$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: 2vH4cMLgBcH/9hatFVTXEufiIHzc5cGaECwi/MCdwks= Subject key identifier: 69:B9:68:22:29:9A:43:EA:ED:56:F9:8C:36:9C:F5:9B:32:20:68:63 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 015C Signing time: Mon 11 Aug 2025 04:09:28 +0000 Manifest this update: Mon 11 Aug 2025 04:09:27 +0000 Manifest next update: Mon 18 Aug 2025 04:09:27 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: t3HYOFR9Fo1zPhD6TrSyxUvtymkeG+I92u/II7XChss=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:09:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Aug 11 04:09:27 2025 GMT Not After : Aug 18 04:09:27 2025 GMT Subject: CN=68996cf8-e887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:62:45:e2:b3:9f:98:13:c1:2c:86:0b:0a: 94:85:52:e6:39:98:b8:d7:78:0b:2a:51:9e:fd:ad: 2a:f3:7b:7f:93:42:2c:9b:ce:89:6a:b6:55:bf:ee: 50:6e:42:4e:22:20:f9:cf:86:36:27:48:99:20:fd: 15:7e:e8:9f:3a:db:cf:7a:43:bd:93:53:a2:f5:87: 93:61:12:0a:f8:55:81:5e:be:0a:e2:48:c2:5c:a6: 44:8b:6a:e9:f2:39:9c:11:37:d0:3d:ed:d0:4b:7b: 0f:c9:0b:04:e3:24:b0:2e:d6:7a:60:90:bc:d4:37: 44:36:66:45:43:cd:f6:d8:9d:43:08:b9:7e:f4:77: 64:28:f5:b2:26:b6:c8:1b:a1:0b:f3:33:ca:be:c0: 5f:c8:31:2a:a2:0d:35:22:c4:0c:68:bf:d2:f4:5a: d6:7e:b9:e6:05:33:e8:24:2a:87:d5:cc:33:1b:27: 28:82:7d:43:18:97:45:36:a4:8b:bf:5f:52:7c:a9: 51:5e:17:0e:11:c1:48:ed:26:18:fb:40:00:ed:ec: e8:8f:89:4f:e7:21:97:b4:cf:19:aa:14:f6:87:5e: 9f:25:bb:bb:8a:43:80:4c:55:ce:05:32:3f:a8:1b: da:17:54:6e:50:61:be:a8:10:73:74:ef:63:55:1f: ed:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B9:68:22:29:9A:43:EA:ED:56:F9:8C:36:9C:F5:9B:32:20:68:63 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b2:08:fd:fd:f5:40:05:85:10:2c:11:97:6c:8e:6a:7b:7e: ff:cf:67:50:b0:13:13:c1:b0:66:93:7c:71:98:0d:12:3c:76: e6:35:1b:e3:c0:43:8f:9b:19:62:01:57:0b:38:69:a5:14:c9: df:ba:14:a2:fd:be:d4:b2:1c:cb:7b:ea:90:36:ce:27:14:e7: 74:92:b1:41:7a:a0:d1:1f:6d:cf:51:6b:90:ca:e6:40:41:d4: 67:fa:6f:2a:f7:31:af:0b:ca:c6:4e:02:07:d2:9a:26:5c:81: 6d:76:d9:03:01:26:88:be:37:8c:04:8e:03:d4:f3:f1:a6:62: 56:0d:92:4f:bc:30:90:48:46:93:56:ea:e8:0e:c9:e5:ce:c8: 17:99:a7:7e:de:e4:ac:26:3e:19:92:ec:11:80:8a:18:cd:09: 75:ac:8d:99:f5:a4:93:09:0d:73:c7:2b:5f:2e:64:06:87:26: d4:f8:ef:4a:e6:ba:e8:25:05:0f:b0:88:27:6d:05:32:ce:a7: 9c:3d:8f:82:3e:db:7b:c8:09:3f:db:a6:3a:97:5a:10:b1:ec: 1c:aa:bc:86:14:23:73:fe:d3:b5:a9:62:bb:32:98:35:4a:08: 97:c7:d0:b3:c8:df:4d:80:65:9b:3a:70:81:7d:30:73:83:fd: c3:22:de:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwODExMDQwOTI3WhcNMjUwODE4MDQwOTI3WjAYMRYwFAYD VQQDEw02ODk5NmNmOC1lODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyhiReKzn5gTwSyGCwqUhVLmOZi413gLKlGe/a0q83t/k0Ism86JarZVv+5Q bkJOIiD5z4Y2J0iZIP0VfuifOtvPekO9k1Oi9YeTYRIK+FWBXr4K4kjCXKZEi2rp 8jmcETfQPe3QS3sPyQsE4ySwLtZ6YJC81DdENmZFQ8322J1DCLl+9HdkKPWyJrbI G6EL8zPKvsBfyDEqog01IsQMaL/S9FrWfrnmBTPoJCqH1cwzGycogn1DGJdFNqSL v19SfKlRXhcOEcFI7SYY+0AA7ezoj4lP5yGXtM8ZqhT2h16fJbu7ikOATFXOBTI/ qBvaF1RuUGG+qBBzdO9jVR/tcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGm5aCIp mkPq7Vb5jDac9ZsyIGhjMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFsgj9/fVABYUQLBGXbI5qe37/z2dQsBMTwbBmk3xxmA0SPHbmNRvj wEOPmxliAVcLOGmlFMnfuhSi/b7UshzLe+qQNs4nFOd0krFBeqDRH23PUWuQyuZA QdRn+m8q9zGvC8rGTgIH0pomXIFtdtkDASaIvjeMBI4D1PPxpmJWDZJPvDCQSEaT VuroDsnlzsgXmad+3uSsJj4ZkuwRgIoYzQl1rI2Z9aSTCQ1zxytfLmQGhybU+O9K 5rroJQUPsIgnbQUyzqecPY+CPtt7yAk/26Y6l1oQsewcqryGFCNz/tO1qWK7Mpg1 SgiXx9CzyN9NgGWbOnCBfTBzg/3DIt6U -----END CERTIFICATE-----Generated at Wed Aug 13 00:33:04 2025 by rpki-client