$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: RSSNHslakB3fpWhyr1gy6n+yArUdhWKPZJfINoX1S84= Subject key identifier: DE:47:16:0D:69:B8:C2:F0:85:41:F0:C1:9D:B2:5C:1F:A4:78:9F:3C Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 230B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 22F1 Signing time: Sun 10 Aug 2025 15:48:36 +0000 Manifest this update: Sun 10 Aug 2025 15:48:36 +0000 Manifest next update: Sun 17 Aug 2025 15:48:36 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: a1yVFVbMdx/zvB9hMdaGkjpJOfxeFOhNucwRMJ0vtFk=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8971 (0x230b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Aug 10 15:48:36 2025 GMT Not After : Aug 17 15:48:36 2025 GMT Subject: CN=6898bf54-c816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:10:18:85:22:ff:ac:38:3a:ab:b7:19:13:f9: 51:a5:3d:5e:19:4e:e6:10:e2:7f:96:77:28:f4:bb: bc:00:d7:ea:6a:23:90:af:21:6d:ee:b3:1f:14:22: c5:b9:1b:18:2d:73:7a:b7:14:77:d6:59:b1:42:f2: 50:69:00:66:0f:94:a5:cf:72:ef:61:3a:7e:c3:e1: 99:05:d0:a7:b5:42:1b:bd:87:c2:d9:1b:0b:3a:ef: eb:04:df:a3:a6:b7:db:69:f5:7e:ea:a3:4f:2b:cb: 17:f7:9c:35:ce:34:57:61:9e:5d:06:e9:4f:52:aa: 83:71:1e:33:26:10:69:41:bf:af:3d:fc:2e:e7:c5: 6a:8a:64:1e:93:b2:5d:44:a1:5b:63:a7:6e:e8:41: b5:c5:66:66:82:0a:11:66:42:8d:19:a3:35:81:a3: 04:87:0d:32:4d:3c:28:30:0f:b1:36:c5:6a:68:8e: 74:b2:e6:7e:18:d3:fc:bb:d7:b1:df:bf:f4:c3:2e: 94:e2:92:f4:e6:11:5b:4c:15:60:96:44:81:9d:b3: bc:4c:38:64:94:e8:e0:73:93:15:9a:0c:10:05:fa: 64:9f:c7:8b:e6:bb:61:d8:3c:12:6b:26:45:88:66: f8:ed:14:1d:b0:10:8f:40:4c:58:a5:a4:3c:c6:90: ac:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:47:16:0D:69:B8:C2:F0:85:41:F0:C1:9D:B2:5C:1F:A4:78:9F:3C X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d7:ed:6e:23:28:07:bc:6c:4c:80:5e:7a:41:a9:5f:6e:ee: 7a:52:7f:8f:24:99:8b:64:97:6c:e0:be:aa:85:25:70:d4:af: 47:a9:0a:2c:35:18:e5:12:7a:97:6b:a0:43:db:e0:32:ac:c9: 4c:fc:b0:0b:9a:84:d8:62:1e:4a:98:79:3b:ac:5e:a6:ef:c8: 64:f3:c5:92:59:a9:6e:81:10:aa:f6:ff:e5:c3:3a:94:a3:c0: 72:0c:02:81:fd:9d:ea:7b:46:a8:07:40:33:0b:48:e9:77:8d: ee:eb:f0:88:59:96:b5:88:c8:62:5e:a7:e9:6b:08:4c:04:a1: e8:9d:17:ec:ee:72:a8:96:df:ed:97:52:e6:1e:35:a0:cf:c3: c4:b4:00:b4:59:ff:6f:35:cd:1d:71:e9:db:e8:55:eb:20:c2: 4e:8f:f3:4e:23:1e:52:54:f1:7a:2a:d7:21:f8:de:08:5d:9c: 62:99:72:16:68:9a:03:8c:57:c7:18:6e:8e:22:51:ad:31:11: 2b:33:84:42:db:9b:a3:f6:0b:58:02:f3:21:f3:25:d4:17:0e: f1:fa:35:49:4b:0d:9b:a0:25:ec:f8:65:c0:c9:a6:93:2f:74: 38:8c:16:0b:63:58:24:28:06:08:65:1f:92:1a:ba:32:06:d3: 7c:bc:43:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwODEwMTU0ODM2WhcNMjUwODE3MTU0ODM2WjAYMRYwFAYD VQQDEw02ODk4YmY1NC1jODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBAYhSL/rDg6q7cZE/lRpT1eGU7mEOJ/lnco9Lu8ANfqaiOQryFt7rMfFCLF uRsYLXN6txR31lmxQvJQaQBmD5Slz3LvYTp+w+GZBdCntUIbvYfC2RsLOu/rBN+j prfbafV+6qNPK8sX95w1zjRXYZ5dBulPUqqDcR4zJhBpQb+vPfwu58VqimQek7Jd RKFbY6du6EG1xWZmggoRZkKNGaM1gaMEhw0yTTwoMA+xNsVqaI50suZ+GNP8u9ex 37/0wy6U4pL05hFbTBVglkSBnbO8TDhklOjgc5MVmgwQBfpkn8eL5rth2DwSayZF iGb47RQdsBCPQExYpaQ8xpCsgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5HFg1p uMLwhUHwwZ2yXB+keJ88MB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG1+1uIygHvGxMgF56Qalfbu56Un+PJJmLZJds4L6qhSVw1K9HqQos NRjlEnqXa6BD2+AyrMlM/LALmoTYYh5KmHk7rF6m78hk88WSWalugRCq9v/lwzqU o8ByDAKB/Z3qe0aoB0AzC0jpd43u6/CIWZa1iMhiXqfpawhMBKHonRfs7nKolt/t l1LmHjWgz8PEtAC0Wf9vNc0dcenb6FXrIMJOj/NOIx5SVPF6Ktch+N4IXZximXIW aJoDjFfHGG6OIlGtMRErM4RC25uj9gtYAvMh8yXUFw7x+jVJSw2boCXs+GXAyaaT L3Q4jBYLY1gkKAYIZR+SGroyBtN8vEOT -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:47 2025 by rpki-client