$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: ikY5oulW1XpR6nsNkwXE3OgbJRig73mqez1I9v7i4EE= Subject key identifier: FD:0A:6B:DE:69:17:9A:28:E1:4A:45:D4:7B:F2:28:4A:99:11:89:D6 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0769 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0746 Signing time: Fri 08 Aug 2025 22:12:15 +0000 Manifest this update: Fri 08 Aug 2025 22:12:15 +0000 Manifest next update: Fri 15 Aug 2025 22:12:15 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: Hfhz2O/64G647kcWEfFEA9or34XisBCVe0A/OtEcZJQ=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: yghGvORjCbrwPbkKWVhSZ4zOTt6ioVsM8lRS5kJkr+0=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: ibMAngc6C4+JXufdc4UjRpgLZzdehYxv7hgLysgCefA=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: e6KNfiSRL8HIlZFdQYAqnN5O/JJ1gZgCqccGEgtmPUM=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: EtYv33VoONviB5DogmNb9f2t5IayVZNNzvoHIml90Q8=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: B3TtfKIV8qBTfY8o/1C3LKcqpx/TLDJeKafLYgXCPS4=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: M0FoVt5RwJimEJ3yM4LIg2YOQNmwyICgIMilWYDArBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1897 (0x769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Aug 8 22:12:15 2025 GMT Not After : Aug 15 22:12:15 2025 GMT Subject: CN=6896763f-cf14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:3a:68:e9:41:49:81:d4:fa:d6:ac:e0:a1: 16:a3:37:00:75:73:7e:ee:55:43:a7:f8:78:0d:a6: d0:27:13:f3:14:03:18:90:03:97:06:c7:46:0b:db: df:78:f7:ad:63:5b:df:71:ea:c6:ed:65:a3:08:6f: 03:19:78:8d:1f:36:25:f2:26:36:c1:99:37:a4:82: 83:b8:ce:4c:c2:ec:10:04:e1:2c:21:44:05:63:2f: 58:85:31:78:63:ea:39:eb:a6:fb:50:60:bb:32:fa: 7c:25:72:34:2a:68:49:dd:93:59:53:49:88:4c:cb: 35:02:50:ae:ff:e6:91:e1:9d:ba:6d:61:83:e3:30: e8:90:ef:3a:d4:69:82:95:8e:1e:88:d5:8b:98:19: 31:0d:50:51:68:1a:40:61:db:e2:13:42:e5:93:5f: 1c:89:46:5e:09:36:d2:97:51:22:29:fe:0f:02:8f: 84:7c:0f:e6:5a:f7:54:7c:ec:d7:48:ee:58:d9:c4: cb:e1:76:da:61:4f:89:5a:16:8b:d8:c3:93:01:d9: 18:4e:18:56:ad:7d:23:62:29:36:ee:fa:d3:79:f9: 77:0c:a8:43:77:b6:8a:b4:d7:97:dd:b2:70:1d:1c: 6d:a1:a8:e1:57:85:23:9d:85:c1:7c:3d:3e:a9:04: 07:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0A:6B:DE:69:17:9A:28:E1:4A:45:D4:7B:F2:28:4A:99:11:89:D6 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8f:77:e1:d2:a9:cc:c5:ff:e6:1e:7a:73:f5:99:f8:cb:e3: 4e:58:a1:95:80:f5:11:4a:ea:e5:3c:4c:0a:82:5c:68:53:43: a1:d1:57:b5:89:bc:3c:93:f0:f6:5c:0f:20:47:0d:8c:ee:b3: bb:59:bf:44:bd:10:5b:cd:9e:26:18:ab:1e:7e:01:b3:5b:0a: 2a:fc:7a:f3:6b:69:fd:29:82:53:b8:4a:be:1b:98:6b:f5:6b: cc:e0:6e:c6:d1:e1:cb:f3:46:81:c4:52:dc:10:c2:ab:fb:27: d0:68:06:61:55:4b:fb:75:af:68:4d:1a:c5:96:ac:6d:a1:aa: aa:25:d3:9c:b1:f2:44:bc:0b:e1:97:42:6c:8e:ad:86:a5:c6: 92:fd:52:b3:d4:ed:12:b5:dd:3a:91:8b:48:72:5d:7f:11:ae: ff:e1:42:88:a9:ac:a8:18:66:0b:63:6a:9d:dd:13:10:30:c8: ac:59:52:5f:11:83:44:3c:24:6b:53:9d:ae:c1:1d:52:e8:3c: 4b:37:2f:5a:55:30:ef:b9:50:bc:64:37:8f:f0:38:77:c9:ed: 9f:45:79:28:d6:40:ea:22:d6:d1:5f:11:9d:05:63:3b:4a:0a: e5:49:86:5b:59:07:18:6a:0d:13:95:f2:d9:7d:59:b9:40:b3: 0d:88:7c:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwODA4MjIxMjE1WhcNMjUwODE1MjIxMjE1WjAYMRYwFAYD VQQDEw02ODk2NzYzZi1jZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG46aOlBSYHU+tas4KEWozcAdXN+7lVDp/h4DabQJxPzFAMYkAOXBsdGC9vf ePetY1vfcerG7WWjCG8DGXiNHzYl8iY2wZk3pIKDuM5MwuwQBOEsIUQFYy9YhTF4 Y+o566b7UGC7Mvp8JXI0KmhJ3ZNZU0mITMs1AlCu/+aR4Z26bWGD4zDokO861GmC lY4eiNWLmBkxDVBRaBpAYdviE0Llk18ciUZeCTbSl1EiKf4PAo+EfA/mWvdUfOzX SO5Y2cTL4XbaYU+JWhaL2MOTAdkYThhWrX0jYik27vrTefl3DKhDd7aKtNeX3bJw HRxtoajhV4UjnYXBfD0+qQQHSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0Ka95p F5oo4UpF1HvyKEqZEYnWMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXj3fh0qnMxf/mHnpz9Zn4y+NOWKGVgPURSurlPEwKglxoU0Oh0Ve1 ibw8k/D2XA8gRw2M7rO7Wb9EvRBbzZ4mGKsefgGzWwoq/Hrza2n9KYJTuEq+G5hr 9WvM4G7G0eHL80aBxFLcEMKr+yfQaAZhVUv7da9oTRrFlqxtoaqqJdOcsfJEvAvh l0Jsjq2GpcaS/VKz1O0Std06kYtIcl1/Ea7/4UKIqayoGGYLY2qd3RMQMMisWVJf EYNEPCRrU52uwR1S6DxLNy9aVTDvuVC8ZDeP8Dh3ye2fRXko1kDqItbRXxGdBWM7 SgrlSYZbWQcYag0TlfLZfVm5QLMNiHyp -----END CERTIFICATE-----Generated at Sun Aug 10 18:56:38 2025 by rpki-client