$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: b4kH1xZSWYv9OakGOVB8BLgWblSrBcD0jaqva+GqnDo= Subject key identifier: 1F:61:1B:48:72:96:E2:71:BC:F9:7C:54:42:30:5F:E4:78:70:C9:9A Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 07D2 Signing time: Sun 10 Aug 2025 21:21:57 +0000 Manifest this update: Sun 10 Aug 2025 21:21:57 +0000 Manifest next update: Sun 17 Aug 2025 21:21:57 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: Y1lLsFdV10hvnEf04lLh6DBSbru0WDbH5gQivzhOl0o=) 2: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: Z0HHcyxz7rmGLBYwcIWDSL9D03AdZbtYiS469aOTikg=) 3: B512A570109211ECA693D74EC4F9AE02.roa (hash: AOyufc93Chw9bEWHvFa0LDI+LOdW3FqSZFo43ILQvd0=) 4: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: ZpHbYhB9ExSCJ+11c8ap/OdAIsKxszdOCjimKJQDTek=) 5: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: ftDRlCPQKF+Ib5B7VJZrq540hqlVUdTm8Q2C4Ih+cM8=) 6: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: HxA8u7nmZWUr6BPYIZAwMw8J3pQQtwxfZZvWeTi7tWI=) 7: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: YABaqUWE/JPdcjinbFv0PWoHHYymCq6aO+ylU5Xzjo0=) 8: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: XhE6x9E/aZ957HcPZHgLlj7Fv56GEXE7hy1IWMNgX6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Aug 10 21:21:57 2025 GMT Not After : Aug 17 21:21:57 2025 GMT Subject: CN=68990d75-f56a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:e4:e5:0c:6f:39:d0:73:37:54:8d:4b:b3: 58:21:5d:dd:91:21:13:2f:9d:3c:41:04:5b:06:c5: 8f:c8:bd:50:43:e7:da:4c:82:df:5f:3e:11:57:16: a0:be:01:60:af:f4:17:82:20:49:3a:0f:ff:97:b0: 82:6b:60:80:6a:d2:64:0f:ec:64:10:8c:ea:a1:3b: 9a:7e:23:a1:ec:52:a8:4a:84:3e:55:1e:9f:1d:3f: b8:4d:49:ea:7f:0b:4b:6a:dc:0d:88:47:53:56:f8: 45:20:31:a3:57:e7:42:0a:22:29:84:76:38:33:4c: 03:08:f2:5c:5c:dc:1f:a7:da:b8:69:09:c4:d5:0e: ce:34:f1:35:e0:97:00:42:ff:a7:a5:f4:a5:1b:94: 50:db:6a:44:4c:ba:51:50:31:b3:4f:6d:b5:ad:f8: 91:0e:4c:6a:6a:25:48:07:02:40:93:c7:f9:ec:66: 3b:89:6c:c4:16:95:22:3c:04:70:bb:ad:21:0f:09: 0a:f9:a1:a3:1c:b0:a4:5c:58:62:1c:61:25:51:e0: 2f:23:59:d6:47:8c:ee:04:a8:c7:af:3d:dd:4f:91: 07:60:98:9e:57:c8:76:66:66:69:69:d1:38:2f:d1: 77:92:28:ac:85:c7:22:20:49:84:82:28:8e:7c:74: 22:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:61:1B:48:72:96:E2:71:BC:F9:7C:54:42:30:5F:E4:78:70:C9:9A X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:38:6f:80:32:4e:0b:b5:88:a4:9d:9b:8f:b3:87:50:9d:06: 7c:99:cd:b9:51:f6:da:28:0c:3c:09:a9:06:df:a5:c6:4f:31: c6:6c:14:14:db:98:77:15:1d:32:d3:90:04:dd:5f:93:86:a5: c9:0f:7d:5c:ff:26:01:be:0d:e4:ea:6d:bf:b0:c0:b2:52:e2: a3:78:ad:40:e3:e6:b2:be:0c:ec:85:a1:38:7d:d7:fd:38:00: 8f:d4:44:d6:73:66:02:ed:6a:db:70:aa:9e:5d:f7:f5:7b:80: a3:25:f2:fc:26:e0:28:35:68:02:a0:ec:a3:14:6b:92:26:03: 51:7f:6c:77:fb:af:1b:20:ef:61:0a:e3:3b:89:81:87:62:5d: d9:95:44:f0:40:b0:1a:cd:86:c0:18:64:d9:e6:5a:91:dd:af: 38:82:69:dc:cd:01:43:0d:b8:85:a2:11:ed:c3:12:a0:05:2d: c0:af:9d:e5:ae:5a:cd:d0:1e:03:35:c2:13:36:4e:94:3f:c9: a4:71:f4:3d:37:b6:65:49:33:32:b8:ec:e8:e3:1f:00:b8:63: 05:44:db:09:8d:12:11:7c:76:47:a2:84:3a:94:4d:40:9a:0f: c8:7e:e8:ae:40:98:45:ec:be:2f:22:2c:8b:45:f9:0b:26:e3: fd:71:2d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjUwODEwMjEyMTU3WhcNMjUwODE3MjEyMTU3WjAYMRYwFAYD VQQDEw02ODk5MGQ3NS1mNTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUzk5QxvOdBzN1SNS7NYIV3dkSETL508QQRbBsWPyL1QQ+faTILfXz4RVxag vgFgr/QXgiBJOg//l7CCa2CAatJkD+xkEIzqoTuafiOh7FKoSoQ+VR6fHT+4TUnq fwtLatwNiEdTVvhFIDGjV+dCCiIphHY4M0wDCPJcXNwfp9q4aQnE1Q7ONPE14JcA Qv+npfSlG5RQ22pETLpRUDGzT221rfiRDkxqaiVIBwJAk8f57GY7iWzEFpUiPARw u60hDwkK+aGjHLCkXFhiHGElUeAvI1nWR4zuBKjHrz3dT5EHYJieV8h2ZmZpadE4 L9F3kiishcciIEmEgiiOfHQi6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9hG0hy luJxvPl8VEIwX+R4cMmaMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOOG+AMk4LtYiknZuPs4dQnQZ8mc25UfbaKAw8CakG36XGTzHGbBQU 25h3FR0y05AE3V+ThqXJD31c/yYBvg3k6m2/sMCyUuKjeK1A4+ayvgzshaE4fdf9 OACP1ETWc2YC7WrbcKqeXff1e4CjJfL8JuAoNWgCoOyjFGuSJgNRf2x3+68bIO9h CuM7iYGHYl3ZlUTwQLAazYbAGGTZ5lqR3a84gmnczQFDDbiFohHtwxKgBS3Ar53l rlrN0B4DNcITNk6UP8mkcfQ9N7ZlSTMyuOzo4x8AuGMFRNsJjRIRfHZHooQ6lE1A mg/IfuiuQJhF7L4vIiyLRfkLJuP9cS02 -----END CERTIFICATE-----Generated at Mon Aug 11 04:14:39 2025 by rpki-client