$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: XXNDgnpo25VpnSbddSxS8trsGcQ4ShilQoc0PdlZiNw= Subject key identifier: 3A:CD:00:88:1D:36:7E:45:78:75:AC:09:43:3D:85:C3:14:3A:BC:82 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 052E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 052E Signing time: Fri 08 Aug 2025 23:59:57 +0000 Manifest this update: Fri 08 Aug 2025 23:59:56 +0000 Manifest next update: Fri 15 Aug 2025 23:59:56 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: 0JdiGFHixFnwD4CZI++9I/TThZ0uh+Tcwxx6CKiUIjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Aug 8 23:59:56 2025 GMT Not After : Aug 15 23:59:56 2025 GMT Subject: CN=68968f7c-eaf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ba:8f:e1:0e:74:23:8f:56:6b:2f:d7:7d:6a: 7d:57:75:75:8d:13:63:93:08:92:7c:99:0d:78:9e: 9b:2b:b4:e4:67:83:23:b1:87:27:60:68:26:e9:c1: d7:07:b1:5f:03:00:c8:a7:47:7e:f9:a3:6f:6f:02: f3:bc:93:96:95:11:07:2d:c7:40:a2:bf:38:4e:a9: 3f:e0:b5:b6:48:aa:25:b6:d1:9c:57:50:12:9d:96: 52:5e:5d:a0:36:98:87:6b:d8:01:87:f7:c1:fc:57: af:12:30:5f:e5:fa:f1:d5:0a:fe:99:b8:3b:1a:9d: c0:df:6c:63:12:9a:30:b1:98:24:cf:1c:9c:61:08: 8c:e0:07:cb:ef:a6:7c:ae:04:4d:8d:4e:6a:27:b3: 24:71:f2:06:dd:6f:5c:5f:3c:fa:a7:10:73:7c:7b: cf:97:51:b2:80:05:44:1a:0b:98:3d:92:4a:24:12: ae:80:a3:94:26:4b:cb:c3:2a:8b:20:c5:3f:cb:69: 39:f5:f5:b1:79:ea:ae:72:3c:a0:66:c6:65:a3:65: 36:95:68:7a:08:69:71:48:5d:f5:1a:77:13:15:02: 7c:d2:40:e4:4f:b5:1b:20:b9:c8:c1:1d:fe:19:00: b7:53:18:71:35:35:b6:2a:38:75:2c:77:49:59:2e: 60:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CD:00:88:1D:36:7E:45:78:75:AC:09:43:3D:85:C3:14:3A:BC:82 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:eb:c9:28:5e:92:fb:dd:e5:75:5b:21:a3:7b:75:c2:b9:58: e8:8c:83:3d:61:05:24:b3:8a:18:9a:9f:5a:26:2f:63:41:90: ad:c8:ce:ab:28:1f:6d:9d:0c:30:56:81:96:19:84:8f:2a:3e: 17:97:a7:cd:0e:10:f5:11:d5:f8:04:53:42:f3:27:db:6b:50: bd:82:e4:07:6b:5b:f8:6b:98:fe:53:20:62:ab:ef:0a:80:63: ff:5c:3b:4a:ea:1b:22:82:86:a1:95:f1:c9:81:07:14:8d:76: e3:ff:54:c9:2a:21:17:9d:90:84:22:d3:52:09:7d:d7:d0:cc: 50:2c:61:0b:5d:69:c3:97:36:e6:69:2b:4d:d2:23:db:20:2a: 00:a5:15:44:55:f0:9b:ad:74:89:fe:d5:b0:e0:ae:9c:84:85: 3c:fb:4b:42:38:1c:be:46:c8:bd:3c:37:ea:aa:ac:83:52:48: 98:e7:d1:47:64:ab:c0:44:f8:77:af:e8:b5:2d:d0:09:06:dc: 1e:9e:e1:65:3a:2e:c4:ed:dc:39:9b:3b:9f:3e:36:2d:ee:17: e7:13:e4:14:1e:28:54:a2:e6:db:bc:b3:5c:05:70:80:38:02: 71:05:1d:6c:26:89:e1:c6:7f:e7:0e:48:0f:97:42:4d:37:3f: a0:b1:ce:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUwODA4MjM1OTU2WhcNMjUwODE1MjM1OTU2WjAYMRYwFAYD VQQDEw02ODk2OGY3Yy1lYWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrqP4Q50I49Way/XfWp9V3V1jRNjkwiSfJkNeJ6bK7TkZ4MjsYcnYGgm6cHX B7FfAwDIp0d++aNvbwLzvJOWlREHLcdAor84Tqk/4LW2SKolttGcV1ASnZZSXl2g NpiHa9gBh/fB/FevEjBf5frx1Qr+mbg7Gp3A32xjEpowsZgkzxycYQiM4AfL76Z8 rgRNjU5qJ7MkcfIG3W9cXzz6pxBzfHvPl1GygAVEGguYPZJKJBKugKOUJkvLwyqL IMU/y2k59fWxeequcjygZsZlo2U2lWh6CGlxSF31GncTFQJ80kDkT7UbILnIwR3+ GQC3UxhxNTW2Kjh1LHdJWS5g1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrNAIgd Nn5FeHWsCUM9hcMUOryCMB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR68koXpL73eV1WyGje3XCuVjojIM9YQUks4oYmp9aJi9jQZCtyM6r KB9tnQwwVoGWGYSPKj4Xl6fNDhD1EdX4BFNC8yfba1C9guQHa1v4a5j+UyBiq+8K gGP/XDtK6hsigoahlfHJgQcUjXbj/1TJKiEXnZCEItNSCX3X0MxQLGELXWnDlzbm aStN0iPbICoApRVEVfCbrXSJ/tWw4K6chIU8+0tCOBy+Rsi9PDfqqqyDUkiY59FH ZKvARPh3r+i1LdAJBtwenuFlOi7E7dw5mzufPjYt7hfnE+QUHihUoubbvLNcBXCA OAJxBR1sJonhxn/nDkgPl0JNNz+gsc4H -----END CERTIFICATE-----Generated at Sat Aug 9 05:43:13 2025 by rpki-client