$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: TegGNwsFs1pAx7La8xbFtyDfYMyzKx5HuCLW3T9xsBQ= Subject key identifier: 92:38:A2:BD:A9:19:88:E1:51:35:B0:9A:0C:4C:BF:66:8E:00:91:7A Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 05FD Signing time: Fri 08 Aug 2025 23:20:44 +0000 Manifest this update: Fri 08 Aug 2025 23:20:43 +0000 Manifest next update: Fri 15 Aug 2025 23:20:43 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: Uc6qUBagiuDgVysFxAcYIYY7QkGwNX4e2i93ajqmtDc=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: pnHmUa0U0xz9JsAjeRh4Irw7X+bt9zrhkQQo7Oiu4oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Aug 8 23:20:43 2025 GMT Not After : Aug 15 23:20:43 2025 GMT Subject: CN=6896864b-8b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0a:e4:70:b3:67:56:e9:47:f8:e2:9d:68:d2: 7c:26:3f:f2:a6:d5:5e:28:bb:83:1f:40:c4:b5:78: 64:a9:2a:8f:9f:09:6c:23:93:2b:12:e6:0c:a4:f7: b8:f7:cc:a5:5f:b6:8c:5a:7b:c4:b3:d2:1a:bd:1c: 1c:a5:6b:70:98:8d:df:64:24:66:0b:5d:6e:c4:da: f7:2a:59:c5:64:e9:63:6c:84:b5:ef:d2:88:60:c3: 19:cf:bb:61:52:b8:b1:9b:e9:b7:ea:0d:81:09:0b: 7d:25:9b:14:3c:6e:d1:7b:3d:a0:c3:89:05:23:d9: be:a8:68:2e:44:f6:2d:24:42:1e:30:0d:1e:19:ca: 7b:77:9b:04:25:b7:5a:de:ff:1c:de:6a:d0:3e:c9: 93:a4:c0:92:6f:a8:41:a0:48:75:3f:6f:b9:4f:dd: ff:58:6f:09:e6:53:26:91:53:d5:9f:9b:0d:13:d4: 0a:22:38:30:9a:22:61:02:01:58:94:33:89:e3:18: 5e:5c:22:be:a9:85:2d:cd:4e:3f:71:63:e4:ae:31: 66:30:7c:4d:ca:f5:12:48:b6:ea:16:61:d8:17:b1: 04:5c:4d:53:dd:f6:71:2d:0f:c7:b0:b8:aa:59:f9: f6:88:67:4f:29:1a:79:35:9b:10:17:19:03:3b:85: 8d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:38:A2:BD:A9:19:88:E1:51:35:B0:9A:0C:4C:BF:66:8E:00:91:7A X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:b2:e2:7a:c8:c1:51:23:43:af:e2:0c:7c:d5:48:95:b8:e0: 99:2c:55:2e:d8:f3:48:de:5a:0c:1d:ba:d5:36:3d:dc:8a:75: 43:1a:e8:a9:95:98:2e:b5:83:95:1c:29:77:2b:56:35:33:99: fa:31:81:14:cc:14:c8:f5:1e:08:87:39:fc:78:7b:6a:04:a0: 39:b9:21:72:19:39:20:55:25:40:fb:b7:13:89:49:89:cf:fb: 61:8e:ec:4a:5c:98:a3:fc:c0:3a:4e:f7:ff:1c:fe:7f:db:50: d5:a0:c4:01:23:ae:e0:ba:72:ad:db:34:91:ca:b9:33:e1:d7: 6f:76:1d:65:02:cb:bf:31:3a:c1:17:0b:cb:b1:2c:3f:eb:59: 26:a7:bf:7c:c1:0e:ac:77:cd:74:41:d6:f0:c5:8d:f0:11:3e: ec:96:54:2c:8c:e6:11:c4:7a:f2:b0:b8:9c:a9:9f:fb:f3:3a: 2a:03:20:3e:af:41:9d:8b:90:39:ab:be:08:15:7c:64:da:d4: 4c:db:c2:31:18:56:78:87:f6:4b:07:81:83:8c:9f:4b:c0:76: ae:21:7d:74:9e:51:b8:a6:7f:19:c4:f4:03:0f:96:85:fb:fb: ee:05:3e:66:81:54:3e:e9:3e:7c:aa:ed:20:63:24:3e:e3:09: aa:82:21:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUwODA4MjMyMDQzWhcNMjUwODE1MjMyMDQzWjAYMRYwFAYD VQQDEw02ODk2ODY0Yi04YjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwrkcLNnVulH+OKdaNJ8Jj/yptVeKLuDH0DEtXhkqSqPnwlsI5MrEuYMpPe4 98ylX7aMWnvEs9IavRwcpWtwmI3fZCRmC11uxNr3KlnFZOljbIS179KIYMMZz7th Urixm+m36g2BCQt9JZsUPG7Rez2gw4kFI9m+qGguRPYtJEIeMA0eGcp7d5sEJbda 3v8c3mrQPsmTpMCSb6hBoEh1P2+5T93/WG8J5lMmkVPVn5sNE9QKIjgwmiJhAgFY lDOJ4xheXCK+qYUtzU4/cWPkrjFmMHxNyvUSSLbqFmHYF7EEXE1T3fZxLQ/HsLiq Wfn2iGdPKRp5NZsQFxkDO4WNqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJI4or2p GYjhUTWwmgxMv2aOAJF6MB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqsuJ6yMFRI0Ov4gx81UiVuOCZLFUu2PNI3loMHbrVNj3cinVDGuip lZgutYOVHCl3K1Y1M5n6MYEUzBTI9R4Ihzn8eHtqBKA5uSFyGTkgVSVA+7cTiUmJ z/thjuxKXJij/MA6Tvf/HP5/21DVoMQBI67gunKt2zSRyrkz4ddvdh1lAsu/MTrB FwvLsSw/61kmp798wQ6sd810QdbwxY3wET7sllQsjOYRxHrysLicqZ/78zoqAyA+ r0Gdi5A5q74IFXxk2tRM28IxGFZ4h/ZLB4GDjJ9LwHauIX10nlG4pn8ZxPQDD5aF +/vuBT5mgVQ+6T58qu0gYyQ+4wmqgiFs -----END CERTIFICATE-----Generated at Sat Aug 9 22:48:17 2025 by rpki-client