$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft File: XDfN_Mjp6QxBFko5HukDtN5U37E.mft (raw, json) Hash identifier: jZ28atEqzHpyDToGlM8sioMLbRj3v8CeXs/Q5/Tn480= Subject key identifier: B7:A4:88:00:39:7F:57:17:E7:06:89:6E:1D:13:19:2B:E1:CA:89:2E Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft Manifest number: 0662 Signing time: Sun 10 Aug 2025 22:37:52 +0000 Manifest this update: Sun 10 Aug 2025 22:37:52 +0000 Manifest next update: Sun 17 Aug 2025 22:37:52 +0000 Files and hashes: 1: XDfN_Mjp6QxBFko5HukDtN5U37E.crl (hash: ZuFWLCBEqjKG/af2Yx2/KdpXJEAIfKkiGwHnKrPd2C0=) 2: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (hash: NSWzyjE2HPsrPxuhTouX2YNe98sTsio9BMgnAVmwnyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA, serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: Aug 10 22:37:52 2025 GMT Not After : Aug 17 22:37:52 2025 GMT Subject: CN=68991f40-38cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:de:88:fe:87:98:5e:ee:04:a0:98:53:d8:c7: d9:75:81:ac:7b:a7:0b:d5:19:71:4a:a8:2d:02:65: 67:8e:1a:06:1f:c4:ba:18:2c:3f:8a:b6:7e:af:69: 42:54:39:44:d1:95:e6:0c:c0:f0:4c:6e:6e:56:ee: f0:f6:0c:97:be:73:29:a6:41:7b:60:87:60:7a:b2: ed:08:c2:5c:5d:bc:43:ed:5c:66:fa:6a:1f:0b:8f: 6c:c7:e0:6c:eb:8c:8d:a2:dd:b2:a8:0d:24:63:99: a9:ef:61:17:46:d5:e3:e7:ff:41:ed:73:73:fa:1d: 58:b1:67:af:b3:07:d6:3b:75:e8:0d:34:03:25:e0: 0b:15:73:07:4a:c3:02:2c:f0:ea:c4:d7:18:01:18: a5:24:ac:57:f9:10:bf:c0:6a:05:1c:c2:33:91:8f: 8a:c8:6d:89:00:9c:64:05:f7:35:19:44:fe:ad:f2: 88:7b:e3:cc:33:fd:fe:81:67:e2:f8:2b:3e:38:1a: 31:79:f2:1c:d0:c7:79:e2:a9:31:a9:d0:7c:33:07: 7b:ff:58:8d:6f:01:b2:34:21:83:50:28:bd:58:d6: 36:01:64:a2:9c:bf:07:05:50:58:3d:5e:f4:82:98: 0d:46:ea:c4:95:a4:25:14:a4:27:ea:65:05:f9:02: 8a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A4:88:00:39:7F:57:17:E7:06:89:6E:1D:13:19:2B:E1:CA:89:2E X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:95:b8:86:e5:b8:c5:3e:03:b3:62:68:77:75:13:e9:c2:70: 81:6e:08:6e:b7:a2:f4:57:07:65:e5:32:1a:48:51:57:23:04: 2d:d6:93:0b:f3:7f:37:58:f0:d2:47:f1:dd:aa:30:68:2b:23: 70:c8:85:78:8e:91:a6:4d:83:a2:08:dc:37:24:f3:90:c3:6e: a9:be:de:97:c1:d0:64:81:ce:a9:d5:4a:cf:c6:2e:b2:f6:bd: ba:5d:55:0d:38:79:d3:02:ce:7b:de:9d:e7:dc:d6:87:05:7f: 3c:94:12:70:2c:2c:7d:dc:e7:c3:10:54:d8:fa:80:b8:97:02: 18:44:45:6f:65:b6:88:96:18:87:22:68:38:2a:93:bd:72:4a: 67:9c:c2:80:94:d3:1f:41:0f:e4:6d:3b:6a:02:ee:92:5d:58: b6:db:01:28:64:9c:7f:78:11:df:07:a9:74:96:21:f6:7e:f8: 09:f4:aa:bb:a5:03:18:ba:fa:3d:6f:6c:31:ce:3c:51:7a:6b: 5a:33:f6:62:5e:bb:fe:0d:c1:86:be:9e:38:84:a8:cc:86:ce: e8:bf:cc:05:14:97:ad:11:cc:6d:49:0e:02:70:1d:29:cb:2b: 16:31:ba:15:e3:1f:d8:8a:90:f5:a9:14:28:86:ef:68:3d:cb: 71:5f:fc:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjUwODEwMjIzNzUyWhcNMjUwODE3MjIzNzUyWjAYMRYwFAYD VQQDEw02ODk5MWY0MC0zOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN6I/oeYXu4EoJhT2MfZdYGse6cL1RlxSqgtAmVnjhoGH8S6GCw/irZ+r2lC VDlE0ZXmDMDwTG5uVu7w9gyXvnMppkF7YIdgerLtCMJcXbxD7Vxm+mofC49sx+Bs 64yNot2yqA0kY5mp72EXRtXj5/9B7XNz+h1YsWevswfWO3XoDTQDJeALFXMHSsMC LPDqxNcYARilJKxX+RC/wGoFHMIzkY+KyG2JAJxkBfc1GUT+rfKIe+PMM/3+gWfi +Cs+OBoxefIc0Md54qkxqdB8Mwd7/1iNbwGyNCGDUCi9WNY2AWSinL8HBVBYPV70 gpgNRurElaQlFKQn6mUF+QKK4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLekiAA5 f1cX5waJbh0TGSvhyokuMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUVCQS84Mzk0RTI1MDkxRUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZR eEJGa281SHVrRHRONVUzN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7lbiG5bjFPgOzYmh3dRPpwnCBbghut6L0Vwdl5TIaSFFXIwQt1pML 8383WPDSR/HdqjBoKyNwyIV4jpGmTYOiCNw3JPOQw26pvt6XwdBkgc6p1UrPxi6y 9r26XVUNOHnTAs573p3n3NaHBX88lBJwLCx93OfDEFTY+oC4lwIYREVvZbaIlhiH Img4KpO9ckpnnMKAlNMfQQ/kbTtqAu6SXVi22wEoZJx/eBHfB6l0liH2fvgJ9Kq7 pQMYuvo9b2wxzjxRemtaM/ZiXrv+DcGGvp44hKjMhs7ov8wFFJetEcxtSQ4CcB0p yysWMboV4x/YipD1qRQohu9oPctxX/zp -----END CERTIFICATE-----Generated at Mon Aug 11 05:58:39 2025 by rpki-client