$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: bcZf8CNoeKVM08srwdSAQRbuW9xum7A+3RIabpL0Ly8= Subject key identifier: 59:F7:9C:09:A8:0B:75:2E:55:36:8C:20:6B:99:C5:FB:B2:46:96:BF Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: 72 Signing time: Sat 23 Aug 2025 07:05:10 +0000 Manifest this update: Sat 23 Aug 2025 07:05:09 +0000 Manifest next update: Sat 30 Aug 2025 07:05:09 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: rta1+LSfgPpmQAhfZ9mAUSyIUaR1Tx9NzT/XprvOtyo=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: 8Wzv5veel/E+M5qspAlwBsfA0pAvjm21LyceiyRo5cA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Aug 23 07:05:09 2025 GMT Not After : Aug 30 07:05:09 2025 GMT Subject: CN=68a96826-b5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:02:d1:52:d3:dd:bf:9a:d4:bd:dd:70:2c:62: 1d:0b:b3:44:83:ab:45:83:d4:1b:cd:f2:3a:bd:3c: 6e:23:d7:3e:c7:10:6b:f6:8b:14:1e:8a:35:53:80: 18:0f:cd:63:c5:94:a5:98:63:11:a2:fc:91:48:91: e9:90:ba:3c:c3:ba:ed:0b:8c:5e:f7:c2:16:68:86: 80:83:28:f1:e9:c0:6f:dd:7c:a6:23:d9:09:75:23: e1:d5:ba:5d:46:d0:34:47:6e:4b:d6:7f:65:7e:91: 22:7b:d5:73:61:42:79:94:f4:78:3b:3d:7f:b9:31: 25:78:fa:c7:f8:c9:0b:b2:81:b4:00:90:8f:39:78: 3d:9a:5a:4c:6d:50:7d:c7:0f:77:94:91:a5:e2:48: 3c:67:6e:85:dd:53:b6:25:87:a6:96:a1:52:51:94: 04:5e:3f:f7:86:a7:26:77:53:0e:3d:74:84:23:47: 24:83:55:21:4b:41:ef:28:69:f8:49:a9:2d:ef:3e: fe:fa:05:88:01:1f:4f:d0:cc:c9:35:a5:8c:3e:c4: f0:be:8a:ed:f9:97:40:1b:29:ed:67:94:29:9c:90: 56:ad:c8:19:2e:d5:d0:8b:6c:54:59:17:e4:c1:bf: f4:b5:64:b6:42:11:b8:a0:0a:5b:16:4b:c5:ae:af: 94:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F7:9C:09:A8:0B:75:2E:55:36:8C:20:6B:99:C5:FB:B2:46:96:BF X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:0d:02:00:fa:c1:12:3e:a8:eb:d8:39:85:9d:ef:b4:cb:fd: 9b:93:fb:c6:50:0a:a4:b2:5e:19:01:56:1b:f5:3b:05:cc:34: 24:1a:08:47:64:58:8f:76:53:69:a8:81:e3:2f:e3:70:99:71: b8:de:9f:41:27:90:0b:58:b2:58:70:59:f8:02:9d:52:5e:64: bc:3a:86:24:e9:cc:42:3f:fd:a0:ef:a3:47:85:96:b5:f8:bd: a7:1b:01:8f:2d:42:c0:1f:37:0c:36:eb:a0:ef:db:f3:e7:39: a3:c6:b1:c5:53:2b:50:de:16:a8:14:25:ae:9e:0e:a3:a7:e4: 00:59:d2:d1:ab:6a:8c:c3:5b:1e:10:3c:de:d6:e7:71:d0:08: a8:9a:83:50:aa:6d:52:5d:d5:d9:fb:87:ba:5f:0c:ca:82:af: 4d:26:2a:b4:15:e0:5d:bb:cb:e6:82:3f:32:31:37:b3:79:42: e0:3c:77:ee:6a:e2:05:2a:d0:3c:03:55:d2:29:47:1f:fe:ae: 1d:87:bf:4d:c3:e5:db:4d:d5:6b:50:d2:f6:42:01:17:1c:46: bc:e5:fb:bc:25:c3:4b:68:3b:96:a1:d8:cc:e1:a0:5f:e7:d4: c6:f7:c5:ae:1d:b8:e3:14:f0:bd:f4:80:2d:7d:aa:0d:0e:a0: 38:9d:dd:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoQzYyNjU4MzI5ODU3OEQxRDRBRjcyNzNFQkQ3OTFDNzIz MEEzNzQ0OTAeFw0yNTA4MjMwNzA1MDlaFw0yNTA4MzAwNzA1MDlaMBgxFjAUBgNV BAMTDTY4YTk2ODI2LWI1ZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAAtFS092/mtS93XAsYh0Ls0SDq0WD1BvN8jq9PG4j1z7HEGv2ixQeijVTgBgP zWPFlKWYYxGi/JFIkemQujzDuu0LjF73whZohoCDKPHpwG/dfKYj2Ql1I+HVul1G 0DRHbkvWf2V+kSJ71XNhQnmU9Hg7PX+5MSV4+sf4yQuygbQAkI85eD2aWkxtUH3H D3eUkaXiSDxnboXdU7Ylh6aWoVJRlAReP/eGpyZ3Uw49dIQjRySDVSFLQe8oafhJ qS3vPv76BYgBH0/QzMk1pYw+xPC+iu35l0AbKe1nlCmckFatyBku1dCLbFRZF+TB v/S1ZLZCEbigClsWS8Wur5SDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWfecCagL dS5VNowga5nF+7JGlr8wHwYDVR0jBBgwFoAUxiZYMphXjR1K9yc+vXkccjCjdEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzFEMkYwNzI0RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGlaWU1waFhqUjFLOXljLXZYa2NjakNqZEVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NkMyLzFEMkYwNzI0RDE3RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIx Szl5Yy12WGtjY2pDamRFay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK4NAgD6wRI+qOvYOYWd77TL/ZuT+8ZQCqSyXhkBVhv1OwXMNCQaCEdk WI92U2mogeMv43CZcbjen0EnkAtYslhwWfgCnVJeZLw6hiTpzEI//aDvo0eFlrX4 vacbAY8tQsAfNww266Dv2/PnOaPGscVTK1DeFqgUJa6eDqOn5ABZ0tGraozDWx4Q PN7W53HQCKiag1CqbVJd1dn7h7pfDMqCr00mKrQV4F27y+aCPzIxN7N5QuA8d+5q 4gUq0DwDVdIpRx/+rh2Hv03D5dtN1WtQ0vZCARccRrzl+7wlw0toO5ah2MzhoF/n 1Mb3xa4duOMU8L30gC19qg0OoDid3TU= -----END CERTIFICATE-----Generated at Sun Aug 24 00:13:54 2025 by rpki-client