$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: xD31XL0J5hW96l+PufO+jPteWEABDZrBgEJSFNL5p2g= Subject key identifier: EA:6D:E0:B3:E2:DD:07:47:92:36:7C:62:67:0D:3E:1F:AE:4F:B3:C1 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 0137 Signing time: Sat 09 Aug 2025 04:53:47 +0000 Manifest this update: Sat 09 Aug 2025 04:53:47 +0000 Manifest next update: Sat 16 Aug 2025 04:53:47 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: Jm7URh2YlAQIrpDFq09p9jX7+UU9S2FrO/3Dn3LlHhs=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Aug 9 04:53:47 2025 GMT Not After : Aug 16 04:53:47 2025 GMT Subject: CN=6896d45b-c823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c0:e4:cb:cd:c1:d3:f9:53:42:f2:7e:f4:93: 93:49:fe:bb:0c:97:f5:1d:45:6f:16:98:31:1c:3c: 42:78:53:77:0d:dc:f3:00:f9:f8:0f:c5:83:e6:fb: 7c:de:52:f9:a2:d6:a8:cd:32:11:c1:70:57:41:62: 7e:8d:94:a6:5b:8e:78:27:bd:5d:1f:75:ed:47:a2: 32:7a:31:a8:25:64:97:bb:a2:4f:b1:81:66:2e:31: f0:04:fa:ae:9c:4d:5f:e2:d7:49:5c:27:fb:8f:82: 97:06:3b:5e:03:00:f9:3e:da:a2:5d:e1:da:2e:de: eb:db:18:0e:bb:20:bb:9d:f8:05:a3:12:28:41:6e: 66:4d:bf:78:57:60:53:3a:a7:4b:ae:46:b1:a5:9f: b5:f1:a6:ce:16:e5:7f:43:22:9f:1c:47:8c:36:b7: 4d:a1:0d:e4:c9:25:23:4a:8e:67:88:ae:74:09:b6: a9:70:c2:ef:be:7a:73:3f:a7:97:03:f7:0a:ef:3d: 26:41:7b:b8:a0:17:c3:c7:1f:0e:7a:df:44:0f:4a: b5:68:1a:eb:9b:d1:90:e0:dc:80:13:8b:a6:8f:f6: a2:bc:66:66:d4:58:16:85:fc:43:a7:38:63:26:fd: e9:fe:98:24:c2:0b:df:33:5e:84:6b:e5:c6:e1:53: e1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6D:E0:B3:E2:DD:07:47:92:36:7C:62:67:0D:3E:1F:AE:4F:B3:C1 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e9:76:75:fb:8b:21:b0:5d:9d:5e:bf:af:40:aa:32:05:73: e7:21:f7:1f:23:47:1c:fc:77:29:40:17:b2:f2:4d:17:5d:e6: 2a:ec:5d:a4:33:38:e0:14:75:fb:ac:6e:6d:7b:57:d0:b0:4a: 9a:d3:66:5f:2d:e9:71:e2:0d:4a:87:4c:43:7e:8d:d4:1f:0f: 42:90:9f:aa:63:2e:21:2e:0a:d6:7b:ca:14:ec:e1:5e:a3:63: cf:de:3f:03:44:54:f6:23:b2:a9:25:26:f4:48:f7:20:3d:34: d5:cb:6d:2b:4c:01:34:d1:db:ba:55:4d:f0:7d:e6:cd:9e:4f: ac:eb:ba:4a:e6:0a:bb:26:b2:75:04:cc:52:f9:42:e8:b5:12: 80:3d:e8:5a:f5:d3:bb:41:8c:79:3c:18:9a:53:49:81:5e:8c: a6:3f:70:0c:13:6d:8d:28:f5:84:1f:7e:9a:d2:b4:4b:2e:2d: 22:48:ce:cb:aa:f0:95:e0:80:da:11:f2:fd:0c:76:2e:5a:29: c7:55:95:50:10:1a:7a:72:fc:6a:fe:d6:8b:1a:f4:cb:ba:4d: a1:a5:10:a9:6b:9f:fd:99:0f:13:85:7f:bc:43:8b:60:a8:de: e0:d4:1d:5b:e9:a6:89:09:99:ec:32:ff:8f:11:5f:ab:35:0d: 5f:6e:ab:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUwODA5MDQ1MzQ3WhcNMjUwODE2MDQ1MzQ3WjAYMRYwFAYD VQQDEw02ODk2ZDQ1Yi1jODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sDky83B0/lTQvJ+9JOTSf67DJf1HUVvFpgxHDxCeFN3DdzzAPn4D8WD5vt8 3lL5otaozTIRwXBXQWJ+jZSmW454J71dH3XtR6IyejGoJWSXu6JPsYFmLjHwBPqu nE1f4tdJXCf7j4KXBjteAwD5PtqiXeHaLt7r2xgOuyC7nfgFoxIoQW5mTb94V2BT OqdLrkaxpZ+18abOFuV/QyKfHEeMNrdNoQ3kySUjSo5niK50CbapcMLvvnpzP6eX A/cK7z0mQXu4oBfDxx8Oet9ED0q1aBrrm9GQ4NyAE4umj/aivGZm1FgWhfxDpzhj Jv3p/pgkwgvfM16Ea+XG4VPhFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpt4LPi 3QdHkjZ8YmcNPh+uT7PBMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD6XZ1+4shsF2dXr+vQKoyBXPnIfcfI0cc/HcpQBey8k0XXeYq7F2k MzjgFHX7rG5te1fQsEqa02ZfLelx4g1Kh0xDfo3UHw9CkJ+qYy4hLgrWe8oU7OFe o2PP3j8DRFT2I7KpJSb0SPcgPTTVy20rTAE00du6VU3wfebNnk+s67pK5gq7JrJ1 BMxS+ULotRKAPeha9dO7QYx5PBiaU0mBXoymP3AME22NKPWEH36a0rRLLi0iSM7L qvCV4IDaEfL9DHYuWinHVZVQEBp6cvxq/taLGvTLuk2hpRCpa5/9mQ8ThX+8Q4tg qN7g1B1b6aaJCZnsMv+PEV+rNQ1fbqur -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:13 2025 by rpki-client