$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft File: xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft (raw, json) Hash identifier: SdDFuCSpmJImajFDyX+HAR425bN0OzvjlF8esG6qdBk= Subject key identifier: 6B:C1:26:6E:5B:7E:31:BB:0B:C3:08:21:AF:3C:0C:7D:25:33:D8:02 Authority key identifier: C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 Certificate issuer: /CN=A91D7E61/serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft Manifest number: 04A6 Signing time: Sat 09 Aug 2025 00:25:13 +0000 Manifest this update: Sat 09 Aug 2025 00:25:13 +0000 Manifest next update: Sat 16 Aug 2025 00:25:13 +0000 Files and hashes: 1: xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl (hash: +ibizfzxYAvyU4otwWRvXAhhm5a5wR3F8KdmyR5iLNQ=) 2: 073DC606407F11EC87F77579C4F9AE02.roa (hash: KhOuOM0Hy/s5cLutXXqmoIGycTqYNiIVdRfd5kJumPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7E61, serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Validity Not Before: Aug 9 00:25:13 2025 GMT Not After : Aug 16 00:25:13 2025 GMT Subject: CN=68969569-8887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:72:8a:90:b2:32:da:d2:87:a1:30:6a:d6: e8:7d:22:7b:78:15:aa:2b:d9:64:62:e5:56:85:92: 16:3b:4b:96:9d:c7:9e:11:39:d6:c2:f7:dd:be:97: 31:3a:72:a0:f8:c9:37:02:50:f7:9a:4e:6f:4f:a1: f5:2a:db:50:10:08:27:a6:71:bd:8c:e4:cf:98:2c: 73:a3:6d:b5:cc:40:d0:ca:e0:47:9c:a7:36:e7:2c: 0f:f0:57:f9:ba:c3:81:94:7c:dd:ec:1a:ab:cc:0c: 14:80:cf:27:73:fe:27:f2:f1:1e:8f:0c:92:5f:dd: db:07:f8:b8:f3:be:57:49:5e:a2:cc:2a:cb:47:bd: b5:69:7a:a5:fb:e2:0f:c4:47:bf:db:2d:4b:64:b0: 21:aa:34:2c:03:85:7d:83:9b:c2:dd:bd:66:56:40: 36:da:2c:68:1f:cc:aa:83:2d:60:fb:df:08:a2:8e: 17:2c:1b:7c:c8:82:73:22:3f:52:42:80:34:db:b0: ce:44:5f:b8:96:be:7c:7d:38:fd:41:f0:30:48:78: d6:b8:7e:9d:22:ba:66:ab:7f:e1:08:37:e5:70:03: 53:38:c6:ad:09:bc:d1:a8:2e:c2:c3:76:99:7d:f9: 69:79:87:b9:ab:15:b4:9b:84:36:74:12:c8:f9:95: 64:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C1:26:6E:5B:7E:31:BB:0B:C3:08:21:AF:3C:0C:7D:25:33:D8:02 X509v3 Authority Key Identifier: keyid:C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:3d:ee:bb:2a:fa:33:5b:ec:ad:56:4f:4b:79:78:36:6f:81: 73:f1:c4:b0:02:96:98:58:09:4a:94:83:19:2b:5e:8f:64:11: 11:63:c5:79:80:6f:45:4b:11:f3:81:e7:a8:5b:6b:c5:00:53: b9:b6:2b:1a:93:c1:82:36:7e:da:1c:33:1b:ea:70:80:06:89: e1:42:a0:25:c0:55:8a:75:9f:6e:b8:c7:5c:26:0d:79:0c:b3: 6c:d4:15:74:40:02:c2:17:2d:65:34:3f:64:eb:22:5f:c4:97: 5a:48:ba:72:94:e4:35:cf:ab:b5:fe:ab:da:70:9b:f8:ee:14: 90:09:bf:a9:98:a6:43:af:72:84:5c:04:53:c9:dd:05:bf:12: 06:ee:bb:93:86:d1:d6:d9:81:1d:23:1e:67:08:b5:4d:63:b1: ac:31:e0:41:cc:6d:4f:31:4f:9e:e7:52:8d:2f:a6:28:d9:44: 4d:85:fe:1b:6b:50:33:29:29:80:bc:a1:37:e9:47:51:d9:24: cc:3a:37:2f:64:3e:7b:7d:31:f2:76:8c:c1:3c:5c:10:4a:49: 20:6c:95:21:95:92:7f:95:07:82:ca:42:26:80:88:d4:36:35: 0b:a2:ab:1f:66:c1:cd:f1:e8:e8:fa:7e:ed:18:fb:e2:4e:7a: 20:7f:dd:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdFNjExMTAvBgNVBAUTKEM2NDE4OUY1OENGNzJDMUY3M0JFQjI0MDdBNTIyN0I2 QTJDRTk2NjEwHhcNMjUwODA5MDAyNTEzWhcNMjUwODE2MDAyNTEzWjAYMRYwFAYD VQQDEw02ODk2OTU2OS04ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wZyipCyMtrSh6EwatbofSJ7eBWqK9lkYuVWhZIWO0uWnceeETnWwvfdvpcx OnKg+Mk3AlD3mk5vT6H1KttQEAgnpnG9jOTPmCxzo221zEDQyuBHnKc25ywP8Ff5 usOBlHzd7BqrzAwUgM8nc/4n8vEejwySX93bB/i4875XSV6izCrLR721aXql++IP xEe/2y1LZLAhqjQsA4V9g5vC3b1mVkA22ixoH8yqgy1g+98Ioo4XLBt8yIJzIj9S QoA027DORF+4lr58fTj9QfAwSHjWuH6dIrpmq3/hCDflcANTOMatCbzRqC7Cw3aZ fflpeYe5qxW0m4Q2dBLI+ZVk1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvBJm5b fjG7C8MIIa88DH0lM9gCMB8GA1UdIwQYMBaAFMZBifWM9ywfc76yQHpSJ7aizpZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0U2MS9GNTk0REM4MDQw N0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xCOXp2ckpBZWxJbnRxTE9s bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrR0o5WXozTEI5enZySkFlbEludHFMT2xtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0U2MS9GNTk0REM4MDQwN0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xC OXp2ckpBZWxJbnRxTE9sbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyPe67KvozW+ytVk9LeXg2b4Fz8cSwApaYWAlKlIMZK16PZBERY8V5 gG9FSxHzgeeoW2vFAFO5tisak8GCNn7aHDMb6nCABonhQqAlwFWKdZ9uuMdcJg15 DLNs1BV0QALCFy1lND9k6yJfxJdaSLpylOQ1z6u1/qvacJv47hSQCb+pmKZDr3KE XARTyd0FvxIG7ruThtHW2YEdIx5nCLVNY7GsMeBBzG1PMU+e51KNL6Yo2URNhf4b a1AzKSmAvKE36UdR2STMOjcvZD57fTHydozBPFwQSkkgbJUhlZJ/lQeCykImgIjU NjULoqsfZsHN8ejo+n7tGPviTnogf91s -----END CERTIFICATE-----Generated at Sat Aug 9 10:46:49 2025 by rpki-client