$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: Pp+4uG9Fuxq6KHEEqxvi7faAZuyNQzCWwUwO3LUVQOI= Subject key identifier: 5E:97:DE:5B:45:69:CD:1A:71:96:BA:2A:D0:6E:3B:6B:FF:9E:48:C3 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 252C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 252C Signing time: Fri 08 Aug 2025 14:33:43 +0000 Manifest this update: Fri 08 Aug 2025 14:33:42 +0000 Manifest next update: Fri 15 Aug 2025 14:33:42 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: MVWL3JQ/hqdf9i/0EUHcKzfl7b/QP+55HiYW2+R7ly4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9516 (0x252c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Aug 8 14:33:42 2025 GMT Not After : Aug 15 14:33:42 2025 GMT Subject: CN=68960ac6-f7b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:64:e9:34:2f:04:dd:cd:08:3f:12:fc:85: 95:3e:59:f6:bd:9a:91:3e:5f:1a:e1:20:16:27:85: b4:34:f8:9c:8c:0c:68:87:83:37:d6:0a:5c:6b:ed: 41:84:cf:1a:77:59:54:a4:00:dd:1f:27:96:2a:33: f2:43:cc:18:99:43:90:75:e8:6f:f7:ad:f1:03:56: a5:63:1a:b0:a9:57:a6:86:30:40:97:8c:af:6d:ab: 79:15:1e:cf:5d:7e:cb:03:52:11:3b:e7:9f:c0:48: 09:d3:85:3f:8d:1c:7f:fb:2d:07:32:c6:cb:18:73: 82:79:4b:aa:22:bc:03:2e:b2:a5:27:40:7e:1f:36: 14:8c:f0:8f:cd:bf:64:ec:53:7f:3b:eb:c6:29:cd: ec:18:50:ad:2b:fc:d3:b5:ce:13:60:f9:53:00:ec: 67:cc:2b:4a:73:80:17:b5:ed:cb:6f:1a:67:f1:9b: d2:c8:81:58:db:44:ba:b3:62:29:0c:72:fd:a5:0c: 93:ed:fa:83:23:0d:94:9e:07:f6:93:90:8f:94:3a: 9f:7b:5f:d8:10:cd:9b:b4:e7:2a:b0:94:96:41:e7: a4:78:1d:f3:af:2f:b9:9a:af:75:16:dd:15:11:48: 40:fd:2e:ce:80:5d:93:91:53:25:43:5c:5c:3f:91: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:97:DE:5B:45:69:CD:1A:71:96:BA:2A:D0:6E:3B:6B:FF:9E:48:C3 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5a:99:04:9d:c2:47:79:c4:70:0f:d2:5c:07:c5:d2:a3:f7: 71:85:8c:84:2f:e8:96:5f:0c:cc:1e:f5:5d:01:6f:7e:33:ce: d8:2e:c4:48:0e:5f:8d:96:12:5a:02:7b:b8:da:fb:a2:1c:f3: e4:a4:ba:f4:03:ea:49:6b:0e:4b:93:52:46:5d:ec:75:f6:6e: 6c:12:81:cd:af:2e:dd:26:56:ac:f2:bf:0c:7d:be:5d:d4:26: a1:3b:3e:66:b9:22:00:65:c7:b0:bd:79:af:72:59:ba:a3:40: aa:76:b4:69:c6:77:1c:86:78:5f:fe:cc:a4:c7:ec:d7:fd:f6: f4:4b:fe:d5:d0:93:5e:0b:a8:f6:57:85:34:6c:a2:37:f0:51: 29:fa:92:40:74:e8:5f:52:22:cb:59:f3:8a:d8:24:42:0e:9b: 3d:c7:6a:6f:63:30:b9:22:0a:f7:c3:09:1b:d8:f1:b5:cf:61: f4:86:7c:4b:14:6b:71:3e:da:c7:ae:c4:81:8c:e3:87:2e:af: 52:ce:dd:fa:0a:ea:61:a2:a3:d0:46:38:4d:8d:af:7d:74:10: 58:ad:56:22:08:3b:34:fc:22:62:0d:61:0a:27:85:09:10:66: 5b:7a:39:93:9c:52:df:9b:f8:15:a5:43:bd:0c:19:57:d1:ae: b5:29:13:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwODA4MTQzMzQyWhcNMjUwODE1MTQzMzQyWjAYMRYwFAYD VQQDEw02ODk2MGFjNi1mN2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNhk6TQvBN3NCD8S/IWVPln2vZqRPl8a4SAWJ4W0NPicjAxoh4M31gpca+1B hM8ad1lUpADdHyeWKjPyQ8wYmUOQdehv963xA1alYxqwqVemhjBAl4yvbat5FR7P XX7LA1IRO+efwEgJ04U/jRx/+y0HMsbLGHOCeUuqIrwDLrKlJ0B+HzYUjPCPzb9k 7FN/O+vGKc3sGFCtK/zTtc4TYPlTAOxnzCtKc4AXte3Lbxpn8ZvSyIFY20S6s2Ip DHL9pQyT7fqDIw2Ungf2k5CPlDqfe1/YEM2btOcqsJSWQeekeB3zry+5mq91Ft0V EUhA/S7OgF2TkVMlQ1xcP5EpbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6X3ltF ac0acZa6KtBuO2v/nkjDMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIWpkEncJHecRwD9JcB8XSo/dxhYyEL+iWXwzMHvVdAW9+M87YLsRI Dl+NlhJaAnu42vuiHPPkpLr0A+pJaw5Lk1JGXex19m5sEoHNry7dJlas8r8Mfb5d 1CahOz5muSIAZcewvXmvclm6o0CqdrRpxncchnhf/sykx+zX/fb0S/7V0JNeC6j2 V4U0bKI38FEp+pJAdOhfUiLLWfOK2CRCDps9x2pvYzC5Igr3wwkb2PG1z2H0hnxL FGtxPtrHrsSBjOOHLq9Szt36CuphoqPQRjhNja99dBBYrVYiCDs0/CJiDWEKJ4UJ EGZbejmTnFLfm/gVpUO9DBlX0a61KRO9 -----END CERTIFICATE-----Generated at Sat Aug 9 10:53:17 2025 by rpki-client