$ rpki-client -vvf rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft File: xNe5S537ZPXBiScjMNvcrSp9AW4.mft (raw, json) Hash identifier: lcwdNTVepPw9+IB4D62yAovRAGO42dPJfoy6TVB1+Y4= Subject key identifier: 3F:C5:50:35:DC:51:E8:55:4C:03:E3:A6:7D:AD:CC:4A:78:96:9C:B7 Authority key identifier: C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E Certificate issuer: /CN=A912E791/serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Certificate serial: 04EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft Manifest number: 04DA Signing time: Sat 23 Aug 2025 00:04:59 +0000 Manifest this update: Sat 23 Aug 2025 00:04:59 +0000 Manifest next update: Sat 30 Aug 2025 00:04:58 +0000 Files and hashes: 1: xNe5S537ZPXBiScjMNvcrSp9AW4.crl (hash: 7MseADuTn9sFRHYzAhWjLlK5SsICqigzIxWuWI/yx8w=) 2: 9E9D5C66157C11F0B4CD801EC4F9AE02.roa (hash: 1C34cm2EkOQCZ4JCIngq0S5UUVGOvkcAMgGxSVETRwg=) 3: 83595478B65E11EF8DB85B32C4F9AE02.roa (hash: 8tjvkR4DoTk7UtvsWE0jDhrG+DVKY6Vhv3UaWUDUXuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1262 (0x4ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E791, serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Validity Not Before: Aug 23 00:04:59 2025 GMT Not After : Aug 30 00:04:58 2025 GMT Subject: CN=68a905ab-75db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bb:29:33:d7:41:a9:57:4a:08:3a:b7:8c:f9: 95:45:4b:a6:13:a0:ac:82:59:fc:b4:41:8a:47:7a: 41:33:74:79:35:f8:c5:0f:7f:8b:9f:24:fe:ef:e7: 4b:84:13:9e:45:61:af:5a:c5:57:09:36:c4:a2:cf: 81:ce:e9:00:b6:da:b3:1e:77:99:c3:8d:a6:5f:6d: 8e:59:0b:69:65:6b:f9:29:61:b7:e5:f2:e9:ed:f7: 52:d8:f6:39:97:20:84:16:56:4d:97:56:28:08:65: a1:d1:2f:f2:10:2f:37:28:a5:a4:34:ca:b8:8a:41: 2b:a1:9f:dc:85:90:35:4c:d3:0e:d9:ba:34:b9:5b: 1d:7f:fb:93:ab:75:45:65:60:81:9a:02:09:3e:33: 45:0d:17:02:e1:3a:c3:4b:46:12:4c:de:1a:a5:90: 8f:9a:5a:67:de:6c:e1:18:a9:2c:78:fc:ca:f8:e9: 73:7a:c8:f5:42:3a:97:85:a4:6c:65:b9:ad:42:4c: 8f:22:90:1d:91:c3:74:43:a2:99:e6:74:39:2b:ae: 2e:2a:53:0d:48:7a:61:c7:46:d5:78:90:67:4e:e8: 76:50:c3:da:d0:c4:0d:1f:04:c7:50:84:4b:bd:9e: 47:09:60:65:e2:90:38:d1:28:38:4e:d7:ac:8a:62: b5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C5:50:35:DC:51:E8:55:4C:03:E3:A6:7D:AD:CC:4A:78:96:9C:B7 X509v3 Authority Key Identifier: keyid:C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:fe:29:9e:19:37:cf:5c:f1:29:0e:64:e9:a3:15:d7:34:42: 30:8a:7e:0c:71:df:86:ea:da:4e:73:69:52:a1:83:6b:13:55: 76:2f:0c:c0:cf:76:a0:55:51:e3:ee:e7:0b:5a:60:2f:3b:65: ae:0b:79:83:ac:38:06:10:86:3f:6e:f5:f3:ec:a8:e8:a8:0b: cb:9d:35:e1:14:36:d5:c2:45:48:e1:61:fb:87:b5:87:2a:8e: bb:dd:e6:f2:6b:f5:2c:a8:dc:03:4b:58:5c:17:3b:fe:fa:35: 45:d0:c3:10:bf:9d:da:dd:ac:6e:61:68:a9:82:ec:5d:b8:09: 7f:52:63:a1:20:01:be:cc:8e:34:1b:5c:a5:f6:f3:24:b9:72: 5e:9f:0d:3e:97:19:d8:5d:20:c5:d6:26:f4:22:e7:7b:90:0e: 83:35:95:4d:fb:3f:c9:9f:7e:ab:ff:4a:98:eb:75:e2:7b:91: 33:3b:de:e6:08:10:c0:0e:19:3b:cd:9e:29:46:63:63:8d:ef: 22:d0:0a:3d:32:a0:7d:ed:1b:4a:14:9b:17:4a:2f:68:8c:2c: 5f:ce:a2:b4:b9:b2:f5:66:f3:de:98:0e:5e:e4:70:11:de:99: eb:b5:03:96:7e:f8:ac:ca:36:bb:1b:a8:e1:f8:7d:f9:6f:40: 8a:3e:26:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU3OTExMTAvBgNVBAUTKEM0RDdCOTRCOURGQjY0RjVDMTg5MjcyMzMwREJEQ0FE MkE3RDAxNkUwHhcNMjUwODIzMDAwNDU5WhcNMjUwODMwMDAwNDU4WjAYMRYwFAYD VQQDEw02OGE5MDVhYi03NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbspM9dBqVdKCDq3jPmVRUumE6Csgln8tEGKR3pBM3R5NfjFD3+LnyT+7+dL hBOeRWGvWsVXCTbEos+BzukAttqzHneZw42mX22OWQtpZWv5KWG35fLp7fdS2PY5 lyCEFlZNl1YoCGWh0S/yEC83KKWkNMq4ikEroZ/chZA1TNMO2bo0uVsdf/uTq3VF ZWCBmgIJPjNFDRcC4TrDS0YSTN4apZCPmlpn3mzhGKksePzK+Olzesj1QjqXhaRs ZbmtQkyPIpAdkcN0Q6KZ5nQ5K64uKlMNSHphx0bVeJBnTuh2UMPa0MQNHwTHUIRL vZ5HCWBl4pA40Sg4TtesimK1VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/FUDXc UehVTAPjpn2tzEp4lpy3MB8GA1UdIwQYMBaAFMTXuUud+2T1wYknIzDb3K0qfQFu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTc5MS8xOUM2OEQwNjNB MDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQWEJpU2NqTU52Y3JTcDlB VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZTVTNTM3WlBYQmlTY2pNTnZjclNwOUFXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTc5MS8xOUM2OEQwNjNBMDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQ WEJpU2NqTU52Y3JTcDlBVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR/imeGTfPXPEpDmTpoxXXNEIwin4Mcd+G6tpOc2lSoYNrE1V2LwzA z3agVVHj7ucLWmAvO2WuC3mDrDgGEIY/bvXz7KjoqAvLnTXhFDbVwkVI4WH7h7WH Ko673ebya/UsqNwDS1hcFzv++jVF0MMQv53a3axuYWipguxduAl/UmOhIAG+zI40 G1yl9vMkuXJenw0+lxnYXSDF1ib0Iud7kA6DNZVN+z/Jn36r/0qY63Xie5EzO97m CBDADhk7zZ4pRmNjje8i0Ao9MqB97RtKFJsXSi9ojCxfzqK0ubL1ZvPemA5e5HAR 3pnrtQOWfvisyja7G6jh+H35b0CKPiZy -----END CERTIFICATE-----Generated at Sat Aug 23 15:17:41 2025 by rpki-client