$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft File: xvdY7N3EybD3LwZcNa1UaXQycRs.mft (raw, json) Hash identifier: RERDBdrrTMK4jxIy/o75TBRtVLG+8G39q5AfYgk45OM= Subject key identifier: 79:E3:23:A4:5D:D8:64:9E:D3:33:FC:4E:F6:83:38:08:81:C1:57:EF Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft Manifest number: 5F Signing time: Mon 11 Aug 2025 07:29:56 +0000 Manifest this update: Mon 11 Aug 2025 07:29:56 +0000 Manifest next update: Mon 18 Aug 2025 07:29:56 +0000 Files and hashes: 1: xvdY7N3EybD3LwZcNa1UaXQycRs.crl (hash: UM6ua+YaNmk6adjgnHqudlc3psJAV6uoVY/Vtco1k5w=) 2: D2E899F86EB511F0A3A63A59C4F9AE02.roa (hash: 0dFbZ0ducL2EHPg1wlqAHlDGhzD129B1kp1qJTYRuTU=) 3: 2C0E544C6EB511F094E66857C4F9AE02.roa (hash: MFMadZ9hIQ4pKDfnggH43mNknioivrdN+SzVsH0zBtQ=) 4: 917D3A184BED11F0A2F7CC21C4F9AE02.roa (hash: IYpTiwoDdKk+DKwv65zZ7BTxOeFfDIMdePJWFd5JpGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Aug 11 07:29:56 2025 GMT Not After : Aug 18 07:29:56 2025 GMT Subject: CN=68999bf4-ed6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c9:6f:c2:d1:a3:21:22:18:84:6e:34:88:68: c2:e1:0e:67:14:72:c8:62:27:fc:03:c0:c4:e0:31: 22:63:ea:f8:5e:e8:d1:72:bd:15:24:e1:51:22:8d: 62:df:23:eb:9b:aa:71:f2:0e:b2:83:65:f7:ab:84: b2:dc:20:6a:cd:5b:ea:1c:6d:d6:db:f7:83:fc:f6: 70:25:20:0a:16:4f:e9:8b:d7:56:b9:eb:cd:3c:0d: 7f:e0:f6:52:d7:c1:9f:fe:af:1b:87:d1:d5:4f:65: 3b:4c:c2:48:b0:27:6b:d9:7f:0b:89:1f:e7:50:05: 13:d5:e2:d3:5c:c9:c6:ae:de:85:ba:37:2e:66:95: 87:06:f1:3d:a3:cd:77:85:57:f8:cf:ff:b9:ce:20: a0:97:60:71:2b:66:fa:69:4e:5b:8a:43:8d:71:f6: aa:5f:c0:38:d8:af:d7:09:a5:5f:35:a8:75:19:4e: 9e:92:21:4a:48:3c:82:dd:9e:06:00:6b:20:5c:70: 84:d2:9f:9d:10:7d:c1:b8:93:e6:fb:10:cc:40:ac: 38:54:81:d3:d7:4e:56:6a:ca:b1:a8:50:c3:8a:a9: 72:f9:65:87:ee:51:2c:a4:8a:1f:36:b3:5f:f4:67: 7c:ed:e9:b9:69:9b:61:b7:5d:d8:85:32:8f:0e:a6: 8b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E3:23:A4:5D:D8:64:9E:D3:33:FC:4E:F6:83:38:08:81:C1:57:EF X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:9b:61:68:5b:2b:d3:3d:97:88:7a:59:6f:a6:28:3d:92:7a: 53:e2:93:0f:60:9f:c8:4a:9f:2f:80:57:3c:ed:9c:6c:d9:9c: 0d:3b:e6:e9:e1:0f:15:d8:69:29:f6:7e:64:ea:f7:d5:b4:f3: 28:e8:1e:46:da:2d:40:cf:6a:7b:cf:56:73:a0:e8:c9:36:eb: 68:0b:ce:3d:47:d8:46:d7:e9:e8:e3:83:6c:62:17:cd:b3:d2: db:69:3f:20:67:8e:13:39:3b:56:4c:11:8f:3c:04:dc:71:3c: 50:38:29:b7:dd:c1:3d:89:f6:39:fd:3c:d0:e5:26:ef:4e:84: 22:a0:f5:0b:1f:01:bc:65:24:b4:e0:a9:df:55:fd:00:80:be: ad:68:48:70:04:84:06:11:6b:b3:33:82:e1:96:13:22:9f:f1: 14:a4:60:7d:3c:a9:2d:20:b4:fa:79:0e:7c:68:33:2a:7f:57: 75:ca:20:52:d8:18:be:11:e3:d6:80:78:fc:91:8f:ed:11:93: fe:ae:7c:eb:77:b9:ce:dd:41:89:b9:90:7e:98:8a:9d:67:bd: ff:3e:05:6e:09:5e:7e:56:d0:c4:f4:3b:01:aa:ce:6b:0a:45: 77:06:7a:c3:68:98:2a:c6:1a:68:d5:ed:9c:e9:13:16:ee:1a: 26:18:0b:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OERGNTExMC8GA1UEBRMoQzZGNzU4RUNEREM0QzlCMEY3MkYwNjVDMzVBRDU0Njk3 NDMyNzExQjAeFw0yNTA4MTEwNzI5NTZaFw0yNTA4MTgwNzI5NTZaMBgxFjAUBgNV BAMTDTY4OTk5YmY0LWVkNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1yW/C0aMhIhiEbjSIaMLhDmcUcshiJ/wDwMTgMSJj6vhe6NFyvRUk4VEijWLf I+ubqnHyDrKDZferhLLcIGrNW+ocbdbb94P89nAlIAoWT+mL11a56808DX/g9lLX wZ/+rxuH0dVPZTtMwkiwJ2vZfwuJH+dQBRPV4tNcycau3oW6Ny5mlYcG8T2jzXeF V/jP/7nOIKCXYHErZvppTluKQ41x9qpfwDjYr9cJpV81qHUZTp6SIUpIPILdngYA ayBccITSn50QfcG4k+b7EMxArDhUgdPXTlZqyrGoUMOKqXL5ZYfuUSykih82s1/0 Z3zt6blpm2G3XdiFMo8Opos7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeeMjpF3Y ZJ7TM/xO9oM4CIHBV+8wHwYDVR0jBBgwFoAUxvdY7N3EybD3LwZcNa1UaXQycRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4REY1LzMxRTBGMTZBRjk2 MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHZkWTdOM0V5YkQzTHdaY05hMVVhWFF5Y1JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 REY1LzMxRTBGMTZBRjk2MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJE M0x3WmNOYTFVYVhReWNScy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCbYWhbK9M9l4h6WW+mKD2SelPikw9gn8hKny+AVzztnGzZnA075unh DxXYaSn2fmTq99W08yjoHkbaLUDPanvPVnOg6Mk262gLzj1H2EbX6ejjg2xiF82z 0ttpPyBnjhM5O1ZMEY88BNxxPFA4KbfdwT2J9jn9PNDlJu9OhCKg9QsfAbxlJLTg qd9V/QCAvq1oSHAEhAYRa7MzguGWEyKf8RSkYH08qS0gtPp5DnxoMyp/V3XKIFLY GL4R49aAePyRj+0Rk/6ufOt3uc7dQYm5kH6Yip1nvf8+BW4JXn5W0MT0OwGqzmsK RXcGesNomCrGGmjV7ZzpExbuGiYYC3w= -----END CERTIFICATE-----Generated at Tue Aug 12 22:50:19 2025 by rpki-client