$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: EYxKFOVfUHMlkvt+qBmBzdCcDJxyw7qhCZ992fPs81s= Subject key identifier: F8:2E:90:F0:64:E0:CE:9C:CC:2E:A3:1B:A6:D9:4B:F8:F6:00:07:EB Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 0174 Signing time: Tue 05 Aug 2025 04:32:38 +0000 Manifest this update: Tue 05 Aug 2025 04:32:38 +0000 Manifest next update: Tue 12 Aug 2025 04:32:38 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: 59j0zgaWqh/zNSeKiEjSZumFT1kAaFUYi0Vewrxlppo=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: VRlasPmFdnGQ7jXmsGRiZ9YkkvB4UEQJbRXUpRC4bL8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: Qgji862kow2VwzLmbLL0a0Y2hhvgFChH2ZT0r4kSTl8=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: qOQvPOfqQOexW3Sxvhsqmm5W1KEN72YTFSt5Z0QktXg=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: pidH+xtb8OXyN3SlmzLiBUdr0SQho8QbaXQpLP6w5rQ=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: LMxslHx0hj+eRPegweO/Q77RiY35syFR40MU3J+sT8s=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: Wa8VD0lmDOwdth5KoUIOfMLBdB57aoMl1cYAfCOjMXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Aug 5 04:32:38 2025 GMT Not After : Aug 12 04:32:38 2025 GMT Subject: CN=68918966-1a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:aa:15:66:b6:a5:d5:70:d9:97:db:42:43:a1: 5c:4a:01:33:91:9d:3d:94:f5:01:c8:85:0e:c9:35: fc:3c:2c:37:c6:27:29:65:46:ba:13:2e:ae:5a:8d: 10:73:47:be:15:9f:e0:37:e1:f1:86:28:55:56:74: 22:b9:64:4a:92:0b:8a:2f:6f:dc:9e:1e:f5:2c:cd: 1d:e5:32:4d:73:2d:db:ec:1e:16:7c:93:8e:5e:4b: a2:4c:e1:20:8e:b9:42:9a:76:6a:3e:6c:17:ff:f6: 14:a8:3d:56:15:e8:fe:da:ee:0e:04:6a:bb:8a:51: 8b:41:d9:fd:a4:4a:83:55:4c:91:98:8c:32:eb:6d: d3:35:e6:71:f5:5a:82:41:7b:bf:45:c2:68:73:ce: d6:78:4a:f8:39:90:4b:84:24:61:36:02:45:85:9e: 1b:43:09:dd:44:5f:56:49:cb:af:75:e0:48:41:cc: 54:19:25:85:7b:85:7d:fb:4b:09:46:8b:4b:71:63: 38:bb:6d:cd:c7:a5:45:06:49:e0:dd:b5:91:39:19: 3b:f3:82:b4:2f:a0:82:02:0f:b8:8b:0a:98:9f:b1: 7c:d4:7c:ca:74:11:63:70:1f:cf:49:ef:8c:59:b2: dd:2b:28:a3:b4:9b:c1:23:cd:80:c7:8c:a7:46:71: 73:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2E:90:F0:64:E0:CE:9C:CC:2E:A3:1B:A6:D9:4B:F8:F6:00:07:EB X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:11:a4:67:39:76:f2:6e:ca:91:1a:f6:1e:b8:5d:eb:0b:ae: e4:b8:60:bc:7f:b5:e8:72:0e:d1:40:0e:89:10:82:8a:96:31: 82:15:60:60:29:b6:7f:88:96:c8:93:b8:d4:86:08:03:1d:99: 6f:40:d3:70:aa:51:4d:21:ba:4a:d3:d0:0d:b6:32:b2:4a:4e: 84:5f:7f:81:1d:0b:3b:e3:f9:55:83:2a:d4:4b:a4:bb:06:ff: 21:df:da:ea:2b:8b:f9:43:c1:ea:ff:2e:7a:30:d9:3c:7c:dc: 51:45:06:e9:ff:3f:53:60:ff:ff:0e:e2:4c:75:79:b3:37:36: 94:5c:b1:9f:5b:ab:98:63:6c:c4:c1:3c:1c:6d:f6:11:7c:72: 1d:cc:01:60:63:e0:6c:47:59:ea:b8:e3:ec:5e:bf:83:65:aa: 23:22:e7:43:cf:09:0c:0f:ae:c8:3e:81:37:86:61:3c:d7:ce: cb:ca:9c:c5:a8:01:a2:6a:f8:54:a0:ff:f4:95:88:a2:8a:d4: 7d:13:ac:fc:b5:b1:f6:51:bc:5c:e1:28:ce:39:bd:a8:4f:40: c2:3d:e5:0a:66:61:55:43:54:89:d0:1f:e9:cd:1c:76:d4:34: 78:8e:7d:c1:b1:45:d9:b4:e6:a9:2b:e8:55:88:fc:3d:6a:d5: 9b:ab:62:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwODA1MDQzMjM4WhcNMjUwODEyMDQzMjM4WjAYMRYwFAYD VQQDEw02ODkxODk2Ni0xYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6oVZral1XDZl9tCQ6FcSgEzkZ09lPUByIUOyTX8PCw3xicpZUa6Ey6uWo0Q c0e+FZ/gN+HxhihVVnQiuWRKkguKL2/cnh71LM0d5TJNcy3b7B4WfJOOXkuiTOEg jrlCmnZqPmwX//YUqD1WFej+2u4OBGq7ilGLQdn9pEqDVUyRmIwy623TNeZx9VqC QXu/RcJoc87WeEr4OZBLhCRhNgJFhZ4bQwndRF9WScuvdeBIQcxUGSWFe4V9+0sJ RotLcWM4u23Nx6VFBkng3bWRORk784K0L6CCAg+4iwqYn7F81HzKdBFjcB/PSe+M WbLdKyijtJvBI82Ax4ynRnFz6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgukPBk 4M6czC6jG6bZS/j2AAfrMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVEaRnOXbybsqRGvYeuF3rC67kuGC8f7Xocg7RQA6JEIKKljGCFWBg KbZ/iJbIk7jUhggDHZlvQNNwqlFNIbpK09ANtjKySk6EX3+BHQs74/lVgyrUS6S7 Bv8h39rqK4v5Q8Hq/y56MNk8fNxRRQbp/z9TYP//DuJMdXmzNzaUXLGfW6uYY2zE wTwcbfYRfHIdzAFgY+BsR1nquOPsXr+DZaojIudDzwkMD67IPoE3hmE8187LypzF qAGiavhUoP/0lYiiitR9E6z8tbH2Ubxc4SjOOb2oT0DCPeUKZmFVQ1SJ0B/pzRx2 1DR4jn3BsUXZtOapK+hViPw9atWbq2KV -----END CERTIFICATE-----Generated at Tue Aug 5 17:15:36 2025 by rpki-client