$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: dvKVjnV19ejakI1ljZbb5rGMh7VV5CJV/nM5XWT6mt8= Subject key identifier: 0F:88:14:D9:91:EE:E7:E0:BE:38:9B:62:FE:BE:FA:09:70:87:D1:53 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: BD Signing time: Sat 09 Aug 2025 06:21:24 +0000 Manifest this update: Sat 09 Aug 2025 06:21:23 +0000 Manifest next update: Sat 16 Aug 2025 06:21:23 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: ZFp87yhFzQ3TrAGT5IwJ5xI3SqH3h6g/rdbfTXY4tDY=) 2: D69C342850E311F098697E1BC4F9AE02.roa (hash: BsgTCGS6ZY9wo4DRbXqJWgsBM56PxcgPxCxnw/1lRZA=) 3: EA438F3050E311F08CF2971BC4F9AE02.roa (hash: IjL6cu6bZiACksELIxEiXf/UtBVghk3xr9SoGwHtz+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Aug 9 06:21:23 2025 GMT Not After : Aug 16 06:21:23 2025 GMT Subject: CN=6896e8e3-2cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:be:df:5c:76:19:a1:26:7b:6c:c6:f2:ea:7f: 34:5c:49:77:58:5a:96:7e:e6:21:5e:a5:9c:46:41: 23:05:3e:11:1d:0b:78:81:f0:94:8f:a2:57:1b:f1: 93:33:d6:e2:cf:a2:7f:90:c6:f0:ba:f4:c5:d1:51: aa:83:77:a7:0a:e0:be:e0:1c:77:21:cc:88:37:81: a9:a4:c4:de:84:36:dc:41:31:fe:b4:4d:f0:07:bf: 21:45:64:7b:d2:6e:df:59:db:17:6e:24:e2:b5:45: c3:bc:22:ff:35:01:09:9a:40:7c:b2:1b:ca:ef:8b: f4:3e:39:d0:e0:4d:75:de:fb:48:e7:d1:06:82:b3: 9f:50:8f:8b:c7:32:c5:0d:a7:ae:e9:ef:03:d0:76: c1:c6:b4:5c:06:60:00:23:21:27:2d:43:1f:47:30: 97:1a:34:66:f2:bb:21:fb:b2:0c:d5:b1:8e:d4:97: 6b:64:09:88:e7:c8:1a:9b:51:e7:79:21:0c:34:44: 9c:86:f0:dc:c9:5d:7d:6e:65:de:76:63:0e:5a:8d: 5f:ca:a4:ed:64:cf:e3:67:46:d4:7f:01:0e:18:c3: 68:ad:7b:15:04:5f:17:59:4c:06:e7:e4:87:5a:f6: 01:c1:48:52:74:27:a1:6a:73:43:0b:60:b1:e6:b0: 5c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:88:14:D9:91:EE:E7:E0:BE:38:9B:62:FE:BE:FA:09:70:87:D1:53 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:4d:65:ae:78:90:d5:31:ee:a5:bd:4f:2f:0f:78:0a:97:c6: e9:5f:0f:4f:b9:94:3f:54:05:0d:ae:d3:38:14:9f:f5:1e:5d: 08:64:a9:91:5f:6a:de:67:eb:fe:bc:a2:25:a6:26:1e:55:a1: f9:73:9e:28:61:5a:58:77:2b:8e:27:f5:38:d7:3f:c9:5f:0b: b5:1f:69:33:d1:45:96:cb:d5:20:11:60:0c:bc:e1:f4:70:32: 80:86:0f:88:86:d0:c7:52:a7:1c:8b:40:be:3d:29:52:56:63: 3d:b3:14:53:5b:b2:4b:16:c4:6e:64:0a:2d:e7:a2:2b:7d:e2: ea:3c:3e:a3:e6:1f:38:32:df:f2:14:26:fc:08:37:87:b7:44: 6b:22:e6:12:b7:0e:b9:d6:a0:af:2c:17:f0:70:7f:f2:36:34: 9b:a4:e8:79:17:26:92:56:5c:bd:3f:ff:a4:a8:9b:d5:2a:7d: 4e:47:41:be:2e:0c:ec:ae:d5:cf:95:a1:29:8d:68:98:06:5f: 5a:3d:88:4f:6a:ce:64:1f:df:ce:22:ed:57:85:a5:65:bc:cf: 83:03:b1:9f:b5:f4:92:18:32:a1:1a:76:fd:c0:ed:74:ca:20: a2:9c:3b:37:30:76:7a:a0:9c:7a:77:d6:40:cc:0b:b7:cb:ae: be:04:fa:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwODA5MDYyMTIzWhcNMjUwODE2MDYyMTIzWjAYMRYwFAYD VQQDEw02ODk2ZThlMy0yY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA077fXHYZoSZ7bMby6n80XEl3WFqWfuYhXqWcRkEjBT4RHQt4gfCUj6JXG/GT M9biz6J/kMbwuvTF0VGqg3enCuC+4Bx3IcyIN4GppMTehDbcQTH+tE3wB78hRWR7 0m7fWdsXbiTitUXDvCL/NQEJmkB8shvK74v0PjnQ4E113vtI59EGgrOfUI+LxzLF Daeu6e8D0HbBxrRcBmAAIyEnLUMfRzCXGjRm8rsh+7IM1bGO1JdrZAmI58gam1Hn eSEMNESchvDcyV19bmXedmMOWo1fyqTtZM/jZ0bUfwEOGMNorXsVBF8XWUwG5+SH WvYBwUhSdCehanNDC2Cx5rBclwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+IFNmR 7ufgvjibYv6++glwh9FTMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpTWWueJDVMe6lvU8vD3gKl8bpXw9PuZQ/VAUNrtM4FJ/1Hl0IZKmR X2reZ+v+vKIlpiYeVaH5c54oYVpYdyuOJ/U41z/JXwu1H2kz0UWWy9UgEWAMvOH0 cDKAhg+IhtDHUqcci0C+PSlSVmM9sxRTW7JLFsRuZAot56IrfeLqPD6j5h84Mt/y FCb8CDeHt0RrIuYStw651qCvLBfwcH/yNjSbpOh5FyaSVly9P/+kqJvVKn1OR0G+ LgzsrtXPlaEpjWiYBl9aPYhPas5kH9/OIu1XhaVlvM+DA7GftfSSGDKhGnb9wO10 yiCinDs3MHZ6oJx6d9ZAzAu3y66+BPqJ -----END CERTIFICATE-----Generated at Sat Aug 9 22:49:17 2025 by rpki-client