$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: I+lwUjSBL9u9Jfr57jQefi8z998kTI6K1PyThvUomLA= Subject key identifier: 9C:68:A2:7A:A5:E1:56:AB:02:6B:6B:A5:EA:9C:B2:89:56:32:4F:41 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 031A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 0319 Signing time: Sat 09 Aug 2025 01:41:28 +0000 Manifest this update: Sat 09 Aug 2025 01:41:28 +0000 Manifest next update: Sat 16 Aug 2025 01:41:28 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: ir07c0wiO8ZEIvscCywA7zMAXk0nX2S7KCQ5OziELgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Aug 9 01:41:28 2025 GMT Not After : Aug 16 01:41:28 2025 GMT Subject: CN=6896a748-1c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5b:ee:a5:42:31:01:7e:51:65:87:96:28:cf: 6a:78:23:23:e4:a4:d9:33:df:38:63:51:ae:60:43: d9:2e:b3:4d:a4:d3:2c:31:65:f7:0c:4e:39:c3:a6: e4:80:5b:26:91:cd:d6:34:cd:16:cc:8d:bc:38:03: 16:87:52:d8:8c:ce:ea:89:f2:a4:99:0b:9e:9b:ab: 8a:72:d3:7d:8a:b9:b6:15:13:ad:32:cc:a2:16:1d: b1:aa:50:5e:b5:3d:5e:b9:e3:f3:d4:cc:63:98:02: 1a:c9:27:1a:4f:d3:56:f8:20:28:62:eb:b2:ee:12: 9f:99:27:c9:1b:c5:75:16:90:92:be:a8:84:06:67: 5d:e4:87:7f:25:a8:39:92:4d:71:d2:56:05:fe:7a: 1d:63:8a:db:ad:67:3e:67:e9:71:24:9b:8c:35:cc: f2:8f:50:17:19:4e:b1:d8:ad:09:2b:71:48:3f:8f: d8:b0:d9:65:e5:10:16:c4:e8:64:41:8e:7c:0a:57: af:c4:af:fb:76:86:eb:50:b8:f7:04:09:61:86:da: 79:73:7f:ad:c3:d8:e0:b7:1a:97:15:1c:ba:6f:18: b1:8b:db:a4:a0:04:c8:83:76:5a:34:94:c7:5d:7a: cf:27:e0:03:eb:19:c2:37:fe:3c:04:79:4d:59:21: 59:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:68:A2:7A:A5:E1:56:AB:02:6B:6B:A5:EA:9C:B2:89:56:32:4F:41 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:3e:88:45:85:e0:bc:ae:21:b2:95:31:c2:5b:40:67:c6:09: a6:07:1e:bb:1d:6d:e6:59:ca:80:c1:0b:f2:23:c5:0a:80:c9: 67:b2:b4:3c:d1:14:57:af:c9:d3:a0:65:ee:f0:e0:ff:53:48: ae:5e:47:d2:1e:c4:cc:fd:6d:41:37:a5:8d:bd:5a:91:7a:e5: b8:30:c7:e9:b0:a2:fb:df:c6:be:ff:91:a5:4f:63:37:34:24: b3:ca:1c:87:36:84:c4:33:de:28:f9:9c:95:6a:4e:64:04:76: f1:12:75:e2:1c:c6:96:26:a8:3d:fd:bf:c3:e9:a0:12:5a:40: cf:64:78:15:62:f1:f7:ef:29:cd:1b:2e:e0:a3:4e:8b:15:2c: 65:8f:cc:9d:08:13:d1:12:59:f5:98:e9:63:5c:f4:48:1c:f0: 0f:b7:e2:71:2c:44:ba:3d:ad:7f:a7:8b:68:bd:49:07:0f:7b: 7a:1c:2b:40:25:16:bd:4b:1c:21:87:49:71:99:2d:66:c3:b1: cb:5d:59:df:f6:60:7d:37:96:07:d1:6f:96:15:d6:6c:a4:30: d9:e5:55:eb:d7:e3:d3:1d:7c:71:b7:03:d2:a0:5d:c4:ad:ca: 02:30:28:67:50:24:d9:8e:ae:0d:28:e0:d4:f2:c7:8a:dc:7d: 8d:c1:6d:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUwODA5MDE0MTI4WhcNMjUwODE2MDE0MTI4WjAYMRYwFAYD VQQDEw02ODk2YTc0OC0xYzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FvupUIxAX5RZYeWKM9qeCMj5KTZM984Y1GuYEPZLrNNpNMsMWX3DE45w6bk gFsmkc3WNM0WzI28OAMWh1LYjM7qifKkmQuem6uKctN9irm2FROtMsyiFh2xqlBe tT1euePz1MxjmAIayScaT9NW+CAoYuuy7hKfmSfJG8V1FpCSvqiEBmdd5Id/Jag5 kk1x0lYF/nodY4rbrWc+Z+lxJJuMNczyj1AXGU6x2K0JK3FIP4/YsNll5RAWxOhk QY58ClevxK/7dobrULj3BAlhhtp5c3+tw9jgtxqXFRy6bxixi9ukoATIg3ZaNJTH XXrPJ+AD6xnCN/48BHlNWSFZkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxoonql 4VarAmtrpeqcsolWMk9BMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTPohFheC8riGylTHCW0BnxgmmBx67HW3mWcqAwQvyI8UKgMlnsrQ8 0RRXr8nToGXu8OD/U0iuXkfSHsTM/W1BN6WNvVqReuW4MMfpsKL738a+/5GlT2M3 NCSzyhyHNoTEM94o+ZyVak5kBHbxEnXiHMaWJqg9/b/D6aASWkDPZHgVYvH37ynN Gy7go06LFSxlj8ydCBPREln1mOljXPRIHPAPt+JxLES6Pa1/p4tovUkHD3t6HCtA JRa9Sxwhh0lxmS1mw7HLXVnf9mB9N5YH0W+WFdZspDDZ5VXr1+PTHXxxtwPSoF3E rcoCMChnUCTZjq4NKODU8seK3H2NwW2v -----END CERTIFICATE-----Generated at Sat Aug 9 05:51:14 2025 by rpki-client