$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: 2rE3oDu6bfofV5N+cGdxuXdh47rsL4wiF2AJJyLE+Fo= Subject key identifier: 1B:6D:3F:A5:6A:B1:09:A2:1D:B8:26:F5:37:8A:92:D3:BF:02:40:87 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 03D5 Signing time: Sat 23 Aug 2025 00:49:24 +0000 Manifest this update: Sat 23 Aug 2025 00:49:24 +0000 Manifest next update: Sat 30 Aug 2025 00:49:24 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: Bc+P+J39zoOOmC6YhFA4TBZhHd/73R8fgSWXlyptzz8=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Aug 23 00:49:24 2025 GMT Not After : Aug 30 00:49:24 2025 GMT Subject: CN=68a91014-2364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:db:eb:3b:17:b0:ec:4e:44:88:5d:c2:ab:68: c0:2b:5d:63:ad:b7:d4:09:d0:89:20:d3:aa:45:8c: e0:2a:52:8b:3b:14:53:fc:e1:f9:f6:a3:e3:42:c3: 3c:1d:10:01:e8:ec:dc:77:27:53:0d:02:72:13:a2: 97:32:b5:44:e9:fd:97:f6:2b:7d:90:fc:22:d4:5f: 96:f1:c7:bf:5b:e2:ae:cc:ab:9d:e8:2d:cb:7c:4d: f7:30:5e:d2:40:a5:e0:6d:aa:9d:a2:37:e8:b5:6c: 19:a1:b0:1f:c7:6c:b3:bd:25:a2:87:d1:9e:0b:c4: 4f:f6:4b:c4:47:1a:4a:3b:68:7b:5f:5c:2f:69:25: e1:4b:b4:80:7f:1f:7f:ff:6a:22:ef:58:80:a1:f2: 30:b4:89:f8:03:14:9c:4b:d5:b9:34:31:ff:26:ba: 9d:de:46:cf:7d:91:de:c1:a4:2d:1a:a4:7b:75:7b: 2e:4e:e2:2d:20:aa:fd:5d:21:a1:60:20:d0:14:1e: 75:c6:43:0b:0c:47:8f:63:60:d2:e8:0d:4b:b9:f7: 3a:79:a6:b0:6d:bc:4c:6b:e2:ef:68:72:10:dd:2e: 93:0b:94:b1:98:9c:4c:a8:87:6d:d8:05:33:f4:f4: 6e:f1:08:0e:bd:06:5c:5a:d2:bf:88:b5:66:9b:4b: 1e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6D:3F:A5:6A:B1:09:A2:1D:B8:26:F5:37:8A:92:D3:BF:02:40:87 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:cd:e9:bb:95:b9:0e:9d:50:c3:9b:fc:76:a0:19:a2:56:cc: 2e:d5:3e:6e:57:4a:49:3c:c4:9a:31:d0:d5:b8:ea:5c:ad:d8: 99:cf:b7:5a:a7:48:4d:6b:2b:47:0f:51:52:48:99:8f:16:61: f8:74:4e:4b:a6:8e:37:c1:c4:45:c0:13:e3:81:f5:cd:35:9c: 2c:e0:29:0d:a3:f0:2c:b3:c4:1a:e9:0f:c3:b6:74:b3:d6:8f: 26:ed:31:40:b3:67:d2:c7:1f:92:13:6f:43:c8:29:4a:07:9b: b4:fe:e7:13:4e:41:f1:bb:12:6c:6f:9e:de:1e:b1:54:22:16: 70:a6:7c:72:37:52:25:4c:9b:e5:09:fb:2e:16:7f:09:1a:a0: 02:da:68:e9:9d:6a:02:0c:f0:6c:fc:a9:58:1f:85:33:ac:e9: 7a:71:31:b7:ad:17:5a:ef:33:94:e6:b0:11:b4:fa:65:b8:35: 65:b6:47:df:3d:77:28:cf:e6:34:39:76:47:f0:c4:32:d2:c7: 46:65:cb:2e:36:d1:ce:64:0b:fb:ab:7c:e6:3c:f3:e2:98:33: 2c:38:ac:d8:d0:89:72:0d:94:b6:f0:0f:86:1b:2c:c3:4c:f6: 7e:b2:a3:4e:e0:ae:c3:2b:2a:28:d2:e1:1e:a5:80:57:15:d8: 87:93:cb:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUwODIzMDA0OTI0WhcNMjUwODMwMDA0OTI0WjAYMRYwFAYD VQQDEw02OGE5MTAxNC0yMzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNvrOxew7E5EiF3Cq2jAK11jrbfUCdCJINOqRYzgKlKLOxRT/OH59qPjQsM8 HRAB6OzcdydTDQJyE6KXMrVE6f2X9it9kPwi1F+W8ce/W+KuzKud6C3LfE33MF7S QKXgbaqdojfotWwZobAfx2yzvSWih9GeC8RP9kvERxpKO2h7X1wvaSXhS7SAfx9/ /2oi71iAofIwtIn4AxScS9W5NDH/Jrqd3kbPfZHewaQtGqR7dXsuTuItIKr9XSGh YCDQFB51xkMLDEePY2DS6A1Lufc6eaawbbxMa+LvaHIQ3S6TC5SxmJxMqIdt2AUz 9PRu8QgOvQZcWtK/iLVmm0se9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBttP6Vq sQmiHbgm9TeKktO/AkCHMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQzem7lbkOnVDDm/x2oBmiVswu1T5uV0pJPMSaMdDVuOpcrdiZz7da p0hNaytHD1FSSJmPFmH4dE5Lpo43wcRFwBPjgfXNNZws4CkNo/Ass8Qa6Q/DtnSz 1o8m7TFAs2fSxx+SE29DyClKB5u0/ucTTkHxuxJsb57eHrFUIhZwpnxyN1IlTJvl CfsuFn8JGqAC2mjpnWoCDPBs/KlYH4UzrOl6cTG3rRda7zOU5rARtPpluDVltkff PXcoz+Y0OXZH8MQy0sdGZcsuNtHOZAv7q3zmPPPimDMsOKzY0IlyDZS28A+GGyzD TPZ+sqNO4K7DKyoo0uEepYBXFdiHk8un -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:22 2025 by rpki-client