$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: zuDL3Wni4OmjlcO4zfLUDKweUUG2RlFqcOGEI/ju7gk= Subject key identifier: B8:8A:98:0B:90:7D:73:0C:18:DF:C2:9A:B8:65:15:32:34:BE:35:FD Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0923 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 091C Signing time: Sun 10 Aug 2025 20:17:38 +0000 Manifest this update: Sun 10 Aug 2025 20:17:37 +0000 Manifest next update: Sun 17 Aug 2025 20:17:37 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: VB5sJ0DBNNEH7/1+cKugqbE3uJRjyQ3yfUEmEUrJCKg=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2339 (0x923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Aug 10 20:17:37 2025 GMT Not After : Aug 17 20:17:37 2025 GMT Subject: CN=6898fe62-4db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:44:f4:28:08:23:c2:7f:ee:d6:db:f9:ac: 28:5c:4f:8c:d4:f1:05:7e:07:22:60:92:b2:8d:84: 92:d3:39:94:86:a2:29:a1:f0:8f:32:3a:d0:99:86: 33:16:87:a1:30:62:c7:55:30:93:dd:3a:d4:61:8a: cb:b2:77:57:af:ab:0d:24:e7:71:02:9c:5e:91:ce: 38:39:84:dc:fa:87:bc:6c:44:b9:60:18:3c:45:8c: 14:aa:02:80:a6:67:3f:3b:cb:1b:3e:11:e9:fb:1b: 5d:73:90:8f:46:af:dd:88:a3:1e:9d:d3:c3:3d:ef: b0:1d:c4:f0:7f:c3:54:30:22:de:46:52:74:69:2e: c5:27:ab:54:9d:07:4e:45:8b:c3:89:61:d5:4f:63: 70:3a:1a:08:21:4f:3f:75:19:ff:ec:7a:e0:ae:5a: 4c:6a:0d:f0:c7:b2:67:97:45:eb:1e:8e:5f:50:ff: 78:1d:25:8b:7d:a3:d5:6f:c1:9d:6c:ac:d1:bd:8b: 83:99:5b:2a:13:07:c3:c5:82:72:f8:e2:d6:75:55: 2f:32:6a:7c:e1:6b:af:16:5f:1e:8d:7d:b5:f8:2b: f7:4a:98:65:73:aa:2d:4e:4f:9a:69:de:5b:96:36: df:8b:a2:48:15:30:02:7a:e7:a3:52:b6:10:d8:e6: 64:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8A:98:0B:90:7D:73:0C:18:DF:C2:9A:B8:65:15:32:34:BE:35:FD X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:f9:bd:9c:01:2b:ec:de:ff:88:20:5f:8b:e6:77:1d:2a:56: 68:69:67:3e:ae:94:c5:e0:2d:ca:62:58:37:b1:da:16:45:81: a4:f9:85:94:a4:28:0b:3f:0b:aa:3b:a4:01:cc:61:d0:57:36: 2e:2a:04:02:b6:d9:5e:5e:e5:62:fe:cd:43:b6:aa:8e:94:64: a8:a6:7e:c4:ab:22:39:9f:50:b0:ea:6f:bb:ff:43:59:80:23: 2b:73:68:c8:32:10:62:a2:2e:50:29:3b:7c:11:ac:01:0a:e4: ef:26:31:8f:57:54:24:4c:7b:d6:84:6f:05:f4:9d:ef:a0:8c: 1f:eb:09:44:e9:63:06:c2:42:e4:08:28:b6:70:4e:8e:fa:c2: 8f:31:df:e7:5a:8a:a0:25:91:b7:3b:29:a5:87:79:c5:58:76: 2c:e8:af:de:84:55:9d:6d:b1:76:c3:e1:44:28:16:75:97:a8: 75:7a:48:21:53:fb:70:f3:62:d1:41:35:85:93:72:c4:7e:1b: ab:47:02:32:58:5b:a0:e9:fb:e5:fb:c4:14:64:a1:8a:20:c9: 46:7e:51:3d:d3:28:f0:d0:4c:da:89:f4:de:0f:97:6a:77:d3: 63:33:aa:2f:c1:a1:2e:63:02:c3:4c:50:91:7d:a2:ee:5a:ff: f7:cb:a9:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUwODEwMjAxNzM3WhcNMjUwODE3MjAxNzM3WjAYMRYwFAYD VQQDEw02ODk4ZmU2Mi00ZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgVE9CgII8J/7tbb+awoXE+M1PEFfgciYJKyjYSS0zmUhqIpofCPMjrQmYYz FoehMGLHVTCT3TrUYYrLsndXr6sNJOdxApxekc44OYTc+oe8bES5YBg8RYwUqgKA pmc/O8sbPhHp+xtdc5CPRq/diKMendPDPe+wHcTwf8NUMCLeRlJ0aS7FJ6tUnQdO RYvDiWHVT2NwOhoIIU8/dRn/7HrgrlpMag3wx7Jnl0XrHo5fUP94HSWLfaPVb8Gd bKzRvYuDmVsqEwfDxYJy+OLWdVUvMmp84WuvFl8ejX21+Cv3Sphlc6otTk+aad5b ljbfi6JIFTACeuejUrYQ2OZkhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiKmAuQ fXMMGN/CmrhlFTI0vjX9MB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu+b2cASvs3v+IIF+L5ncdKlZoaWc+rpTF4C3KYlg3sdoWRYGk+YWU pCgLPwuqO6QBzGHQVzYuKgQCttleXuVi/s1DtqqOlGSopn7EqyI5n1Cw6m+7/0NZ gCMrc2jIMhBioi5QKTt8EawBCuTvJjGPV1QkTHvWhG8F9J3voIwf6wlE6WMGwkLk CCi2cE6O+sKPMd/nWoqgJZG3Oymlh3nFWHYs6K/ehFWdbbF2w+FEKBZ1l6h1ekgh U/tw82LRQTWFk3LEfhurRwIyWFug6fvl+8QUZKGKIMlGflE90yjw0EzaifTeD5dq d9NjM6ovwaEuYwLDTFCRfaLuWv/3y6kR -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:52 2025 by rpki-client