$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: H+vBiXka0zjiFhv/cYwe3c8IsDnZpnCZPwLb1zE+16Q= Subject key identifier: BA:EE:BE:A9:91:23:48:14:FE:85:8D:50:01:FD:5B:0A:75:6D:9C:D5 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 03C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 03BC Signing time: Sat 05 Jul 2025 01:11:09 +0000 Manifest this update: Sat 05 Jul 2025 01:11:08 +0000 Manifest next update: Sat 12 Jul 2025 01:11:08 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: FbBjZsfZc2q0gDFPFmC5PtOU2w53XJRYDNsG4B29PqI=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 960 (0x3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Jul 5 01:11:08 2025 GMT Not After : Jul 12 01:11:08 2025 GMT Subject: CN=68687bac-2841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c2:ee:ca:17:9f:e5:40:36:01:6c:9d:53:a4: 05:26:82:81:bb:2f:1b:85:08:3b:46:9d:9e:df:00: b2:19:7c:78:f3:d8:40:44:b2:bc:e5:06:ca:9c:64: a3:27:ad:89:d4:33:b3:a2:a9:da:e1:b6:a0:dc:f5: d7:53:7e:72:6e:97:f8:4d:f3:43:31:f1:f4:ef:f3: 17:d6:73:22:98:b2:95:ef:49:b2:c0:0d:a4:2d:8e: 66:7a:c1:1b:dc:38:56:1b:38:63:aa:a3:3b:37:45: d9:d8:52:9c:1a:d5:0e:e6:7a:f6:8e:d3:1c:82:02: a8:3a:e2:71:60:f8:da:c9:b3:29:f3:3f:ea:ed:75: 17:7f:ad:40:5c:a9:5b:25:6c:3d:bb:52:9b:8b:96: 55:86:d1:56:e0:07:c2:8f:78:db:cd:44:b3:82:58: 09:f3:48:15:51:a7:b9:d6:e8:5b:85:c1:75:d7:c6: 34:96:6d:5f:d4:82:c9:d7:07:d2:d2:7a:8d:dd:bf: af:6d:31:ba:35:53:b7:45:a5:12:e7:d4:3d:4f:94: 17:22:c9:bf:15:a1:10:a2:56:57:78:35:4e:4c:f8: f8:55:87:39:58:ac:cd:85:5b:b0:e9:33:b3:ef:cc: b8:93:04:7f:77:66:0d:45:81:57:85:46:d4:e6:48: d0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EE:BE:A9:91:23:48:14:FE:85:8D:50:01:FD:5B:0A:75:6D:9C:D5 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:24:82:01:1e:74:f9:d3:31:52:f0:22:ad:8d:45:53:aa:30: 0b:e5:88:95:de:65:6a:d7:3a:d5:9d:3f:56:77:50:99:6e:8d: 11:8c:c8:14:b9:8f:a6:4c:83:b7:ec:6c:38:79:ce:fb:7a:31: 1e:26:b3:29:49:2e:e2:3c:90:74:e8:0c:82:6d:80:ea:ff:bc: 80:50:f9:cc:37:4c:99:13:6a:41:df:23:cc:d5:d3:2d:d1:c1: 34:b8:23:a0:d0:cf:d3:d5:ec:e2:b0:3f:68:00:f1:b2:82:05: d3:47:ee:55:b6:4e:b5:31:72:f3:50:e5:98:e4:f4:6d:ca:ae: ec:33:c7:81:cb:a3:f9:7c:5f:82:6f:29:80:da:c1:a6:cd:cd: 5c:3d:b2:50:72:6e:f1:2e:d4:19:9b:15:a8:bf:db:6f:84:df: 6d:3c:a9:75:55:d8:ae:2f:87:ca:16:d6:fc:cf:26:04:e5:7e: e4:fc:97:5e:8f:2c:fb:ff:c7:5f:0b:65:84:14:cd:ee:ce:90: 51:f8:53:b0:4c:77:33:05:b0:23:28:5d:30:70:1b:96:2b:ee: f5:45:16:fc:25:4d:6e:e8:c8:2d:a2:09:a3:b4:fb:3f:ad:cd: 36:2e:80:45:a6:3d:31:5a:63:05:59:a4:58:05:b7:80:4a:ed: 06:14:99:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUwNzA1MDExMTA4WhcNMjUwNzEyMDExMTA4WjAYMRYwFAYD VQQDEw02ODY4N2JhYy0yODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8Luyhef5UA2AWydU6QFJoKBuy8bhQg7Rp2e3wCyGXx489hARLK85QbKnGSj J62J1DOzoqna4bag3PXXU35ybpf4TfNDMfH07/MX1nMimLKV70mywA2kLY5mesEb 3DhWGzhjqqM7N0XZ2FKcGtUO5nr2jtMcggKoOuJxYPjaybMp8z/q7XUXf61AXKlb JWw9u1Kbi5ZVhtFW4AfCj3jbzUSzglgJ80gVUae51uhbhcF118Y0lm1f1ILJ1wfS 0nqN3b+vbTG6NVO3RaUS59Q9T5QXIsm/FaEQolZXeDVOTPj4VYc5WKzNhVuw6TOz 78y4kwR/d2YNRYFXhUbU5kjQ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLruvqmR I0gU/oWNUAH9Wwp1bZzVMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/JIIBHnT50zFS8CKtjUVTqjAL5YiV3mVq1zrVnT9Wd1CZbo0RjMgU uY+mTIO37Gw4ec77ejEeJrMpSS7iPJB06AyCbYDq/7yAUPnMN0yZE2pB3yPM1dMt 0cE0uCOg0M/T1ezisD9oAPGyggXTR+5Vtk61MXLzUOWY5PRtyq7sM8eBy6P5fF+C bymA2sGmzc1cPbJQcm7xLtQZmxWov9tvhN9tPKl1VdiuL4fKFtb8zyYE5X7k/Jde jyz7/8dfC2WEFM3uzpBR+FOwTHczBbAjKF0wcBuWK+71RRb8JU1u6MgtogmjtPs/ rc02LoBFpj0xWmMFWaRYBbeASu0GFJmv -----END CERTIFICATE-----Generated at Sun Jul 6 01:05:13 2025 by rpki-client