$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft File: xzON8bdowFB0za7Q_bGkwUrfuLU.mft (raw, json) Hash identifier: hgIqY1EK9Bvg61JvGm79jtbjJn72UxduwDE4GMNNFFA= Subject key identifier: 7B:26:EF:1D:5A:B0:BF:74:AA:43:2F:C3:8D:59:20:30:27:56:DB:ED Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft Manifest number: 013F Signing time: Thu 07 Aug 2025 05:18:29 +0000 Manifest this update: Thu 07 Aug 2025 05:18:28 +0000 Manifest next update: Thu 14 Aug 2025 05:18:28 +0000 Files and hashes: 1: xzON8bdowFB0za7Q_bGkwUrfuLU.crl (hash: vqK6yfUrUZ91IR4Fm7AT7Tq/MsO49/im3TOkVkSdcbA=) 2: 7DA50F9C3E0B11F09779DF13C4F9AE02.roa (hash: aOphwoAXL9FkkZUfHxiPd8GBXzpRzX5FSynk8bgMuYk=) 3: A2516E42DE4511EF8C37E320C4F9AE02.roa (hash: XfIHm/MhIPSh6jZecIK72twugLDWV563OBM4HVySVuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Aug 7 05:18:28 2025 GMT Not After : Aug 14 05:18:28 2025 GMT Subject: CN=68943725-3a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:60:5c:80:40:17:44:ee:35:60:26:4d:6e:9a: 5c:ff:f7:6f:df:35:12:71:38:6d:64:da:49:e9:3e: 1d:80:12:57:5b:f4:02:3e:2f:03:07:c3:fb:f2:ad: 28:da:00:de:3d:a6:29:64:96:e0:f7:29:93:5e:e7: 21:71:a2:51:4e:fc:cc:41:0d:82:26:02:21:15:f5: 57:37:38:83:c0:80:ea:0d:75:63:e8:93:5d:16:1e: a3:09:9d:3b:3a:7d:cf:f9:b3:dc:50:fc:b9:b8:ac: f4:b8:55:30:64:ba:55:58:df:d3:76:85:35:7a:cf: 4b:53:1b:bb:35:1d:7d:3e:1e:bd:c3:5b:f0:c3:1c: 2a:4e:a4:0f:1b:6a:fa:9b:9b:e8:52:e0:cf:ba:74: 2d:87:b2:c9:0c:be:93:33:94:92:00:a5:56:04:4b: c5:e7:f9:5a:a1:a3:4f:11:4b:e6:30:19:24:94:c1: de:66:62:c9:cf:4b:fa:18:c8:23:f5:ea:f8:9f:47: 7c:73:04:c5:f5:cf:8c:b0:72:f7:c1:30:a5:39:66: b9:20:13:f1:f2:6a:26:e3:e7:2e:0c:9e:40:b8:20: 21:c0:01:11:db:85:91:00:88:37:02:af:13:97:5f: de:00:63:3e:c2:9f:78:43:72:2c:21:6f:08:7a:bb: 75:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:26:EF:1D:5A:B0:BF:74:AA:43:2F:C3:8D:59:20:30:27:56:DB:ED X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:7b:2f:86:d9:af:fb:bb:7c:18:1a:3a:87:70:b2:f9:bf:4b: c6:aa:4b:22:68:bf:da:77:30:96:34:5f:d5:90:e1:1e:95:d6: 94:b9:ad:f0:88:32:7d:39:8c:a5:f0:04:92:5b:0c:1c:0c:04: 79:ab:fe:8f:97:75:34:69:8a:00:eb:8d:3a:1c:98:4e:11:2a: 1a:d9:44:bc:ac:5a:b2:64:1e:dd:10:79:cb:cd:94:66:6e:17: bf:c8:df:07:05:07:97:a5:a3:a8:68:bb:01:8b:9a:83:e2:be: 3b:45:8e:cd:71:aa:7d:3e:a6:db:04:38:d3:cf:45:d3:ed:4d: 81:35:b7:ad:33:0f:95:ae:8f:61:f1:f8:d8:a1:5e:ce:31:ca: c4:b8:73:84:3f:ba:28:04:15:bb:e0:9c:b1:43:f1:63:b6:11: 87:48:36:98:27:67:b8:e9:df:dd:fe:39:39:de:cd:1d:fa:27: d6:e1:ee:28:8d:ed:4d:55:8b:16:18:ca:62:7c:f1:1b:6c:08: 89:df:a3:5c:75:fb:92:e9:ae:ff:b3:24:53:64:cb:c4:e7:69: a4:2e:4c:ca:8e:88:59:f2:8f:08:61:a8:22:6f:2c:27:35:f4: e4:71:9f:37:dd:89:5d:46:75:5d:14:8d:52:cc:db:a5:62:a9: d1:6e:2b:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUwODA3MDUxODI4WhcNMjUwODE0MDUxODI4WjAYMRYwFAYD VQQDEw02ODk0MzcyNS0zYTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWBcgEAXRO41YCZNbppc//dv3zUScThtZNpJ6T4dgBJXW/QCPi8DB8P78q0o 2gDePaYpZJbg9ymTXuchcaJRTvzMQQ2CJgIhFfVXNziDwIDqDXVj6JNdFh6jCZ07 On3P+bPcUPy5uKz0uFUwZLpVWN/TdoU1es9LUxu7NR19Ph69w1vwwxwqTqQPG2r6 m5voUuDPunQth7LJDL6TM5SSAKVWBEvF5/laoaNPEUvmMBkklMHeZmLJz0v6GMgj 9er4n0d8cwTF9c+MsHL3wTClOWa5IBPx8mom4+cuDJ5AuCAhwAER24WRAIg3Aq8T l1/eAGM+wp94Q3IsIW8Iert1AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsm7x1a sL90qkMvw41ZIDAnVtvtMB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri80QUFCN0JDQUM0N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dG QjB6YTdRX2JHa3dVcmZ1TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfey+G2a/7u3wYGjqHcLL5v0vGqksiaL/adzCWNF/VkOEeldaUua3w iDJ9OYyl8ASSWwwcDAR5q/6Pl3U0aYoA6406HJhOESoa2US8rFqyZB7dEHnLzZRm bhe/yN8HBQeXpaOoaLsBi5qD4r47RY7Ncap9PqbbBDjTz0XT7U2BNbetMw+Vro9h 8fjYoV7OMcrEuHOEP7ooBBW74JyxQ/FjthGHSDaYJ2e46d/d/jk53s0d+ifW4e4o je1NVYsWGMpifPEbbAiJ36NcdfuS6a7/syRTZMvE52mkLkzKjohZ8o8IYagibywn NfTkcZ833YldRnVdFI1SzNulYqnRbiua -----END CERTIFICATE-----Generated at Sat Aug 9 02:50:30 2025 by rpki-client