$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: uAkXULzK9//S1/hrcuUB4jh6iPjueyuE5znfKlF41dA= Subject key identifier: BF:3C:91:83:94:91:7D:71:74:CE:7F:DE:4F:D2:C5:52:F9:34:12:99 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 64 Signing time: Thu 07 Aug 2025 07:47:21 +0000 Manifest this update: Thu 07 Aug 2025 07:47:20 +0000 Manifest next update: Thu 14 Aug 2025 07:47:20 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: qVgoOn4yIPqgtIIgO7CVKqV38clb7GrZzfKUOL6hvGo=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Aug 7 07:47:20 2025 GMT Not After : Aug 14 07:47:20 2025 GMT Subject: CN=68945a08-20fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:4b:e6:cd:b4:e6:04:ba:50:e9:8f:bd:e5: d1:ae:98:7f:b6:95:a6:7c:24:eb:dc:43:80:42:63: e4:3f:00:cd:1b:99:32:11:8c:d1:cb:f4:e5:02:d2: d0:a0:e9:66:f2:93:4e:70:a9:f4:16:e5:75:23:19: 90:b6:f8:f3:09:5e:0a:fc:5f:cd:31:61:f4:cc:34: b7:64:14:5e:31:49:ad:54:85:1e:8c:a5:21:23:10: b1:f8:32:0d:44:fd:be:ea:68:a0:4d:b3:50:f5:15: 3e:61:a6:ea:4b:cb:bb:da:cc:6a:c3:bb:5f:ec:44: a0:c3:0c:e8:9f:dc:90:0e:f1:ac:17:58:8e:26:36: 46:82:25:9c:49:1d:6e:78:e4:cb:16:79:a1:b7:ec: 0f:b1:df:49:81:bb:9d:43:5d:32:25:dc:6a:46:8e: 17:13:4a:b6:90:47:97:d1:54:74:b5:63:a3:15:62: fe:23:ed:a6:f2:3e:78:97:f9:e6:b5:eb:75:21:c7: 40:15:b9:d6:de:ab:5b:5c:da:5b:13:a4:26:62:ed: 5f:93:8b:80:8d:8e:df:7f:7e:63:9c:4b:bc:86:b6: 44:41:82:c3:69:f0:16:9a:5f:31:28:a6:52:a3:96: 3f:2b:2c:7c:8f:b2:01:c2:b8:3f:42:9d:09:ef:0c: 70:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:3C:91:83:94:91:7D:71:74:CE:7F:DE:4F:D2:C5:52:F9:34:12:99 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:45:c9:f1:de:c7:ef:ae:4d:f3:a8:0a:1d:da:21:00:07:df: cd:8f:12:80:0c:2f:b8:71:ee:48:28:ec:31:41:06:9a:b4:67: 47:c3:2e:43:18:07:23:ba:d9:df:48:0c:a0:3d:2f:e0:bb:93: 38:7d:10:6f:a6:a3:89:c3:e2:e1:e7:48:fa:d8:3e:12:a6:62: fd:4e:45:97:69:d4:9e:e2:75:c0:8f:c9:ff:72:70:20:e3:a7: bb:37:0a:47:df:1f:d5:7a:fa:a5:e9:d0:5a:a3:1c:d7:08:59: ea:79:f1:87:52:4d:de:13:cb:4e:73:0a:99:06:16:0a:d9:61: ba:7e:69:d4:16:89:b8:41:35:d1:ab:15:69:56:bd:04:3f:29: 92:31:73:37:37:79:ab:6d:38:b3:97:34:2d:c4:25:ba:dc:e1: a7:28:75:c7:4c:e5:37:72:ed:2f:30:ce:7f:cf:fa:d8:74:3e: 31:c9:a6:04:be:5d:ee:20:53:bb:7e:e9:f6:77:40:c8:ce:81: df:54:a4:79:a1:32:e5:ad:a8:01:8e:dd:6e:06:c8:31:52:ac: 24:be:1f:77:8f:5d:76:a9:45:4e:7a:90:5f:e4:9a:79:c5:3f: 6f:27:ee:fb:37:74:7b:33:0e:f7:14:58:89:07:7b:cb:a4:5f: 05:99:2e:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA4MDcwNzQ3MjBaFw0yNTA4MTQwNzQ3MjBaMBgxFjAUBgNV BAMTDTY4OTQ1YTA4LTIwZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1G0vmzbTmBLpQ6Y+95dGumH+2laZ8JOvcQ4BCY+Q/AM0bmTIRjNHL9OUC0tCg 6Wbyk05wqfQW5XUjGZC2+PMJXgr8X80xYfTMNLdkFF4xSa1UhR6MpSEjELH4Mg1E /b7qaKBNs1D1FT5hpupLy7vazGrDu1/sRKDDDOif3JAO8awXWI4mNkaCJZxJHW54 5MsWeaG37A+x30mBu51DXTIl3GpGjhcTSraQR5fRVHS1Y6MVYv4j7abyPniX+ea1 63Uhx0AVudbeq1tc2lsTpCZi7V+Ti4CNjt9/fmOcS7yGtkRBgsNp8BaaXzEoplKj lj8rLHyPsgHCuD9CnQnvDHChAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvzyRg5SR fXF0zn/eT9LFUvk0EpkwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw RjkwLzA0Nzc5QjlDRUQ4MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFk ald2SlJtdHpRQXVFeS04NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG1FyfHex++uTfOoCh3aIQAH382PEoAML7hx7kgo7DFBBpq0Z0fDLkMY ByO62d9IDKA9L+C7kzh9EG+mo4nD4uHnSPrYPhKmYv1ORZdp1J7idcCPyf9ycCDj p7s3CkffH9V6+qXp0FqjHNcIWep58YdSTd4Ty05zCpkGFgrZYbp+adQWibhBNdGr FWlWvQQ/KZIxczc3eattOLOXNC3EJbrc4acodcdM5Tdy7S8wzn/P+th0PjHJpgS+ Xe4gU7t+6fZ3QMjOgd9UpHmhMuWtqAGO3W4GyDFSrCS+H3ePXXapRU56kF/kmnnF P28n7vs3dHszDvcUWIkHe8ukXwWZLlQ= -----END CERTIFICATE-----Generated at Sat Aug 9 05:51:40 2025 by rpki-client