$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: 0dtwCrEEYfdAmj7kLpu6aokZCdQ0kr68a40/FVuh7MQ= Subject key identifier: C6:EC:F4:C6:FE:D7:48:F8:77:90:AF:39:5E:D2:2D:5D:2C:2E:39:93 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 09F3 Signing time: Fri 08 Aug 2025 20:12:56 +0000 Manifest this update: Fri 08 Aug 2025 20:12:56 +0000 Manifest next update: Fri 15 Aug 2025 20:12:56 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: jC2540QePAYJTdxpqPNnqm0JLOvNFMyx0Zy0DwtF7/0=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2560 (0xa00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Aug 8 20:12:56 2025 GMT Not After : Aug 15 20:12:56 2025 GMT Subject: CN=68965a48-8239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d1:c1:d5:cf:f8:eb:c8:5d:10:f3:4f:c2:79: 18:90:fd:7d:fa:8b:e2:ef:e2:ee:c3:b7:79:8b:d2: 0e:d0:94:a6:60:4d:63:00:c9:09:33:30:b6:19:cf: 8b:85:17:4d:66:20:6b:5a:7e:3c:94:8c:70:b5:d6: b4:15:3e:b6:42:f0:9c:b3:d9:27:d7:35:53:77:50: e7:f4:86:43:ec:ef:17:a4:d1:7d:97:a5:78:f7:5f: f3:49:8d:eb:1a:61:1e:03:5a:62:0d:26:b2:4a:cf: fc:c5:bf:0f:d2:9d:37:53:97:e2:6d:cc:59:30:9e: ee:82:a6:58:49:d2:90:a1:52:ce:96:66:db:cf:fd: 75:1b:64:0f:03:ee:91:06:78:71:f4:17:71:4e:57: 3b:5c:91:55:cb:4f:45:c2:80:25:37:39:ae:28:7b: f1:52:f8:8e:a2:a1:25:b8:61:05:9a:6b:da:72:c6: ad:02:61:65:05:37:db:10:9a:50:35:15:21:2b:93: 51:ef:4a:f2:b6:a5:27:5e:ce:6a:f9:04:ed:e7:10: 40:6e:f0:7c:99:1e:47:e0:47:d6:94:c5:d7:b0:aa: 12:88:51:07:13:41:cf:e8:12:00:b1:35:a1:ee:71: 1c:3f:2b:cc:fc:b9:13:b6:3d:1f:58:a7:cb:ea:26: ee:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EC:F4:C6:FE:D7:48:F8:77:90:AF:39:5E:D2:2D:5D:2C:2E:39:93 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:5a:e7:83:7f:b7:03:14:af:a0:e6:bb:a9:55:6a:bc:3b:66: 3d:fb:70:90:f7:6e:e9:26:7f:c1:d3:cb:17:71:fa:7d:4d:1a: fb:30:3e:32:3d:76:ef:c6:4f:81:ed:8f:18:2c:c5:83:21:75: cb:79:9a:11:a0:7e:94:cd:29:2f:37:0e:42:1a:f9:df:dc:3d: ae:bf:7f:e9:ef:96:e2:63:20:7d:9f:07:76:e4:b4:70:dd:7d: a1:7c:74:25:95:21:f1:85:87:df:de:eb:29:f7:f4:9c:24:19: e4:93:98:74:0f:ff:3f:c6:86:1d:fb:cc:78:d3:25:11:eb:f9: d9:fe:f1:68:08:4e:98:f5:58:51:5c:f7:fd:5b:96:75:e6:20: 80:cb:70:3f:e8:3f:62:85:7a:bd:4a:2f:27:cb:74:06:7f:33: ec:dd:ca:a0:db:8c:1c:bc:86:e5:1f:fb:c0:16:73:4c:16:26: be:09:3e:c5:c4:fa:16:3c:de:f7:93:ff:51:ec:9a:d6:0d:64: d3:f5:55:0f:6d:24:eb:58:92:9e:8e:e5:c6:78:4f:79:e7:dd: 8d:76:4e:a9:f2:fa:d4:4c:88:e2:01:7f:97:f8:e2:77:51:26: 3a:ff:0d:38:6a:1e:b3:78:aa:d6:42:25:c9:5b:4d:ab:fb:54: 56:5f:64:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUwODA4MjAxMjU2WhcNMjUwODE1MjAxMjU2WjAYMRYwFAYD VQQDEw02ODk2NWE0OC04MjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dHB1c/468hdEPNPwnkYkP19+ovi7+Luw7d5i9IO0JSmYE1jAMkJMzC2Gc+L hRdNZiBrWn48lIxwtda0FT62QvCcs9kn1zVTd1Dn9IZD7O8XpNF9l6V491/zSY3r GmEeA1piDSaySs/8xb8P0p03U5fibcxZMJ7ugqZYSdKQoVLOlmbbz/11G2QPA+6R Bnhx9BdxTlc7XJFVy09FwoAlNzmuKHvxUviOoqEluGEFmmvacsatAmFlBTfbEJpQ NRUhK5NR70rytqUnXs5q+QTt5xBAbvB8mR5H4EfWlMXXsKoSiFEHE0HP6BIAsTWh 7nEcPyvM/LkTtj0fWKfL6ibufQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbs9Mb+ 10j4d5CvOV7SLV0sLjmTMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoWueDf7cDFK+g5rupVWq8O2Y9+3CQ927pJn/B08sXcfp9TRr7MD4y PXbvxk+B7Y8YLMWDIXXLeZoRoH6UzSkvNw5CGvnf3D2uv3/p75biYyB9nwd25LRw 3X2hfHQllSHxhYff3usp9/ScJBnkk5h0D/8/xoYd+8x40yUR6/nZ/vFoCE6Y9VhR XPf9W5Z15iCAy3A/6D9ihXq9Si8ny3QGfzPs3cqg24wcvIblH/vAFnNMFia+CT7F xPoWPN73k/9R7JrWDWTT9VUPbSTrWJKejuXGeE95592Ndk6p8vrUTIjiAX+X+OJ3 USY6/w04ah6zeKrWQiXJW02r+1RWX2Ts -----END CERTIFICATE-----Generated at Sun Aug 10 16:04:54 2025 by rpki-client