$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: 1I5JgC59p1heP+/DTG0MjXSWY1J01g0QUeEe7L9u2kw= Subject key identifier: D2:7B:15:D5:DF:D5:5E:00:6E:5F:25:78:B5:A9:BC:C2:75:F5:DB:89 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 048F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 048B Signing time: Mon 11 Aug 2025 00:09:58 +0000 Manifest this update: Mon 11 Aug 2025 00:09:58 +0000 Manifest next update: Mon 18 Aug 2025 00:09:58 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: VruMNxySE7n5D5GiqAD/cuVqbUFlN/Up2xGqxWTbf6w=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: IcEuGPt4GTNEbPQpjAanlaif3gO8wRzi48eufGxQr4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Aug 11 00:09:58 2025 GMT Not After : Aug 18 00:09:58 2025 GMT Subject: CN=689934d6-f295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:21:8c:a2:1e:e8:dc:84:d6:29:9c:28:53:58: b2:89:8d:cf:6e:5e:13:3d:30:ba:1c:f9:db:a7:0d: 63:4c:b5:c6:9f:b5:c9:b4:8e:e1:5c:94:56:f6:a2: fa:00:98:05:95:be:cb:56:aa:9f:6d:41:b4:31:3b: c0:2e:11:4e:41:60:70:9e:bc:95:c9:56:32:5e:1c: 13:1b:d4:a9:41:20:34:f8:da:a7:8a:c3:e6:4f:9f: b6:c8:84:9b:a1:9d:a5:bb:24:85:c3:27:01:d6:a8: 17:d7:8a:b0:c7:41:77:b3:45:bd:9e:13:29:55:ac: 5f:6b:ff:99:86:b2:f8:c7:1f:2c:d3:96:15:ad:df: 0a:ac:75:6f:e3:9e:5c:5f:22:4a:54:78:28:3e:d0: 5a:63:19:65:a2:bb:f7:e3:77:6a:32:9c:c9:d1:3b: a6:5a:4f:cb:41:80:fb:b5:04:78:8c:c5:8a:91:98: 06:6f:45:0c:21:1e:4d:c8:0d:48:d5:f5:a5:51:7d: 83:6d:e3:00:61:2c:14:07:0d:d1:ae:98:e6:1f:7d: a4:64:00:3d:e4:63:a3:2c:0e:e5:6f:73:34:82:d5: 9c:b1:0c:39:13:60:03:1a:f7:db:bb:85:5c:68:bf: 4d:80:be:57:26:73:1e:e1:f4:de:8d:74:47:62:e4: 46:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7B:15:D5:DF:D5:5E:00:6E:5F:25:78:B5:A9:BC:C2:75:F5:DB:89 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8f:d2:ad:a7:8a:95:c1:8b:1c:57:85:18:f3:c0:b0:6d:e7: 00:63:c0:e7:47:c3:e5:b1:ce:47:f8:3a:03:f1:39:5c:7e:fb: c1:14:05:4b:4b:a1:65:6f:e4:28:bd:60:96:c2:5a:8c:b3:3f: fd:7d:c1:59:0d:65:eb:0e:b7:19:4a:80:4d:23:00:89:a0:88: 9a:d2:b5:1d:6e:73:39:1e:a8:69:c1:be:9e:10:c3:e7:0e:34: 9f:a1:e9:bc:da:81:ab:19:a2:25:de:df:8a:01:2c:b1:bb:51: f4:01:8e:5f:e5:e0:e2:00:62:ff:bd:48:f6:22:de:d4:d8:cd: 8e:60:ec:77:28:4a:a7:18:59:08:7a:ca:7c:ed:5d:d2:96:02: c0:5c:b7:2a:87:f3:e9:65:5e:57:85:21:92:85:83:c5:28:e4: 65:68:5a:87:8b:ba:fc:01:12:8c:d4:7e:62:a8:05:c5:f9:83: 5c:35:a4:c4:7e:fc:09:bd:b4:d0:26:8d:18:5c:8d:33:56:b3: dd:c6:25:56:d2:1f:c6:36:53:e5:4d:d1:e3:9b:47:75:f2:b9: 15:28:99:f8:ae:51:1d:ab:d5:a0:a0:5a:d8:58:a8:b1:85:de: 53:66:ee:b4:d1:04:4a:2f:b1:f3:50:1b:79:4e:56:91:1a:ae: 3e:cf:f0:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUwODExMDAwOTU4WhcNMjUwODE4MDAwOTU4WjAYMRYwFAYD VQQDEw02ODk5MzRkNi1mMjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCGMoh7o3ITWKZwoU1iyiY3Pbl4TPTC6HPnbpw1jTLXGn7XJtI7hXJRW9qL6 AJgFlb7LVqqfbUG0MTvALhFOQWBwnryVyVYyXhwTG9SpQSA0+NqnisPmT5+2yISb oZ2luySFwycB1qgX14qwx0F3s0W9nhMpVaxfa/+ZhrL4xx8s05YVrd8KrHVv455c XyJKVHgoPtBaYxllorv343dqMpzJ0TumWk/LQYD7tQR4jMWKkZgGb0UMIR5NyA1I 1fWlUX2DbeMAYSwUBw3RrpjmH32kZAA95GOjLA7lb3M0gtWcsQw5E2ADGvfbu4Vc aL9NgL5XJnMe4fTejXRHYuRG4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJ7FdXf 1V4Abl8leLWpvMJ19duJMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWj9Ktp4qVwYscV4UY88CwbecAY8DnR8Plsc5H+DoD8TlcfvvBFAVL S6Flb+QovWCWwlqMsz/9fcFZDWXrDrcZSoBNIwCJoIia0rUdbnM5Hqhpwb6eEMPn DjSfoem82oGrGaIl3t+KASyxu1H0AY5f5eDiAGL/vUj2It7U2M2OYOx3KEqnGFkI esp87V3SlgLAXLcqh/PpZV5XhSGShYPFKORlaFqHi7r8ARKM1H5iqAXF+YNcNaTE fvwJvbTQJo0YXI0zVrPdxiVW0h/GNlPlTdHjm0d18rkVKJn4rlEdq9WgoFrYWKix hd5TZu600QRKL7HzUBt5TlaRGq4+z/DA -----END CERTIFICATE-----Generated at Mon Aug 11 06:13:18 2025 by rpki-client