$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: GgVRrMa2RQPFeqL+iW/P/OzAOSAjSt05d6BOokwUmKY= Subject key identifier: 3C:F1:F5:54:6E:86:E3:7C:9E:14:A4:1C:99:D3:AA:45:53:3E:CC:66 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 09DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09D8 Signing time: Fri 08 Aug 2025 20:16:31 +0000 Manifest this update: Fri 08 Aug 2025 20:16:31 +0000 Manifest next update: Fri 15 Aug 2025 20:16:31 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: mlnhSFgIG/U/eaVDt0Vt4lvQg6qjMOGYEDXKPgpn3K4=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2527 (0x9df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Aug 8 20:16:31 2025 GMT Not After : Aug 15 20:16:31 2025 GMT Subject: CN=68965b1f-eaca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ed:06:19:df:01:74:b9:78:67:27:e5:46:c3: c4:0d:db:1c:cf:5d:a3:97:3f:71:b2:da:df:26:92: 8a:79:53:9c:ff:87:bf:01:61:5e:f9:bb:52:d3:c7: 77:09:51:ed:c4:f6:b9:f5:33:55:05:45:62:cb:45: 8d:4e:a3:f4:55:fc:69:b4:74:f0:ad:5f:c2:08:46: 6c:3f:0a:27:da:da:f4:d3:57:73:dd:db:aa:0b:a9: 60:e7:15:26:59:52:eb:19:1b:7e:2e:8a:42:8f:fc: 7a:34:90:9b:69:36:f7:13:47:18:c4:c8:d7:9e:df: 03:33:3e:35:5e:8a:f3:7a:1f:4a:e4:e8:86:e5:0a: 88:7c:30:e1:c6:29:b6:8f:89:1d:20:11:16:f1:a8: ed:01:52:18:9e:58:16:e8:4a:2f:d9:58:06:c6:48: 41:5d:8f:ca:05:55:91:3d:9f:77:43:fa:d8:f6:32: c1:04:ef:51:47:79:e7:0e:87:2d:78:24:cc:d0:11: c8:07:e9:9c:33:bb:76:f1:81:c1:62:1d:38:af:ca: 65:13:ec:e8:68:74:e1:25:de:b7:c6:79:d2:92:47: 24:f2:93:4d:ba:bb:de:f3:39:76:75:28:38:74:4b: ff:eb:e2:ff:0d:18:94:b5:8b:85:d8:72:ed:29:de: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F1:F5:54:6E:86:E3:7C:9E:14:A4:1C:99:D3:AA:45:53:3E:CC:66 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c6:64:5a:47:a0:05:e8:72:91:04:74:cf:df:1e:3c:b7:9a: 8e:0e:46:18:ca:16:26:0f:8c:13:b5:8e:14:31:da:f1:ff:de: 3f:1a:df:3b:f9:bd:fb:01:12:f5:7d:48:09:cd:69:de:0a:8f: 14:fe:7c:06:89:4f:46:c2:a6:d7:0c:f5:d1:a8:22:d2:7d:80: 4c:34:37:86:e7:50:1b:ef:c9:6d:d3:0d:25:59:4b:f2:05:b7: bf:d2:26:95:5f:2a:a8:1c:35:d0:30:ca:8a:fa:af:10:30:c5: 4b:40:5a:0a:79:e0:9c:f0:91:74:de:bb:ee:50:b3:7f:13:8a: 41:ba:26:cc:09:e2:f9:f9:38:45:de:d1:e9:c6:96:67:bd:f1: 6c:e4:09:45:f1:da:12:16:51:01:fe:36:ed:02:a3:5d:a8:e0: 07:27:ea:6c:e6:a5:04:6a:a2:93:bf:ed:b7:2f:d3:a5:d4:d8: 8b:7d:23:4e:0f:4e:ce:10:e0:bc:2e:f4:ef:34:96:db:9b:7a: 80:e2:df:27:d3:37:97:69:00:59:9f:62:6f:4a:95:82:8f:2a: a3:25:6d:1b:0d:f6:28:ee:45:d3:34:59:b7:f3:15:26:a5:92: c3:93:52:47:38:d6:47:05:ea:0c:e1:df:21:06:f2:c3:39:11: 68:98:1b:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUwODA4MjAxNjMxWhcNMjUwODE1MjAxNjMxWjAYMRYwFAYD VQQDEw02ODk2NWIxZi1lYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u0GGd8BdLl4ZyflRsPEDdscz12jlz9xstrfJpKKeVOc/4e/AWFe+btS08d3 CVHtxPa59TNVBUViy0WNTqP0VfxptHTwrV/CCEZsPwon2tr001dz3duqC6lg5xUm WVLrGRt+LopCj/x6NJCbaTb3E0cYxMjXnt8DMz41Xorzeh9K5OiG5QqIfDDhxim2 j4kdIBEW8ajtAVIYnlgW6Eov2VgGxkhBXY/KBVWRPZ93Q/rY9jLBBO9RR3nnDoct eCTM0BHIB+mcM7t28YHBYh04r8plE+zoaHThJd63xnnSkkck8pNNurve8zl2dSg4 dEv/6+L/DRiUtYuF2HLtKd4UcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzx9VRu huN8nhSkHJnTqkVTPsxmMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnxmRaR6AF6HKRBHTP3x48t5qODkYYyhYmD4wTtY4UMdrx/94/Gt87 +b37ARL1fUgJzWneCo8U/nwGiU9GwqbXDPXRqCLSfYBMNDeG51Ab78lt0w0lWUvy Bbe/0iaVXyqoHDXQMMqK+q8QMMVLQFoKeeCc8JF03rvuULN/E4pBuibMCeL5+ThF 3tHpxpZnvfFs5AlF8doSFlEB/jbtAqNdqOAHJ+ps5qUEaqKTv+23L9Ol1NiLfSNO D07OEOC8LvTvNJbbm3qA4t8n0zeXaQBZn2JvSpWCjyqjJW0bDfYo7kXTNFm38xUm pZLDk1JHONZHBeoM4d8hBvLDORFomBvm -----END CERTIFICATE-----Generated at Sun Aug 10 13:52:38 2025 by rpki-client