$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: a2Xh735hlD7ZTy1J9bzyG9JXsa6OxVcpwhFjVK7laIY= Subject key identifier: EC:5E:AB:71:ED:B9:34:9A:42:81:C0:AA:71:AC:CB:CE:72:80:E4:A8 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 0157 Signing time: Thu 07 Aug 2025 04:38:02 +0000 Manifest this update: Thu 07 Aug 2025 04:38:02 +0000 Manifest next update: Thu 14 Aug 2025 04:38:02 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: tpVmda5CkLNRqjE81heNTDRWzA5OILMSwTMlFwXAt4Q=) 2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: DHeUh6Boki6/Qn0u9RFENX6qUoDb9jI1NIN7RVH9Vfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Aug 7 04:38:02 2025 GMT Not After : Aug 14 04:38:02 2025 GMT Subject: CN=68942daa-f65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:90:7d:6a:a5:6e:6f:86:d3:19:bf:93:82:ef: 3c:40:80:d2:6a:f2:73:a2:89:a5:18:d2:8f:73:d3: a5:cd:23:40:97:a2:c5:dc:52:de:e1:72:ad:ce:dc: 07:68:c9:10:ec:90:40:79:fa:bd:29:3e:d7:33:57: 7b:9f:3b:4e:12:b4:62:26:f9:b9:7d:92:58:14:a6: c5:b6:46:ab:80:ed:97:48:ea:95:66:b4:86:40:cf: bc:24:33:2e:4f:6d:15:88:a8:9b:5b:05:fe:24:08: e5:04:73:05:39:26:56:36:c7:70:ae:72:f7:2c:bf: b5:47:74:61:69:6b:2d:28:ae:d1:f3:d7:7a:24:06: 14:4c:d6:ed:2d:e4:eb:7e:a3:58:bc:fe:95:78:2c: ad:ad:fb:00:51:96:b0:b8:9b:33:3c:d9:0b:68:33: f6:25:c8:db:f6:da:c3:ac:6d:ee:94:7e:0e:7f:77: 6f:c4:a5:f0:f4:d1:c2:28:25:75:3c:59:b1:06:ee: 74:29:81:17:8b:b3:bd:9e:d0:4a:1e:db:ef:4b:70: 72:a0:93:a0:1e:d8:a1:be:1f:bd:b9:0d:49:41:ed: 2a:79:b3:07:75:8e:fc:9e:17:56:dc:49:eb:d2:d2: ca:78:63:df:06:e2:ec:39:a5:eb:44:f4:75:4c:cb: ca:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5E:AB:71:ED:B9:34:9A:42:81:C0:AA:71:AC:CB:CE:72:80:E4:A8 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:f7:9d:be:ac:41:a6:0a:8e:da:ec:48:68:d1:f6:b8:a7:9c: a3:05:84:09:2a:05:1b:c6:9f:b7:2c:c9:39:5a:2d:ad:4f:99: fd:99:2d:79:64:d2:df:4a:58:51:f0:1c:1c:f6:1b:d5:b4:cd: a7:16:f9:6a:79:9d:8c:20:dc:cd:62:5d:45:f7:f9:85:33:9d: 09:22:2f:b7:ec:27:56:35:c8:64:ce:cd:25:2d:be:34:c5:8c: 4d:1c:95:9c:e7:7a:51:3c:ba:b5:c3:12:0f:b9:c3:a7:4b:2f: ce:2b:5b:98:91:2d:e5:70:fe:1b:2c:81:72:95:e9:5e:90:7e: 46:b6:da:b3:04:74:66:81:e0:70:9d:21:dd:0d:06:cb:9f:af: 2e:fc:16:2f:ff:71:48:a8:c8:3c:dc:c0:66:b6:04:95:9e:92: 1b:5d:d3:91:79:96:6f:f4:22:c0:26:40:dd:78:9d:20:2d:77: a2:12:dc:ce:b3:aa:fd:ce:81:14:ab:80:05:06:21:1e:41:29: 35:df:c5:c0:07:b3:af:bd:5d:7f:fa:c0:ca:17:1e:76:6e:ce: 87:63:ee:47:8f:a3:83:4a:85:61:32:04:bd:17:99:bc:7f:ac: 08:17:fb:ac:f5:c0:84:c6:0b:a2:e0:82:be:8f:32:bb:b0:0f: a4:81:1e:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwODA3MDQzODAyWhcNMjUwODE0MDQzODAyWjAYMRYwFAYD VQQDEw02ODk0MmRhYS1mNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JB9aqVub4bTGb+Tgu88QIDSavJzoomlGNKPc9OlzSNAl6LF3FLe4XKtztwH aMkQ7JBAefq9KT7XM1d7nztOErRiJvm5fZJYFKbFtkargO2XSOqVZrSGQM+8JDMu T20ViKibWwX+JAjlBHMFOSZWNsdwrnL3LL+1R3RhaWstKK7R89d6JAYUTNbtLeTr fqNYvP6VeCytrfsAUZawuJszPNkLaDP2Jcjb9trDrG3ulH4Of3dvxKXw9NHCKCV1 PFmxBu50KYEXi7O9ntBKHtvvS3ByoJOgHtihvh+9uQ1JQe0qebMHdY78nhdW3Enr 0tLKeGPfBuLsOaXrRPR1TMvKdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxeq3Ht uTSaQoHAqnGsy85ygOSoMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ952+rEGmCo7a7Eho0fa4p5yjBYQJKgUbxp+3LMk5Wi2tT5n9mS15 ZNLfSlhR8Bwc9hvVtM2nFvlqeZ2MINzNYl1F9/mFM50JIi+37CdWNchkzs0lLb40 xYxNHJWc53pRPLq1wxIPucOnSy/OK1uYkS3lcP4bLIFylelekH5GttqzBHRmgeBw nSHdDQbLn68u/BYv/3FIqMg83MBmtgSVnpIbXdOReZZv9CLAJkDdeJ0gLXeiEtzO s6r9zoEUq4AFBiEeQSk138XAB7OvvV1/+sDKFx52bs6HY+5Hj6ODSoVhMgS9F5m8 f6wIF/us9cCExgui4IK+jzK7sA+kgR5e -----END CERTIFICATE-----Generated at Fri Aug 8 20:57:40 2025 by rpki-client