$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: DCUcUXWs/cvDVaL1whZN4BRm897NZ4+dlWEXI+tfWjg= Subject key identifier: 76:FA:65:CA:A6:82:0A:DD:4D:02:5C:E6:FB:D2:B2:F0:A4:2D:13:11 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 34AF Signing time: Fri 22 Aug 2025 14:37:21 +0000 Manifest this update: Fri 22 Aug 2025 14:37:20 +0000 Manifest next update: Fri 29 Aug 2025 14:37:20 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: /iDtEMqb7P4IHiG2Y5lXZRptct0SZSGBHIHTDOAZhgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Aug 22 14:37:20 2025 GMT Not After : Aug 29 14:37:20 2025 GMT Subject: CN=68a880a1-794b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:32:7b:b9:97:7a:54:0a:05:c0:6b:9d:38: 4c:ac:f2:1f:f4:4c:5b:3a:6c:20:44:7d:b0:4b:41: ef:ed:72:08:b7:b0:d7:f7:95:32:89:6f:81:e3:72: f1:9a:5f:40:d9:94:96:be:30:9a:ee:e8:b6:29:bb: cb:aa:43:fd:09:57:93:a1:7f:9d:14:6a:0d:17:57: 5b:a8:e0:35:e5:8c:e0:79:b1:3c:b2:4e:4d:9e:c4: af:76:b9:e7:ba:76:03:0a:48:4a:ef:bd:7b:a0:69: dd:2a:42:93:af:dd:99:3f:15:a1:16:9e:9a:a6:4c: 97:bb:11:96:72:d7:97:36:cc:50:10:97:37:35:10: 64:d4:53:f7:39:78:8d:fd:80:5f:be:27:af:1a:f1: 64:3f:26:2d:15:9b:3b:e7:e7:1d:e4:f5:9e:f1:bb: ba:61:7d:2f:86:b3:9a:14:a2:00:45:db:c3:4e:8a: c3:11:37:33:01:08:1f:53:15:7e:c9:73:74:25:db: c9:03:1c:25:cb:06:14:d4:cc:33:39:1b:41:c6:e3: 76:85:c7:23:10:df:ca:16:05:01:d4:ff:ea:aa:ce: 91:e8:98:b5:c8:cb:cd:75:29:df:0d:e5:a2:be:09: 6f:cf:63:d9:fe:06:74:53:62:96:ea:dd:f9:cb:55: 11:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FA:65:CA:A6:82:0A:DD:4D:02:5C:E6:FB:D2:B2:F0:A4:2D:13:11 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:6f:26:6a:a3:c6:11:c3:8e:7f:94:f7:ad:66:b7:19:87:39: d8:ce:28:7f:db:a6:2a:31:48:9d:25:71:88:2a:e2:9b:45:f0: ab:8c:24:08:1a:ce:6e:31:a4:81:32:15:78:05:6e:28:a4:e4: c3:0c:a2:4e:62:58:9c:77:56:7d:c9:d2:aa:45:9e:08:8f:42: 2f:95:56:22:ac:c9:2a:47:d2:e4:6c:e7:5d:52:9c:58:f3:8e: 7d:9d:f2:52:65:31:78:12:cf:40:86:a3:e3:14:e2:29:0e:69: 52:35:36:88:a3:70:8d:c2:de:4d:64:0d:cf:f3:89:e4:f3:c3: 83:29:71:b9:c4:f3:79:e2:3e:a0:a9:08:8e:1d:23:7a:c6:bd: 71:3a:11:d5:70:6e:4f:2c:5e:47:69:62:b9:03:f7:46:36:7a: 30:e9:7e:76:b6:f0:fa:71:bb:2a:4e:63:f4:cf:dc:49:ad:df: d5:52:6c:e0:fc:cf:62:a3:c9:bc:7b:92:a9:9f:af:2b:e9:21: 47:3a:20:a7:e5:40:c5:e4:ea:3a:39:1a:8b:87:f5:20:01:1b: 9c:90:70:d6:9d:91:d4:55:b8:f2:3e:a7:26:dc:d2:fc:a0:3f: db:d4:fc:9f:a0:7c:c0:72:00:37:b0:f9:ae:f2:f1:7b:8b:d8: 6a:89:09:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwODIyMTQzNzIwWhcNMjUwODI5MTQzNzIwWjAYMRYwFAYD VQQDEw02OGE4ODBhMS03OTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyoye7mXelQKBcBrnThMrPIf9ExbOmwgRH2wS0Hv7XIIt7DX95UyiW+B43Lx ml9A2ZSWvjCa7ui2KbvLqkP9CVeToX+dFGoNF1dbqOA15YzgebE8sk5NnsSvdrnn unYDCkhK7717oGndKkKTr92ZPxWhFp6apkyXuxGWcteXNsxQEJc3NRBk1FP3OXiN /YBfvievGvFkPyYtFZs75+cd5PWe8bu6YX0vhrOaFKIARdvDTorDETczAQgfUxV+ yXN0JdvJAxwlywYU1MwzORtBxuN2hccjEN/KFgUB1P/qqs6R6Ji1yMvNdSnfDeWi vglvz2PZ/gZ0U2KW6t35y1URDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHb6Zcqm ggrdTQJc5vvSsvCkLRMRMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGbyZqo8YRw45/lPetZrcZhznYzih/26YqMUidJXGIKuKbRfCrjCQI Gs5uMaSBMhV4BW4opOTDDKJOYlicd1Z9ydKqRZ4Ij0IvlVYirMkqR9LkbOddUpxY 8459nfJSZTF4Es9AhqPjFOIpDmlSNTaIo3CNwt5NZA3P84nk88ODKXG5xPN54j6g qQiOHSN6xr1xOhHVcG5PLF5HaWK5A/dGNnow6X52tvD6cbsqTmP0z9xJrd/VUmzg /M9io8m8e5Kpn68r6SFHOiCn5UDF5Oo6ORqLh/UgARuckHDWnZHUVbjyPqcm3NL8 oD/b1PyfoHzAcgA3sPmu8vF7i9hqiQmM -----END CERTIFICATE-----Generated at Sat Aug 23 21:05:07 2025 by rpki-client