$ rpki-client -vvf rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft File: xctXefg2BxxSgISGkWfLwa4IuRc.mft (raw, json) Hash identifier: MdcnjunatEXsvyPuGNQ+tYIvs7/yHMfB6d6+8jUISKU= Subject key identifier: 0A:E0:F8:88:69:9F:A8:B8:E2:2B:76:7F:28:EA:3B:F7:40:7B:3A:D4 Authority key identifier: C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 Certificate issuer: /CN=A913F927/serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft Manifest number: 0C82 Signing time: Fri 22 Aug 2025 18:24:05 +0000 Manifest this update: Fri 22 Aug 2025 18:24:05 +0000 Manifest next update: Fri 29 Aug 2025 18:24:05 +0000 Files and hashes: 1: xctXefg2BxxSgISGkWfLwa4IuRc.crl (hash: JroFRym79ETmCkYAR6TziqhjLc2s6v3zFmxvlWnmwLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F927, serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Validity Not Before: Aug 22 18:24:05 2025 GMT Not After : Aug 29 18:24:05 2025 GMT Subject: CN=68a8b5c5-d0c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d7:cf:35:35:7b:fc:18:f2:a8:53:22:95:d1: 37:5a:18:cd:1e:5b:41:53:d5:b3:c9:fb:4e:36:0d: ef:bf:0a:b6:1e:c6:54:0b:6e:f8:8d:77:41:21:4b: 0d:79:dc:47:17:df:b4:35:65:9c:5a:25:13:0e:4a: 53:ac:a8:c7:05:b7:4f:67:d1:cb:ed:7a:56:cd:76: 67:e4:0e:61:4a:99:f9:3b:ba:f6:26:01:43:d0:c9: c3:2d:c4:01:86:a7:82:3c:c4:ed:6e:c9:a1:d6:fb: be:ca:3c:0e:ce:90:65:aa:1f:ef:25:7d:3b:68:b8: 0a:b5:a1:f3:d9:48:65:4d:df:cf:04:f9:71:77:5a: a9:88:02:43:3b:97:c3:af:2e:c7:72:d2:8f:2b:4c: 46:76:14:5c:6f:b8:5b:13:81:d3:2e:27:83:d5:b0: 76:d3:8c:2c:a3:bd:51:06:ee:d7:3c:ec:f2:3c:96: 2d:0a:56:ad:7c:17:20:6c:7f:e6:6b:31:d2:8f:7c: d4:8b:86:95:db:f6:a2:a5:78:80:62:54:f7:b8:3c: f7:27:f7:60:bb:01:89:41:f7:03:c3:48:b5:62:09: 10:e1:a8:cc:d4:b6:1a:a1:03:64:7b:4c:9a:be:b3: 05:61:4c:5d:c2:57:49:23:f6:15:7e:ff:5b:d5:82: 81:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E0:F8:88:69:9F:A8:B8:E2:2B:76:7F:28:EA:3B:F7:40:7B:3A:D4 X509v3 Authority Key Identifier: keyid:C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b4:79:e3:4e:9a:94:74:02:9d:54:73:65:27:83:08:86:40: 42:f7:f9:a5:d0:d4:6a:9b:ac:9b:c4:2d:9f:30:f0:bd:06:41: 9f:9d:64:33:2f:52:23:35:99:af:23:ed:00:0a:7d:02:00:3f: d3:ff:1b:6e:a9:e3:54:df:50:7b:b9:49:d4:f4:c4:22:86:53: 94:d7:95:1b:b7:b9:28:17:00:38:aa:74:78:a6:99:e7:c1:3a: e7:eb:b0:a4:25:97:c9:8f:ca:08:bf:cc:dc:f7:b5:b2:0d:89: ba:7b:b9:b2:a0:9e:d9:54:7a:e3:38:ed:bb:de:4e:62:5e:48: 2c:c9:8c:52:62:fb:8f:77:83:fd:c0:05:7d:5b:38:1e:b4:49: c2:b7:38:06:d0:62:56:96:5a:ef:3c:a0:19:78:41:be:db:6e: 67:bf:63:3b:5a:c6:d4:0c:0b:2e:ee:1c:d9:6a:03:4d:66:6b: 17:36:c1:6c:53:4d:48:bc:81:a1:e6:12:45:cf:c3:7c:41:e4: d4:22:9b:f9:2d:ca:51:b8:ef:04:25:cf:13:31:43:8d:a2:86: 34:e6:e1:bb:90:ec:76:d0:26:97:1a:9b:50:ab:90:41:8b:c4: 62:51:db:19:70:4d:a0:8e:a5:bb:89:e6:f0:97:bd:48:73:67: 85:e8:51:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y5MjcxMTAvBgNVBAUTKEM1Q0I1Nzc5RjgzNjA3MUM1MjgwODQ4NjkxNjdDQkMx QUUwOEI5MTcwHhcNMjUwODIyMTgyNDA1WhcNMjUwODI5MTgyNDA1WjAYMRYwFAYD VQQDEw02OGE4YjVjNS1kMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltfPNTV7/BjyqFMildE3WhjNHltBU9WzyftONg3vvwq2HsZUC274jXdBIUsN edxHF9+0NWWcWiUTDkpTrKjHBbdPZ9HL7XpWzXZn5A5hSpn5O7r2JgFD0MnDLcQB hqeCPMTtbsmh1vu+yjwOzpBlqh/vJX07aLgKtaHz2UhlTd/PBPlxd1qpiAJDO5fD ry7HctKPK0xGdhRcb7hbE4HTLieD1bB204wso71RBu7XPOzyPJYtClatfBcgbH/m azHSj3zUi4aV2/aipXiAYlT3uDz3J/dguwGJQfcDw0i1YgkQ4ajM1LYaoQNke0ya vrMFYUxdwldJI/YVfv9b1YKBxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArg+Ihp n6i44it2fyjqO/dAezrUMB8GA1UdIwQYMBaAFMXLV3n4NgccUoCEhpFny8GuCLkX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjkyNy9BRjUyMTFGRTAw QTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4eFNnSVNHa1dmTHdhNEl1 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hjdFhlZmcyQnh4U2dJU0drV2ZMd2E0SXVSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjkyNy9BRjUyMTFGRTAwQTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4 eFNnSVNHa1dmTHdhNEl1UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAftHnjTpqUdAKdVHNlJ4MIhkBC9/ml0NRqm6ybxC2fMPC9BkGfnWQz L1IjNZmvI+0ACn0CAD/T/xtuqeNU31B7uUnU9MQihlOU15Ubt7koFwA4qnR4ppnn wTrn67CkJZfJj8oIv8zc97WyDYm6e7myoJ7ZVHrjOO273k5iXkgsyYxSYvuPd4P9 wAV9WzgetEnCtzgG0GJWllrvPKAZeEG+225nv2M7WsbUDAsu7hzZagNNZmsXNsFs U01IvIGh5hJFz8N8QeTUIpv5LcpRuO8EJc8TMUONooY05uG7kOx20CaXGptQq5BB i8RiUdsZcE2gjqW7iebwl71Ic2eF6FHE -----END CERTIFICATE-----Generated at Sat Aug 23 19:01:05 2025 by rpki-client