$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: LBQFAccaYbvmzmzroMMB68N/0mpV7sXQIdEn/UtXjY0= Subject key identifier: 7A:3A:99:FE:44:3B:22:07:D0:48:C4:A1:AE:67:15:A9:51:9B:29:B0 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 09D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 09B5 Signing time: Fri 08 Aug 2025 20:22:24 +0000 Manifest this update: Fri 08 Aug 2025 20:22:23 +0000 Manifest next update: Fri 15 Aug 2025 20:22:23 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: Z4+NTYhFKAgPozLITewTIzN2N+5KfQHDWM00grgOUro=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: XjGmTLSTgsODpSCPTs5pCmUy9NRCIk0AE9Vg9MOaVdU=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2520 (0x9d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Aug 8 20:22:23 2025 GMT Not After : Aug 15 20:22:23 2025 GMT Subject: CN=68965c7f-1177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:90:ef:a8:f3:1b:b0:89:37:e7:a2:f7:88:8e: 79:86:55:34:2b:3a:7f:80:e9:5a:33:2b:03:91:8d: c3:7b:86:8d:31:f3:26:a1:7d:ea:41:33:9a:a1:f3: a6:93:1b:91:38:20:ad:d1:e0:76:6a:e2:db:ba:23: 3f:07:f0:ec:1a:6a:75:32:97:20:33:84:2e:61:35: e7:42:54:df:28:03:93:3b:e2:9e:46:1f:ab:b0:13: 26:93:28:15:d8:ff:7f:eb:88:9d:c8:fd:f7:7a:21: d2:0d:e5:a6:00:78:85:8a:99:f1:bc:a5:f5:02:f0: fb:41:94:45:cc:18:b9:36:9d:cc:7f:df:d2:2c:f6: db:96:2b:0c:f6:ab:57:80:cf:5c:a2:ea:41:9c:51: fd:59:0b:51:76:8e:49:00:8e:f2:b9:a5:d2:92:93: 73:4d:31:e0:56:7a:50:22:a4:1e:33:29:16:34:85: f7:74:05:e7:70:dd:77:74:e8:fc:ff:7f:04:3c:4e: 52:c5:1f:73:af:d8:bd:6f:91:88:1c:31:61:7f:08: 0d:c4:3d:34:49:40:1b:fe:ae:65:83:01:21:45:84: 82:54:c0:40:b6:d3:d5:52:27:00:90:5d:f3:69:69: ed:c5:ba:ab:f8:82:8d:1e:34:eb:dd:01:8b:ce:8d: aa:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3A:99:FE:44:3B:22:07:D0:48:C4:A1:AE:67:15:A9:51:9B:29:B0 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:df:c0:80:d3:3e:1f:26:68:d2:f5:16:f4:95:e3:ad:48:10: 05:0a:88:62:90:bc:d1:cb:e7:73:df:b1:a2:cd:1e:98:00:0f: ac:d1:c0:e2:fb:52:ec:e4:03:e6:38:95:65:22:4f:69:0a:be: f1:0b:46:25:57:5a:92:1e:22:e9:a9:a3:3e:c5:12:7b:1b:0e: 49:55:f4:5d:da:57:e4:d8:03:bc:d9:4c:ce:6b:9b:c2:cb:81: ba:85:b4:4d:6f:97:28:fb:e5:c2:cb:79:d2:14:3c:19:e2:19: a1:fe:54:02:d2:e6:f4:fd:2b:d5:9f:59:95:e4:73:b9:5f:88: 9f:2f:db:a4:d9:5a:aa:0c:7a:b1:31:3b:78:a8:2d:76:2f:46: 28:c7:43:bf:45:d8:06:d9:64:e2:c8:9a:e4:48:c7:3a:c5:47: e1:a0:2f:ef:7b:22:90:2b:93:3d:f0:6f:02:76:87:b0:12:9f: 13:7f:fe:e6:bc:f0:9f:d4:5b:c1:47:d8:f6:77:fb:94:1a:31: 80:b1:8c:2f:cc:d9:9b:11:13:24:93:9a:e0:d1:75:96:5f:e1: 71:36:38:2c:20:7f:93:2e:a4:39:8b:d1:71:a6:95:99:98:07: c4:2a:df:da:c0:2a:bc:75:fc:89:b5:ed:bb:18:9f:4c:72:e8: 1d:5f:74:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUwODA4MjAyMjIzWhcNMjUwODE1MjAyMjIzWjAYMRYwFAYD VQQDEw02ODk2NWM3Zi0xMTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8pDvqPMbsIk356L3iI55hlU0Kzp/gOlaMysDkY3De4aNMfMmoX3qQTOaofOm kxuROCCt0eB2auLbuiM/B/DsGmp1MpcgM4QuYTXnQlTfKAOTO+KeRh+rsBMmkygV 2P9/64idyP33eiHSDeWmAHiFipnxvKX1AvD7QZRFzBi5Np3Mf9/SLPbblisM9qtX gM9coupBnFH9WQtRdo5JAI7yuaXSkpNzTTHgVnpQIqQeMykWNIX3dAXncN13dOj8 /38EPE5SxR9zr9i9b5GIHDFhfwgNxD00SUAb/q5lgwEhRYSCVMBAttPVUicAkF3z aWntxbqr+IKNHjTr3QGLzo2qrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHo6mf5E OyIH0EjEoa5nFalRmymwMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB838CA0z4fJmjS9Rb0leOtSBAFCohikLzRy+dz37GizR6YAA+s0cDi +1Ls5APmOJVlIk9pCr7xC0YlV1qSHiLpqaM+xRJ7Gw5JVfRd2lfk2AO82UzOa5vC y4G6hbRNb5co++XCy3nSFDwZ4hmh/lQC0ub0/SvVn1mV5HO5X4ifL9uk2VqqDHqx MTt4qC12L0Yox0O/RdgG2WTiyJrkSMc6xUfhoC/veyKQK5M98G8CdoewEp8Tf/7m vPCf1FvBR9j2d/uUGjGAsYwvzNmbERMkk5rg0XWWX+FxNjgsIH+TLqQ5i9FxppWZ mAfEKt/awCq8dfyJte27GJ9McugdX3RX -----END CERTIFICATE-----Generated at Sat Aug 9 02:58:52 2025 by rpki-client