$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: fsjymJjJupMJQFNMW11X0YGcOwKEiFcaG0ks/pxfrrY= Subject key identifier: 18:9B:C9:46:4E:0D:3B:83:00:3D:92:D3:45:AF:E0:3B:7D:30:A0:E1 Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 0452 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 0426 Signing time: Sat 09 Aug 2025 00:56:11 +0000 Manifest this update: Sat 09 Aug 2025 00:56:10 +0000 Manifest next update: Sat 16 Aug 2025 00:56:10 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: sHQcO0pPgr8yra46wzrrz3eQoD7YAbKJd5ZsxXWDH8Y=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: JDhvBxRe3WYJ1iKQKnxqCUD2z2C21JJ9nqsXsWXBpYM=) 3: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: QNRRPIEXpBXbzOjvogyb/5EofzlDIH5pOqmalYkDTHw=) 4: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0=) 5: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: QSRbYccf6zSEHa0HsQVgKCVz5nS1O8L5U8Elot2Xz40=) 6: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478=) 7: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU=) 8: 5F14A15442D111EF8424E65BC4F9AE02.roa (hash: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs=) 9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7KI+xGonwsZRICria/4CZwlDNlRIuXU/wVts22Crf9U=) 10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: fPCfFsxMUqOAvLJmkWjc+RPsiCNLjQ233XGNCqOiY/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Aug 9 00:56:10 2025 GMT Not After : Aug 16 00:56:10 2025 GMT Subject: CN=68969caa-eb05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b2:28:ac:d5:2c:c5:8b:6b:41:59:3a:d0:28: 33:59:97:56:db:0b:36:3a:a9:f1:7f:66:c3:70:b3: b9:a8:54:ab:6c:79:a2:be:fd:de:97:8d:b6:cd:e0: 25:2a:60:c0:12:e1:30:a9:3c:a7:ad:1b:9b:ba:01: bb:ed:76:e6:43:3a:36:e4:53:ad:01:9b:ac:db:38: ab:9b:53:77:f2:65:96:ba:92:b2:ac:65:26:c5:08: 01:a6:e8:c1:e7:63:f6:f9:9b:5e:2b:ba:ad:20:da: 44:54:59:22:69:73:ab:37:71:6e:43:30:a2:7a:62: 16:99:d0:30:3b:6b:47:9f:84:67:a5:3c:6b:58:16: 83:04:8f:81:08:c5:1a:5c:21:25:ad:50:2b:65:58: ae:f6:c9:69:48:cd:c8:ea:4c:60:7e:e2:d3:b3:00: 4c:7f:93:47:1e:0c:2c:7c:16:42:e8:94:fd:ab:6f: c2:43:b3:a9:04:da:cd:3a:43:5c:a2:4a:4f:25:f9: ab:ad:61:b0:91:53:d0:3b:57:05:ef:84:7b:c0:73: 6e:90:03:7e:f6:a9:64:80:2a:5b:8d:50:73:8c:41: d2:c2:ef:23:20:f7:43:df:6a:d8:61:94:eb:e4:ba: ea:74:07:2e:3c:f8:6f:da:ab:0f:9d:25:11:1d:fc: a6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9B:C9:46:4E:0D:3B:83:00:3D:92:D3:45:AF:E0:3B:7D:30:A0:E1 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:22:7e:84:d2:97:43:62:46:66:4e:68:b5:13:80:d4:11:3d: 7b:24:39:4d:59:3d:5f:11:4a:4f:f5:a5:8b:96:89:ce:cb:83: 23:81:4c:66:0c:64:5e:3e:e8:08:1b:b4:ef:63:97:3a:2a:22: db:c8:29:d2:74:13:6f:79:5a:6e:3f:7f:1d:fe:44:bb:5c:40: 95:1f:57:96:f2:4c:3b:5c:91:94:5d:05:63:8c:a6:e2:f0:48: 5c:83:d4:b5:c9:0b:08:7f:7a:d1:e2:5f:19:8b:eb:b3:e7:33: d8:ae:e2:ed:e1:7d:cd:e5:fb:5d:ac:d1:f7:5d:ff:e0:5e:2d: e9:40:f8:fd:10:27:59:d2:90:25:50:b5:e9:81:16:45:ff:2d: 8e:e2:a2:ac:54:42:34:7c:90:96:fa:1c:61:7d:3e:65:0d:5e: d2:b3:02:e3:10:35:a4:13:98:57:54:7d:80:38:22:75:14:e1: 29:3c:b2:e0:cd:b4:19:bb:85:2e:9c:4c:1b:02:85:de:3f:58: 5a:f8:12:49:62:bd:f7:19:d6:fb:79:60:0a:2f:ab:3c:20:84: 54:3e:8c:95:91:81:8f:29:0d:00:89:22:94:b6:35:0b:b7:53: c8:65:31:74:b9:64:74:24:7b:a9:dd:3e:fa:9c:58:02:d1:1b: 13:92:40:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwODA5MDA1NjEwWhcNMjUwODE2MDA1NjEwWjAYMRYwFAYD VQQDEw02ODk2OWNhYS1lYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7IorNUsxYtrQVk60CgzWZdW2ws2Oqnxf2bDcLO5qFSrbHmivv3el422zeAl KmDAEuEwqTynrRubugG77XbmQzo25FOtAZus2zirm1N38mWWupKyrGUmxQgBpujB 52P2+ZteK7qtINpEVFkiaXOrN3FuQzCiemIWmdAwO2tHn4RnpTxrWBaDBI+BCMUa XCElrVArZViu9slpSM3I6kxgfuLTswBMf5NHHgwsfBZC6JT9q2/CQ7OpBNrNOkNc okpPJfmrrWGwkVPQO1cF74R7wHNukAN+9qlkgCpbjVBzjEHSwu8jIPdD32rYYZTr 5LrqdAcuPPhv2qsPnSURHfympwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBibyUZO DTuDAD2S00Wv4Dt9MKDhMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfIn6E0pdDYkZmTmi1E4DUET17JDlNWT1fEUpP9aWLlonOy4MjgUxm DGRePugIG7TvY5c6KiLbyCnSdBNveVpuP38d/kS7XECVH1eW8kw7XJGUXQVjjKbi 8Ehcg9S1yQsIf3rR4l8Zi+uz5zPYruLt4X3N5ftdrNH3Xf/gXi3pQPj9ECdZ0pAl ULXpgRZF/y2O4qKsVEI0fJCW+hxhfT5lDV7SswLjEDWkE5hXVH2AOCJ1FOEpPLLg zbQZu4UunEwbAoXeP1ha+BJJYr33Gdb7eWAKL6s8IIRUPoyVkYGPKQ0AiSKUtjUL t1PIZTF0uWR0JHup3T76nFgC0RsTkkDC -----END CERTIFICATE-----Generated at Sat Aug 9 02:46:15 2025 by rpki-client