$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: /ufUA2dgZ/CdHcMV7r9GeGVIajisnSenWJJaX1ILADM= Subject key identifier: 6D:B2:9E:A8:85:5C:1F:DA:20:A5:89:62:89:ED:B9:2F:5A:75:F9:81 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01E2 Signing time: Mon 11 Aug 2025 02:47:56 +0000 Manifest this update: Mon 11 Aug 2025 02:47:56 +0000 Manifest next update: Mon 18 Aug 2025 02:47:56 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: NN6Spgz4x0YLJr21efpura74NAIVoSOFVm803oGg68Q=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Aug 11 02:47:56 2025 GMT Not After : Aug 18 02:47:56 2025 GMT Subject: CN=689959dc-a681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a6:02:2b:38:6d:8c:f0:d7:c9:8b:fc:b5:ce: 8a:91:60:c4:aa:29:1e:4d:d6:fd:1b:7e:2e:d3:27: a0:4c:2b:dc:82:d3:a1:03:83:b7:53:73:b9:f2:4f: 59:c3:a6:0c:a7:04:4c:e1:34:f9:8c:b1:ff:28:cc: f5:74:0b:7d:e3:ac:ba:67:e8:27:79:45:ef:73:71: 84:1b:47:00:df:56:dc:2e:3b:b9:e8:68:f7:5c:28: 99:98:ce:5b:51:f7:4c:17:62:b5:69:05:e1:f4:12: 7c:00:f9:7f:9b:e7:20:41:5f:93:3c:65:29:d9:5e: 6a:db:d5:a2:51:09:52:ec:66:6e:0b:8e:81:d9:04: be:b4:b9:14:ff:9f:4c:57:b1:14:0f:13:dc:09:58: 3a:e9:d4:58:72:96:a1:2b:45:83:ea:9e:21:57:86: f7:2e:a2:04:27:b6:46:67:3b:3a:eb:ca:c7:5d:10: b0:bc:fe:2f:80:fb:bf:fc:37:da:d1:4d:69:9a:29: 88:cb:dd:ae:91:d6:3c:cd:8c:ee:ab:7b:33:c2:b8: 58:46:61:f5:c1:8a:80:a4:b5:7b:93:75:be:23:6b: 18:55:f5:27:f7:b3:b3:ba:e4:fa:7c:48:97:77:db: dd:2f:67:4e:b7:cc:01:c4:67:ec:b3:35:04:52:7c: 12:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B2:9E:A8:85:5C:1F:DA:20:A5:89:62:89:ED:B9:2F:5A:75:F9:81 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:c8:a5:06:c5:b3:fa:ff:bf:c8:6e:3b:a9:5c:7e:ab:ab:14: 25:6a:39:d6:f6:43:52:4c:53:9c:19:10:64:5a:58:01:dc:5d: 3d:6a:2b:be:e1:d4:b1:67:75:a1:05:f8:99:2f:2c:a6:9c:42: e7:14:4b:ee:22:d2:db:71:3a:4b:e8:f3:1a:b3:c5:97:3c:c2: b3:1f:cb:5d:c8:55:f2:73:28:5b:55:f3:d7:20:ee:13:e4:8c: 67:c5:fd:ca:9e:4c:93:07:12:09:b1:a6:07:0a:09:fa:bc:7e: a1:42:e0:29:b5:de:65:32:e7:da:a4:63:c6:c2:74:15:71:b4: f8:42:bb:b7:a0:be:de:4a:c5:fd:81:94:cf:c6:db:4f:29:e3: 23:7e:1b:86:0c:ba:2b:4e:8c:74:49:7a:d0:ec:37:0c:79:26: e3:45:6e:42:85:e5:ed:65:25:c5:bb:d2:fe:a7:3b:0c:8b:06: b8:0c:2d:f7:56:92:de:c6:8c:4b:a5:04:b6:7e:4f:39:49:e5: a0:f6:a8:7c:4a:f9:66:30:d5:c8:13:53:77:04:ea:e4:63:e8: b9:2d:54:e4:0a:09:09:3d:17:b1:a6:bb:5d:0c:98:1e:66:1f: e4:59:2a:1b:ae:eb:7a:dc:67:d7:2a:0d:67:c3:61:3d:30:df: 7a:89:36:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwODExMDI0NzU2WhcNMjUwODE4MDI0NzU2WjAYMRYwFAYD VQQDEw02ODk5NTlkYy1hNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKYCKzhtjPDXyYv8tc6KkWDEqikeTdb9G34u0yegTCvcgtOhA4O3U3O58k9Z w6YMpwRM4TT5jLH/KMz1dAt946y6Z+gneUXvc3GEG0cA31bcLju56Gj3XCiZmM5b UfdMF2K1aQXh9BJ8APl/m+cgQV+TPGUp2V5q29WiUQlS7GZuC46B2QS+tLkU/59M V7EUDxPcCVg66dRYcpahK0WD6p4hV4b3LqIEJ7ZGZzs668rHXRCwvP4vgPu//Dfa 0U1pmimIy92ukdY8zYzuq3szwrhYRmH1wYqApLV7k3W+I2sYVfUn97OzuuT6fEiX d9vdL2dOt8wBxGfsszUEUnwSXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2ynqiF XB/aIKWJYontuS9adfmBMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5yKUGxbP6/7/IbjupXH6rqxQlajnW9kNSTFOcGRBkWlgB3F09aiu+ 4dSxZ3WhBfiZLyymnELnFEvuItLbcTpL6PMas8WXPMKzH8tdyFXycyhbVfPXIO4T 5Ixnxf3KnkyTBxIJsaYHCgn6vH6hQuAptd5lMufapGPGwnQVcbT4Qru3oL7eSsX9 gZTPxttPKeMjfhuGDLorTox0SXrQ7DcMeSbjRW5CheXtZSXFu9L+pzsMiwa4DC33 VpLexoxLpQS2fk85SeWg9qh8SvlmMNXIE1N3BOrkY+i5LVTkCgkJPRexprtdDJge Zh/kWSobrut63GfXKg1nw2E9MN96iTYs -----END CERTIFICATE-----Generated at Mon Aug 11 07:36:43 2025 by rpki-client