$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft File: XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json) Hash identifier: rWMmHP3AV7M9rCWLqUA7S14VSnCmQGKMuFOofO7/V5c= Subject key identifier: 99:07:E2:94:4A:9B:D8:6B:89:22:4A:32:1A:47:E6:52:AB:31:24:36 Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C Certificate issuer: /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft Manifest number: 3C Signing time: Fri 22 Aug 2025 17:48:46 +0000 Manifest this update: Fri 22 Aug 2025 17:48:45 +0000 Manifest next update: Fri 29 Aug 2025 17:48:45 +0000 Files and hashes: 1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: qeWgAadUHG5Ddaawy7gSmY7LRzkd9xjWf+3DBbqxoJg=) 2: D5271A183ADB11F0BC52A042C4F9AE02.roa (hash: Je+up3kY6qu1B3So3Vnq/xOYjMIPNymqMCzCxvb8aL4=) 3: 87087F00267E11F09183092AC4F9AE02.roa (hash: vPD3MBlV+VYxtTk5npGCIsRmwvlSAFp0uTh8dXUbHV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Validity Not Before: Aug 22 17:48:45 2025 GMT Not After : Aug 29 17:48:45 2025 GMT Subject: CN=68a8ad7e-2e5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d1:bb:5e:68:90:a8:ee:88:74:88:a8:24:11: ed:fa:2d:cc:49:b6:cb:64:3b:60:ff:17:43:22:e8: 2c:ec:29:19:bd:5f:a6:64:d8:ff:11:8c:13:9b:ef: d6:68:2f:fc:52:02:26:ab:dd:1c:f3:86:78:7e:3f: 20:36:23:fc:39:3f:ee:23:53:b4:d9:ce:99:d8:8a: d6:62:a4:34:22:86:33:22:46:10:26:38:fa:04:b6: e0:7e:85:76:38:2a:da:75:fe:45:c5:e7:01:be:4a: 2e:43:a9:57:29:7c:77:ff:9e:02:44:61:67:b1:1e: af:6f:ea:0b:d1:ed:d2:62:da:36:29:13:b5:fd:7e: 6b:7e:bd:53:af:30:95:23:41:2e:cf:61:2d:91:b7: 18:76:a5:c6:0e:c6:85:35:f8:7c:43:66:14:dc:88: 78:21:d9:3f:1a:ff:d4:4b:2c:8e:54:bd:72:67:6c: 06:65:2d:9d:5d:eb:24:4c:ce:c4:4d:3c:ec:93:4e: 90:61:3b:91:e2:27:b9:7f:f9:50:d1:a0:4b:57:90: 91:40:6b:5f:ef:bb:67:e8:e9:1e:41:29:dd:45:42: 9e:da:96:09:d4:f1:6f:6b:08:16:48:bb:e8:32:4a: 96:cb:3a:02:a3:7c:60:b2:36:bb:dd:8b:51:fa:d4: c6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:07:E2:94:4A:9B:D8:6B:89:22:4A:32:1A:47:E6:52:AB:31:24:36 X509v3 Authority Key Identifier: keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:3b:1c:8f:2d:49:34:99:91:51:8f:d9:4b:c4:aa:79:09:67: 59:27:e8:60:83:1e:c9:fc:b0:fd:1e:14:7f:a1:00:fe:11:85: 23:b5:a1:d5:1f:f6:89:50:e1:07:35:5a:e8:d6:a9:2d:7f:61: df:f5:11:f0:0d:ab:30:93:28:00:0b:58:84:1d:e3:6b:c2:1b: 9e:88:9b:65:0a:59:a3:fd:4c:81:79:a0:b3:b7:43:bb:1a:c8: 57:f6:7a:e5:57:9d:5b:50:e0:d4:48:80:39:b9:a8:5c:0f:0b: f0:cf:ee:a1:30:63:77:98:78:82:36:44:b3:6a:7c:10:a2:17: 4f:ae:b4:9b:f4:50:0f:79:94:ee:fc:5d:07:58:a5:33:a1:32: 8a:ff:f5:4e:b5:46:7b:44:4b:e3:f0:ed:f8:d4:c3:c3:75:18: d1:36:5c:4a:ea:25:cb:13:17:d9:20:59:f9:a4:57:23:4c:21: 16:8b:68:1e:65:ff:f9:35:d9:5b:e0:bc:11:f9:31:18:a8:7d: 6a:1d:a5:9a:c2:00:46:e5:3f:87:e5:36:2f:ef:34:e2:c5:82: 1b:de:b3:87:ba:dd:86:ee:bc:29:96:b2:2e:29:e5:0b:44:55: 98:34:38:02:cc:10:ac:e7:c5:35:96:a7:06:e4:45:84:70:61: 00:6e:1b:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Njk4RTExMC8GA1UEBRMoNURCNzVCMkRGOTREMDQ0NzRBNkU1RTJENEI3OENDMDg0 QkZDMkE2QzAeFw0yNTA4MjIxNzQ4NDVaFw0yNTA4MjkxNzQ4NDVaMBgxFjAUBgNV BAMTDTY4YThhZDdlLTJlNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG0bteaJCo7oh0iKgkEe36LcxJtstkO2D/F0Mi6CzsKRm9X6Zk2P8RjBOb79Zo L/xSAiar3Rzzhnh+PyA2I/w5P+4jU7TZzpnYitZipDQihjMiRhAmOPoEtuB+hXY4 Ktp1/kXF5wG+Si5DqVcpfHf/ngJEYWexHq9v6gvR7dJi2jYpE7X9fmt+vVOvMJUj QS7PYS2Rtxh2pcYOxoU1+HxDZhTciHgh2T8a/9RLLI5UvXJnbAZlLZ1d6yRMzsRN POyTTpBhO5HiJ7l/+VDRoEtXkJFAa1/vu2fo6R5BKd1FQp7algnU8W9rCBZIu+gy SpbLOgKjfGCyNrvdi1H61MZHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmQfilEqb 2GuJIkoyGkfmUqsxJDYwHwYDVR0jBBgwFoAUXbdbLflNBEdKbl4tS3jMCEv8Kmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2OThFLzA5NUY2QzhDMjY3 QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVkS2JsNHRTM2pNQ0V2OEtt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGJkYkxmbE5CRWRLYmw0dFMzak1DRXY4S213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 OThFLzA5NUY2QzhDMjY3QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVk S2JsNHRTM2pNQ0V2OEttdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGw7HI8tSTSZkVGP2UvEqnkJZ1kn6GCDHsn8sP0eFH+hAP4RhSO1odUf 9olQ4Qc1WujWqS1/Yd/1EfANqzCTKAALWIQd42vCG56Im2UKWaP9TIF5oLO3Q7sa yFf2euVXnVtQ4NRIgDm5qFwPC/DP7qEwY3eYeII2RLNqfBCiF0+utJv0UA95lO78 XQdYpTOhMor/9U61RntES+Pw7fjUw8N1GNE2XErqJcsTF9kgWfmkVyNMIRaLaB5l //k12VvgvBH5MRiofWodpZrCAEblP4flNi/vNOLFghves4e63YbuvCmWsi4p5QtE VZg0OALMEKznxTWWpwbkRYRwYQBuG/g= -----END CERTIFICATE-----Generated at Sat Aug 23 16:30:06 2025 by rpki-client