$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: y7XziAK/A4amtIsO3/koUEdiHEM39XGHX9GKA2zIId4= Subject key identifier: 70:AF:E1:78:CD:F3:95:89:38:BE:02:84:34:64:99:29:81:F7:C2:C9 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E5C Signing time: Mon 04 Aug 2025 17:57:09 +0000 Manifest this update: Mon 04 Aug 2025 17:57:08 +0000 Manifest next update: Mon 11 Aug 2025 17:57:08 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: UDtJkd+Z3Bfp64MzT+Zj5kICJ2bRbA6K8Dn1cB/jxJk=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 17:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Aug 4 17:57:08 2025 GMT Not After : Aug 11 17:57:08 2025 GMT Subject: CN=6890f475-d51b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:b3:0f:ec:26:6e:d8:e7:74:f0:29:f4:c2: 58:20:39:09:f5:79:e1:b8:a4:df:26:bb:5f:f5:08: e9:f5:8b:93:32:69:75:44:79:e6:21:53:a3:94:0d: 3e:50:8b:98:8a:a4:9e:44:58:8a:6a:03:62:f6:43: 44:88:35:d5:15:cc:38:21:f6:2f:be:64:59:9f:ff: 33:73:8a:1d:51:9b:96:9f:e6:a4:ad:28:87:e7:0f: b5:38:a7:fa:ce:72:e6:8c:58:3b:5e:4b:31:e2:bb: 00:55:25:c6:86:6e:d4:f0:30:5d:6b:0f:e5:d0:a2: 60:29:e5:0a:2f:bb:ef:99:5f:7e:a8:ae:f3:14:1d: 4f:01:cd:cb:55:57:da:5e:f7:5d:fd:3a:b4:57:c7: f3:4b:34:b0:b9:c3:64:9e:28:2d:46:68:06:50:74: 36:d1:f1:43:67:a7:89:a0:d9:c3:0f:0c:2c:8b:85: 3c:7a:e2:a7:82:d4:0b:74:87:81:a8:1d:27:74:4d: 19:ae:d8:72:ed:f3:0f:74:3e:0e:03:de:cf:0a:b3: e3:77:26:09:a1:3a:bc:c1:a2:e6:de:d2:3e:64:4b: c4:3c:89:53:a9:b2:c0:d9:17:35:68:16:a6:ac:6a: 9b:e6:45:48:b7:fe:9f:9d:29:4e:60:23:b7:be:e8: c5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AF:E1:78:CD:F3:95:89:38:BE:02:84:34:64:99:29:81:F7:C2:C9 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:4c:06:a1:c3:df:35:16:2d:06:8c:d9:f7:d0:5f:31:fc:96: b0:a4:5d:5a:fd:73:50:b4:32:29:22:60:18:03:71:11:52:50: 88:36:a3:e9:d0:55:8d:9a:31:9c:51:34:74:76:1e:67:18:02: ac:f1:d3:d3:ef:93:0c:e4:bc:09:fe:86:d9:80:20:a7:f9:a0: f4:62:12:5d:2f:4d:c0:c9:f5:a6:f9:cc:5e:ab:65:7d:89:96: 0e:b9:56:7d:e1:b9:9b:70:f1:1c:93:f7:86:66:82:67:61:a9: 00:86:6e:07:00:2a:48:66:bd:55:48:53:df:77:2f:9f:cc:02: 5b:b9:ab:68:68:27:31:1f:c6:3f:fe:97:34:4d:c8:3e:1e:fe: 18:a2:bc:a2:18:e8:6d:5d:2b:e8:b3:94:e2:e5:ce:f2:d0:16: 35:13:79:2a:0f:20:2a:fa:41:fd:94:5b:3a:90:f7:81:43:d7: 91:b0:23:05:4c:ed:91:e7:37:9f:f4:96:3b:6d:7a:9e:44:24: 5f:42:09:c6:d6:0b:82:58:21:2a:25:38:73:50:dc:6e:be:ff: ba:cc:f6:d7:ed:0f:7b:18:25:b2:93:45:a6:54:99:38:51:3a: 46:b7:c0:23:0d:e5:b0:d1:d3:c2:c8:a1:f0:3d:c0:3c:91:c1: 94:c6:20:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUwODA0MTc1NzA4WhcNMjUwODExMTc1NzA4WjAYMRYwFAYD VQQDEw02ODkwZjQ3NS1kNTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApImzD+wmbtjndPAp9MJYIDkJ9XnhuKTfJrtf9Qjp9YuTMml1RHnmIVOjlA0+ UIuYiqSeRFiKagNi9kNEiDXVFcw4IfYvvmRZn/8zc4odUZuWn+akrSiH5w+1OKf6 znLmjFg7Xksx4rsAVSXGhm7U8DBdaw/l0KJgKeUKL7vvmV9+qK7zFB1PAc3LVVfa Xvdd/Tq0V8fzSzSwucNknigtRmgGUHQ20fFDZ6eJoNnDDwwsi4U8euKngtQLdIeB qB0ndE0Zrthy7fMPdD4OA97PCrPjdyYJoTq8waLm3tI+ZEvEPIlTqbLA2Rc1aBam rGqb5kVIt/6fnSlOYCO3vujFvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCv4XjN 85WJOL4ChDRkmSmB98LJMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjTAahw981Fi0GjNn30F8x/JawpF1a/XNQtDIpImAYA3ERUlCINqPp 0FWNmjGcUTR0dh5nGAKs8dPT75MM5LwJ/obZgCCn+aD0YhJdL03AyfWm+cxeq2V9 iZYOuVZ94bmbcPEck/eGZoJnYakAhm4HACpIZr1VSFPfdy+fzAJbuatoaCcxH8Y/ /pc0Tcg+Hv4YoryiGOhtXSvos5Ti5c7y0BY1E3kqDyAq+kH9lFs6kPeBQ9eRsCMF TO2R5zef9JY7bXqeRCRfQgnG1guCWCEqJThzUNxuvv+6zPbX7Q97GCWyk0WmVJk4 UTpGt8AjDeWw0dPCyKHwPcA8kcGUxiC5 -----END CERTIFICATE-----Generated at Wed Aug 6 13:10:29 2025 by rpki-client