$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft File: xl_8-yz82bzWja6waX0xbPNbI_A.mft (raw, json) Hash identifier: 3gboVs9z8VkF6XSj2GQn6pcsp9ABQAhgWalO8qJPAnQ= Subject key identifier: 7E:5C:2C:CD:3E:A4:88:24:76:4D:D1:D3:B2:CF:B7:AC:DB:E7:CE:9B Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 Certificate issuer: /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Certificate serial: 02BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft Manifest number: 02B0 Signing time: Sat 23 Aug 2025 01:46:57 +0000 Manifest this update: Sat 23 Aug 2025 01:46:57 +0000 Manifest next update: Sat 30 Aug 2025 01:46:57 +0000 Files and hashes: 1: xl_8-yz82bzWja6waX0xbPNbI_A.crl (hash: gp8pGsijl9JaElUgaeZFl7FfY/g81Mu+JkcBVhV9Tw4=) 2: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (hash: GNWLaVT5bvTFzhKfPjl/RaZJainXlieK9QJZ8Ys4PmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91472E2, serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Validity Not Before: Aug 23 01:46:57 2025 GMT Not After : Aug 30 01:46:57 2025 GMT Subject: CN=68a91d91-3a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ca:35:40:0e:44:8d:bb:36:b7:67:b2:b1:2a: d9:ae:e9:93:9b:d8:ed:13:c5:c2:48:dc:5b:6f:a1: 06:50:24:57:4e:df:85:69:3c:f6:8b:7d:f2:ad:06: 3f:1d:b2:9e:9f:a6:f2:8c:19:e8:18:9d:0a:7b:f5: f3:2e:a8:d3:9b:f6:78:d5:b7:41:05:82:97:a6:ce: 8c:80:8b:b8:b9:dc:df:ac:66:f9:b0:ec:6c:8b:fe: af:57:19:f3:bb:86:19:48:13:3f:8f:b8:67:2d:d4: 3f:80:d3:df:c9:eb:a3:b3:0d:ef:59:0a:55:fc:4f: 5c:89:f6:a7:11:64:65:09:0b:1a:50:7f:fe:8d:d9: 01:79:ed:df:48:72:92:18:03:e8:df:06:81:67:d3: 41:c2:48:00:04:c5:f5:21:68:94:e4:d6:a5:47:dc: fc:0e:0c:15:46:60:0b:1e:7b:25:a7:27:4c:23:46: bd:70:4a:a1:2e:c8:07:c3:60:30:3d:fb:32:11:a4: 56:81:d0:04:da:7b:04:ca:34:f3:c8:48:fd:3e:59: bd:39:a4:ac:b1:08:73:0c:f9:22:fe:c4:da:c0:63: 7d:f5:37:f1:6b:50:7c:ed:4b:c7:59:f3:0b:e3:e9: 74:58:a2:a0:e7:ef:d2:27:9b:41:b0:1b:3d:de:5c: e7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5C:2C:CD:3E:A4:88:24:76:4D:D1:D3:B2:CF:B7:AC:DB:E7:CE:9B X509v3 Authority Key Identifier: keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:e2:c2:1d:98:16:49:1f:08:c8:ba:53:8a:f6:7a:17:14:31: 7c:fc:44:09:c9:b9:1f:07:69:67:ac:26:8b:e6:a0:de:2e:26: b7:ca:6f:fa:53:0c:46:25:3e:f1:da:a7:8a:0b:5b:39:fc:8e: 58:dc:12:32:c4:4b:8a:66:da:81:0e:e7:a2:ec:56:a2:cd:ee: c4:66:3b:83:cd:94:b9:5e:d4:2b:2f:d9:40:45:df:cb:e6:5f: bf:49:bc:54:a6:a3:71:fb:82:a6:6f:08:a1:b7:eb:57:12:6e: 9e:61:b4:c5:99:21:21:79:44:30:69:0b:33:0e:64:80:18:6f: f1:6e:ee:3c:4d:d0:0f:40:17:0e:81:8d:6d:75:ce:0f:cb:9e: 33:9c:76:7d:dd:65:cf:d8:05:d9:c3:5e:11:31:ad:b3:6e:5b: 9b:9a:11:79:0c:df:12:2a:23:f6:6b:12:8d:e1:15:cc:b7:4d: 08:ce:2d:1d:dc:b9:7d:94:30:55:61:60:f3:74:c5:22:29:cf: 47:e5:8a:ca:bf:59:07:50:b8:98:a3:dc:a2:bf:b6:f6:d5:29: 0d:d2:06:1c:05:fc:19:63:85:95:6c:ab:94:f2:6c:8f:a9:f1: 8b:71:d2:60:9e:6e:0e:16:8c:b8:75:e8:c0:65:84:fd:12:bc: 54:4d:94:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD RjM1QjIzRjAwHhcNMjUwODIzMDE0NjU3WhcNMjUwODMwMDE0NjU3WjAYMRYwFAYD VQQDEw02OGE5MWQ5MS0zYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArso1QA5Ejbs2t2eysSrZrumTm9jtE8XCSNxbb6EGUCRXTt+FaTz2i33yrQY/ HbKen6byjBnoGJ0Ke/XzLqjTm/Z41bdBBYKXps6MgIu4udzfrGb5sOxsi/6vVxnz u4YZSBM/j7hnLdQ/gNPfyeujsw3vWQpV/E9cifanEWRlCQsaUH/+jdkBee3fSHKS GAPo3waBZ9NBwkgABMX1IWiU5NalR9z8DgwVRmALHnslpydMI0a9cEqhLsgHw2Aw PfsyEaRWgdAE2nsEyjTzyEj9Plm9OaSssQhzDPki/sTawGN99Tfxa1B87UvHWfML 4+l0WKKg5+/SJ5tBsBs93lznTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5cLM0+ pIgkdk3R07LPt6zb586bMB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzJFMi8yRjE5NTM1QzBDQjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJi eldqYTZ3YVgweGJQTmJJX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA54sIdmBZJHwjIulOK9noXFDF8/EQJybkfB2lnrCaL5qDeLia3ym/6 UwxGJT7x2qeKC1s5/I5Y3BIyxEuKZtqBDuei7Faize7EZjuDzZS5XtQrL9lARd/L 5l+/SbxUpqNx+4Kmbwiht+tXEm6eYbTFmSEheUQwaQszDmSAGG/xbu48TdAPQBcO gY1tdc4Py54znHZ93WXP2AXZw14RMa2zblubmhF5DN8SKiP2axKN4RXMt00Izi0d 3Ll9lDBVYWDzdMUiKc9H5YrKv1kHULiYo9yiv7b21SkN0gYcBfwZY4WVbKuU8myP qfGLcdJgnm4OFoy4dejAZYT9ErxUTZTg -----END CERTIFICATE-----Generated at Sat Aug 23 13:47:31 2025 by rpki-client