$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: TqeJfvr95Ij0Qo3sa5XgeW+DZeN3xaBndU6lF+NWjpA= Subject key identifier: B2:98:A9:3C:C0:09:5A:0D:A2:23:F2:A4:BF:67:C9:71:7D:25:DD:54 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: CF Signing time: Sat 09 Aug 2025 06:07:12 +0000 Manifest this update: Sat 09 Aug 2025 06:07:12 +0000 Manifest next update: Sat 16 Aug 2025 06:07:11 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: Hp+P/hkTlHuKDHT8MBzKZdsJfJcR2f9xDbMbI5VwJbU=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: Fv8xkDsRWA8eLIqnsR0IaMI8SIsrnp9IiFE0Bfh81LU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Aug 9 06:07:12 2025 GMT Not After : Aug 16 06:07:11 2025 GMT Subject: CN=6896e590-3452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bc:18:3c:7d:a8:06:1b:4c:6c:6f:9e:c4:16: 18:c7:bb:6d:ee:95:55:8d:0c:b3:48:02:d5:c1:59: 2d:26:03:ef:7f:f6:e9:bb:71:21:d6:44:43:d6:6f: 9b:d9:7d:4d:f1:6d:93:1a:6a:68:0a:97:3e:8a:3e: 8f:f5:df:3b:30:19:20:57:67:94:a8:7a:70:8a:c1: 28:ca:60:4f:c0:5e:8a:f2:7b:d9:49:5f:0e:83:37: 6f:1f:4f:17:4d:ad:da:2d:d8:b9:7d:0c:0c:54:d5: 9a:8a:4b:c4:65:b7:d3:b0:6d:b2:fa:de:19:00:7e: fe:65:28:9d:67:6d:57:da:fe:b4:6c:ae:8c:72:de: 82:ba:c3:28:ee:b5:e8:ac:2a:81:e4:ca:e7:95:3c: b7:12:43:a6:f4:e5:7e:e2:f5:e5:8e:b4:56:f6:b6: 01:af:74:9b:e9:04:89:c7:c8:d7:c9:d5:44:1b:f4: ec:9a:d9:f1:42:4e:f8:26:ff:c0:15:84:61:08:16: 8f:ec:e7:48:d7:b7:b0:bb:a5:26:56:e8:3e:bd:f0: 31:de:68:e6:97:94:78:77:92:57:85:fb:9d:d1:c5: 51:49:07:bb:c9:eb:d8:46:32:cf:7d:d5:43:bb:6b: bb:a4:24:3a:97:26:1b:0d:2e:a2:be:2b:b1:77:50: 64:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:98:A9:3C:C0:09:5A:0D:A2:23:F2:A4:BF:67:C9:71:7D:25:DD:54 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4c:8d:91:bf:76:2f:07:b3:ce:2c:32:e7:8a:2d:ea:1a:a8: 64:ba:15:6a:d1:22:ec:78:fc:31:b7:5d:7d:2d:04:16:54:69: 12:5e:58:fe:50:af:12:82:27:70:4a:d9:19:0b:56:4f:fe:c7: cf:05:eb:82:7b:25:d0:08:cb:58:61:1e:ab:66:70:ca:66:19: d1:e3:e4:1a:fe:7e:bc:95:1d:c9:3b:c8:2b:49:0c:b8:b5:e4: 51:2c:91:94:6a:a8:9a:07:fb:53:ea:31:fc:60:03:1e:b4:a8: 66:10:7a:a4:fe:b2:96:94:96:18:eb:53:9d:d2:5e:f0:47:93: 73:0f:05:06:3f:d1:4c:42:cd:82:9b:0c:cf:36:13:0a:72:2b: 72:fd:76:43:12:4b:50:14:3d:1c:89:36:1d:ef:1e:09:9e:22: 93:ca:b2:31:e0:e2:69:82:31:61:e6:b2:a0:28:be:a7:d9:6c: 8f:ff:13:76:08:26:80:d8:09:cb:c0:47:c7:32:55:15:62:79: ec:31:d3:c8:44:ee:c7:f3:87:9a:32:6c:b8:3b:92:cf:07:78: 02:ad:0a:40:d3:2f:f1:82:70:6a:91:d6:41:2b:dd:ba:ed:c5: 48:79:d1:bb:6a:6a:13:84:64:c8:bb:9c:16:1c:69:be:39:ea: 6b:50:c3:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUwODA5MDYwNzEyWhcNMjUwODE2MDYwNzExWjAYMRYwFAYD VQQDEw02ODk2ZTU5MC0zNDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorwYPH2oBhtMbG+exBYYx7tt7pVVjQyzSALVwVktJgPvf/bpu3Eh1kRD1m+b 2X1N8W2TGmpoCpc+ij6P9d87MBkgV2eUqHpwisEoymBPwF6K8nvZSV8OgzdvH08X Ta3aLdi5fQwMVNWaikvEZbfTsG2y+t4ZAH7+ZSidZ21X2v60bK6Mct6CusMo7rXo rCqB5MrnlTy3EkOm9OV+4vXljrRW9rYBr3Sb6QSJx8jXydVEG/TsmtnxQk74Jv/A FYRhCBaP7OdI17ewu6UmVug+vfAx3mjml5R4d5JXhfud0cVRSQe7yevYRjLPfdVD u2u7pCQ6lyYbDS6iviuxd1BkTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKYqTzA CVoNoiPypL9nyXF9Jd1UMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeTI2Rv3YvB7POLDLnii3qGqhkuhVq0SLsePwxt119LQQWVGkSXlj+ UK8SgidwStkZC1ZP/sfPBeuCeyXQCMtYYR6rZnDKZhnR4+Qa/n68lR3JO8grSQy4 teRRLJGUaqiaB/tT6jH8YAMetKhmEHqk/rKWlJYY61Od0l7wR5NzDwUGP9FMQs2C mwzPNhMKcity/XZDEktQFD0ciTYd7x4JniKTyrIx4OJpgjFh5rKgKL6n2WyP/xN2 CCaA2AnLwEfHMlUVYnnsMdPIRO7H84eaMmy4O5LPB3gCrQpA0y/xgnBqkdZBK926 7cVIedG7amoThGTIu5wWHGm+OeprUMPQ -----END CERTIFICATE-----Generated at Sat Aug 9 15:18:31 2025 by rpki-client