwFAYD VQQDEw02ODk2NTFmYi1mNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxovKm9A31EWymfuDA0HXUp604GaA1/dWooWK3EUeKcUz0vKCxJybGmGDI8HL 6U1KWJ9ZDW/zrnZks0jwe9M28R55F31l3gyfBOEHepQFJvNwH3bNR6YRAQUBnX04 e42hxIIlVq3AkM5px3XMhtx4yAZ2H1bM/rvJUbdEll5Ca0SSkT1Hr3ERkOYClks8 ItGQ/EXnQhM932FJw0q1eOQ3Q2lJN5Uk/V3Pqomvs3Lko0DgTM0l2asyLVjtdZsQ kW0v3nPozx517/QRFhgvr9+fIQytlgF6FQ3ZX89gnRahmnGdNPJnSEvMK1Thawbv uxwhMT8/pzp8ZkEY0m5lYEKiPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9T58k+ N0+L1hnHy3pV8NF5oLXhMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5oxAf6X6Rz0qNiNCdMlAIKpzcA1A3eqJpPwzJxibHGR9yPYmq5ZZ0 KFLRG7uq/VZK9LF/F8FG6lP7PrltcJ6v1IE+vdqhcn20Xh+dSEkDIJSNjyI7XLLC kXX1k9Bos7Om7EKmudMRQ2c/PjkLpeIXNWtY1CQpdgMCeYk2n93jdMlcgllLLFs2 BEEb7B9bFJ+7F+Wp49AZ6zFy7qHR8TuYASHorVHyNKv9ab+3wlE5Yg6U3GUvCPuC zi6XbMxP3XrCLsDSTCgm9CjiRI0e1ORhRzoAlQmMKzbV+z1BFwJ60Nf0ZktBJ7YP mUZEIvZ5Vww0O6T8wBSpV/qUMAxfQ1je -----END CERTIFICATE-----Generated at Sat Aug 9 10:39:28 2025 by rpki-client