$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: iaVtPmo4cFfH+wCRfr7nAiYd1SLaRCukLrQlF8U2UMc= Subject key identifier: B7:F9:B0:43:6F:74:1A:A1:F4:8E:A7:08:8F:7B:D1:7B:EC:9C:C3:EA Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 1405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 13FA Signing time: Sun 10 Aug 2025 16:54:54 +0000 Manifest this update: Sun 10 Aug 2025 16:54:54 +0000 Manifest next update: Sun 17 Aug 2025 16:54:54 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: 7V6DW+OnCeayv0jDW9w5lAOIQnBhnnpsZb0bJ7+01DQ=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: dlJ7zH1d3oXPs3S0YirZQi1hSZzUrfDhpzP6MZkDSDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5125 (0x1405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Aug 10 16:54:54 2025 GMT Not After : Aug 17 16:54:54 2025 GMT Subject: CN=6898cede-7c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:df:b4:72:34:ff:20:83:c6:33:b1:44:4f:8b: 53:f2:83:a9:8e:ae:fc:cf:34:3c:9a:65:74:ca:b7: 87:3b:29:04:08:50:c5:0f:88:e7:8f:5c:cd:38:02: fc:e9:6d:a5:ca:bd:cf:6a:72:38:32:51:87:4f:c5: b6:d3:98:62:60:7c:d5:aa:cb:45:f6:5d:96:08:d8: e4:01:e8:9c:1d:d6:21:5a:8e:23:fd:fe:07:df:65: aa:37:89:71:72:85:e1:9e:bb:f3:63:a5:c0:9a:3d: e2:4c:a9:4a:49:01:ba:d6:f5:ea:9f:fe:6c:b0:9b: 8c:24:94:c8:0b:19:ca:31:28:99:53:65:69:a7:f2: a6:bc:41:a5:92:6e:91:ff:77:1b:d4:5a:a1:a7:38: d9:d1:29:34:99:cf:7a:38:81:87:5d:48:e5:02:dd: db:6f:03:f6:84:8c:80:8f:94:e6:b8:19:9b:dd:90: c4:7a:96:0a:ee:f3:ef:ea:1c:d3:9b:15:40:f3:a7: f7:10:fd:76:d3:5b:ec:db:9d:a9:99:e5:a9:a9:3c: 06:d2:e0:26:4f:ed:6d:1f:38:48:1c:3a:4e:fb:ce: 55:3e:c6:16:a9:58:a6:8f:e2:22:d2:95:7c:c8:8a: e3:42:d9:97:cd:43:5d:06:5a:e0:8a:60:86:c8:84: 28:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F9:B0:43:6F:74:1A:A1:F4:8E:A7:08:8F:7B:D1:7B:EC:9C:C3:EA X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:67:6c:98:2c:a6:ac:af:4d:a9:93:bf:23:4d:fa:d1:ca:81: f0:8f:7a:b2:78:5a:18:26:c6:d1:cd:04:ee:4c:35:79:28:4d: ff:09:9f:a4:7c:5c:a8:b8:41:66:7c:44:1b:97:18:a5:e0:c4: ca:68:9d:6c:b3:98:6e:ec:27:c0:96:25:c6:9a:42:f5:ea:ab: f6:50:05:b2:12:d1:55:25:01:a9:08:72:33:8b:d1:a7:b1:59: 4e:8a:bd:bd:fa:08:21:8d:94:c7:78:6a:72:9e:19:d2:f7:23: 2d:b4:7e:06:5b:47:d5:dc:9f:50:62:0b:04:78:e6:b2:f7:d8: 74:e9:a9:98:b3:ac:6a:22:d5:d3:c1:58:6b:02:a6:8f:4e:4c: 29:72:2e:bb:67:35:b3:bd:1f:44:fb:21:01:4c:57:46:1b:d4: c6:68:94:f3:4c:ed:d1:7a:24:20:db:02:83:ed:96:d9:98:90: 98:4f:ce:ae:77:1d:3c:a2:cc:91:d3:6f:b4:e6:6d:fd:bd:5b: 7f:20:0b:2e:16:a2:fe:3e:01:40:59:0a:f0:c4:bb:41:21:0a: 6b:f0:18:cb:e1:8f:34:cb:d9:83:d4:c4:85:06:f3:cf:a9:78: 6a:fa:64:17:88:c2:a2:8c:72:2f:2c:43:d6:10:aa:5e:33:d9: a3:d7:39:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUwODEwMTY1NDU0WhcNMjUwODE3MTY1NDU0WjAYMRYwFAYD VQQDEw02ODk4Y2VkZS03YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxd+0cjT/IIPGM7FET4tT8oOpjq78zzQ8mmV0yreHOykECFDFD4jnj1zNOAL8 6W2lyr3PanI4MlGHT8W205hiYHzVqstF9l2WCNjkAeicHdYhWo4j/f4H32WqN4lx coXhnrvzY6XAmj3iTKlKSQG61vXqn/5ssJuMJJTICxnKMSiZU2Vpp/KmvEGlkm6R /3cb1FqhpzjZ0Sk0mc96OIGHXUjlAt3bbwP2hIyAj5TmuBmb3ZDEepYK7vPv6hzT mxVA86f3EP1201vs252pmeWpqTwG0uAmT+1tHzhIHDpO+85VPsYWqVimj+Ii0pV8 yIrjQtmXzUNdBlrgimCGyIQobQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLf5sENv dBqh9I6nCI970XvsnMPqMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5Z2yYLKasr02pk78jTfrRyoHwj3qyeFoYJsbRzQTuTDV5KE3/CZ+k fFyouEFmfEQblxil4MTKaJ1ss5hu7CfAliXGmkL16qv2UAWyEtFVJQGpCHIzi9Gn sVlOir29+gghjZTHeGpynhnS9yMttH4GW0fV3J9QYgsEeOay99h06amYs6xqItXT wVhrAqaPTkwpci67ZzWzvR9E+yEBTFdGG9TGaJTzTO3ReiQg2wKD7ZbZmJCYT86u dx08osyR02+05m39vVt/IAsuFqL+PgFAWQrwxLtBIQpr8BjL4Y80y9mD1MSFBvPP qXhq+mQXiMKijHIvLEPWEKpeM9mj1zn0 -----END CERTIFICATE-----Generated at Mon Aug 11 10:09:14 2025 by rpki-client